公开(公告)号：US20180206275A1

公开(公告)日：2018-07-19

申请号：US15408179

申请日：2017-01-17

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Paras Mal Jain ,  Girish Sivasubramanian ,  Yogesh Devidas Patil

IPC: H04W76/02 ,  H04W40/02 ,  H04L29/06

CPC classification number: H04W76/11 ,  H04L12/56 ,  H04L63/0281 ,  H04L63/029 ,  H04L63/0807 ,  H04W12/001 ,  H04W12/04 ,  H04W36/0027 ,  H04W40/02 ,  H04W76/12

Abstract: A method is provided in one example embodiment and may include sharing an access key from a control-plane serving gateway (SGW-C) to a plurality of user-plane serving gateways (SGW-Us); allocating a plurality of Fully Qualified Tunnel Endpoint Identifiers (FQTEIDs) associated with a user equipment (UE) session; generating an access token for the UE session based, at least in part, on the access key and the plurality of FQTEIDs; and appending the access token to user-plane packets for the UE session. The method can further include receiving a data packet for the UE session by a particular SGW-U, wherein the uplink packet is appended with the access token for the UE session; determining FQTEIDs associated with the UAT; and routing the uplink packet from the particular SGW-U based on the FQTEIDs.

公开(公告)号：US10356830B2

公开(公告)日：2019-07-16

申请号：US15408179

申请日：2017-01-17

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Paras Mal Jain ,  Girish Sivasubramanian ,  Yogesh Devidas Patil

IPC: H04W4/00 ,  H04M1/66 ,  H04W76/11 ,  H04W40/02 ,  H04L29/06 ,  H04L12/54 ,  H04W36/00 ,  H04W76/12

Abstract: A method is provided in one example embodiment and may include sharing an access key from a control-plane serving gateway (SGW-C) to a plurality of user-plane serving gateways (SGW-Us); allocating a plurality of Fully Qualified Tunnel Endpoint Identifiers (FQTEIDs) associated with a user equipment (UE) session; generating an access token for the UE session based, at least in part, on the access key and the plurality of FQTEIDs; and appending the access token to user-plane packets for the UE session. The method can further include receiving a data packet for the UE session by a particular SGW-U, wherein the uplink packet is appended with the access token for the UE session; determining FQTEIDs associated with the UAT; and routing the uplink packet from the particular SGW-U based on the FQTEIDs.

公开(公告)号：US20240152623A1

公开(公告)日：2024-05-09

申请号：US18052240

申请日：2022-11-03

Applicant: Cisco Technology, Inc.

Inventor： Walter T. Hulick, JR. ,  Ashutosh Kulshreshtha ,  Girish Sivasubramanian

IPC: G06F21/57

CPC classification number: G06F21/577 ,  G06F2221/033

Abstract: A system and method for evaluating penetration testing tools. In one embodiment, a method includes generating a plurality of instructions, wherein the instructions comprise one or more security vulnerabilities for testing a web server, generating the web server, wherein the web server comprises the plurality of instructions with the one or more security vulnerabilities, receiving a penetration test result from a penetration testing tool executing on the web server, and computing a precision of the penetration testing tool for detecting the one or more security vulnerabilities.

公开(公告)号：US09331948B2

公开(公告)日：2016-05-03

申请号：US14055427

申请日：2013-10-16

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Balaji Venkat Venekataswami ,  Kowsalya Subramanian ,  Jegan Kumar Somi Ramasamy Subramanian ,  Manikandan Dhayalan ,  Rajesh Kumar Andhavaram ,  Girish Sivasubramanian

IPC: H04L12/28 ,  G06F15/16 ,  H04L12/851 ,  H04W76/02

CPC classification number: H04L47/24 ,  H04W76/12 ,  H04W76/15

Abstract: An example method is provided and includes receiving a request from a mobile node for an Internet protocol (IP) address and establishing a point-to-point (PPP) link for the mobile node. The method also includes provisioning a first tunnel associated with a first communication flow for the mobile node, and provisioning a sub-tunnel with the first tunnel for a second communication flow. The second communication flow is associated with a high priority type of data to be transported on the sub-tunnel. In more specific embodiments, a call admission control (CAC) mechanism is used to establish the sub-tunnel with the first tunnel for the second communication flow. Additionally, an inner label is installed in a header of a packet associated with the second communication flow in order to identify the sub-tunnel.

公开(公告)号：US20140043971A1

公开(公告)日：2014-02-13

申请号：US14055427

申请日：2013-10-16

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Balaji Venkat Venkataswami ,  Kowsalya Subramanian ,  Jegan Kumar Somi Ramasamy Subramanian ,  Manikandan Dhayalan ,  Rajesh Kumar Andhavaram ,  Girish Sivasubramanian

IPC: H04L12/851

CPC classification number: H04L47/24 ,  H04W76/12 ,  H04W76/15

Abstract: An example method is provided and includes receiving a request from a mobile node for an Internet protocol (IP) address and establishing a point-to-point (PPP) link for the mobile node. The method also includes provisioning a first tunnel associated with a first communication flow for the mobile node, and provisioning a sub-tunnel with the first tunnel for a second communication flow. The second communication flow is associated with a high priority type of data to be transported on the sub-tunnel. In more specific embodiments, a call admission control (CAC) mechanism is used to establish the sub-tunnel with the first tunnel for the second communication flow. Additionally, an inner label is installed in a header of a packet associated with the second communication flow in order to identify the sub-tunnel.

Abstract translation: 提供了一种示例性方法，包括从移动节点接收针对因特网协议（IP）地址的请求，并为移动节点建立点对点（PPP）链路。 该方法还包括配置与移动节点的第一通信流相关联的第一隧道，以及为第二通信流提供具有第一隧道的子隧道。 第二通信流与要在子隧道上传输的高优先级数据相关联。 在更具体的实施例中，使用呼叫许可控制（CAC）机制来建立具有用于第二通信流的第一隧道的子隧道。 另外，为了识别子隧道，内标签安装在与第二通信流相关联的分组的报头中。