公开(公告)号：US11979412B2

公开(公告)日：2024-05-07

申请号：US18195081

申请日：2023-05-09

Applicant: Cisco Technology, Inc.

Inventor： Shwetha Subray Bhandari ,  Santhosh N ,  Rakesh Reddy Kandula ,  Saiprasad Reddy Muchala ,  Frank Brockners

IPC: H04L9/40 ,  H04L9/08 ,  H04L9/32 ,  H04L45/00

CPC classification number: H04L63/123 ,  H04L9/0869 ,  H04L9/321 ,  H04L45/72 ,  H04L63/0428 ,  H04L63/0435

Abstract: Techniques to facilitate verification of in-situ network telemetry data of data packet of data traffic of packet-switched networks are described herein. A technique described herein includes a network node obtaining a data packet of data traffic of a packet-switched network. The data packet includes an in-situ network telemetry block. The network node obtains telemetry data and cryptographic key. The cryptographic key confidentially identifies the network node. The node encrypts at least a portion of the telemetry data based on the cryptographic key to produce signed telemetry data and updates telemetry-data entry of the in-situ network telemetry block. The telemetry data and signed telemetry data is inserted into the telemetry-data entry. The node forwards the data packet with the updated telemetry-data entry to another network node of the packet-switched network.

公开(公告)号：US10237079B2

公开(公告)日：2019-03-19

申请号：US15479738

申请日：2017-04-05

Applicant: Cisco Technology, Inc.

Inventor： Selvaraj Mani ,  Swapna Yelamanchi ,  Amarender Musku ,  Rakesh Reddy Kandula ,  Deep Preet Singh ,  Shwetha Subray Bhandari ,  Shrirang Arvind Bage

IPC: H04L12/12 ,  H04L29/08 ,  H04L29/12

Abstract: In one embodiment, a sleep proxy device identifies one or more services offered by a first node in the network. The sleep proxy device announces the one or more identified services to a second node in the network on behalf of the first node. The sleep proxy device intercepts an attempt by the second node to use the one or more services offered by the first node. The sleep proxy device causes the first node to switch from a low power state to an awake state, based on the intercepted attempt.

公开(公告)号：US11683324B2

公开(公告)日：2023-06-20

申请号：US17846381

申请日：2022-06-22

Applicant: Cisco Technology, Inc.

Inventor： Shwetha Subray Bhandari ,  Santhosh N ,  Rakesh Reddy Kandula ,  Saiprasad Reddy Muchala ,  Frank Brockners

IPC: H04L9/40 ,  H04L45/00 ,  H04L9/32 ,  H04L9/08

CPC classification number: H04L63/123 ,  H04L9/0869 ,  H04L9/321 ,  H04L45/72 ,  H04L63/0428 ,  H04L63/0435

Abstract: Techniques to facilitate verification of in-situ network telemetry data of data packet of data traffic of packet-switched networks are described herein. A technique described herein includes a network node obtaining a data packet of data traffic of a packet-switched network. The data packet includes an in-situ network telemetry block. The network node obtains telemetry data and cryptographic key. The cryptographic key confidentially identifies the network node. The node encrypts at least a portion of the telemetry data based on the cryptographic key to produce signed telemetry data and updates telemetry-data entry of the in-situ network telemetry block. The telemetry data and signed telemetry data is inserted into the telemetry-data entry. The node forwards the data packet with the updated telemetry-data entry to another network node of the packet-switched network.

公开(公告)号：US20220329606A1

公开(公告)日：2022-10-13

申请号：US17846381

申请日：2022-06-22

Applicant: Cisco Technology, Inc.

Inventor： Shwetha Subray Bhandari ,  Santhosh N ,  Rakesh Reddy Kandula ,  Saiprasad Reddy Muchala ,  Frank Brockners

IPC: H04L9/40 ,  H04L45/00 ,  H04L9/32 ,  H04L9/08

Abstract: Techniques to facilitate verification of in-situ network telemetry data of data packet of data traffic of packet-switched networks are described herein. A technique described herein includes a network node obtaining a data packet of data traffic of a packet-switched network. The data packet includes an in-situ network telemetry block. The network node obtains telemetry data and cryptographic key. The cryptographic key confidentially identifies the network node. The node encrypts at least a portion of the telemetry data based on the cryptographic key to produce signed telemetry data and updates telemetry-data entry of the in-situ network telemetry block. The telemetry data and signed telemetry data is inserted into the telemetry-data entry. The node forwards the data packet with the updated telemetry-data entry to another network node of the packet-switched network.

公开(公告)号：US20210377221A1

公开(公告)日：2021-12-02

申请号：US16883285

申请日：2020-05-26

Applicant: Cisco Technology, Inc.

Inventor： Amit Arvind Kadane ,  Baalajee Surendran ,  Bheema Reddy Ramidi ,  Dhananjaya Rao ,  Ketan Jivan Talaulikar ,  Rakesh Reddy Kandula

IPC: H04L29/06 ,  H04L12/46 ,  H04L29/12

Abstract: In one embodiment, a method includes activating a first network apparatus within a network and determining, by the first network apparatus, that a Scalable Group Tag (SGT) Exchange Protocol (SXP) is configured on the first network apparatus. The method also includes costing out the first network apparatus in response to determining that the SXP is configured on the first network apparatus. Costing out the first network apparatus prevents Internet Protocol (IP) traffic from flowing through the first network apparatus. The method further includes receiving, by the first network apparatus, IP-to-SGT bindings from an SXP speaker, receiving an end-of-exchange message from the SXP speaker, and costing in the first network apparatus in response to receiving the end-of-exchange message. Costing in the first network apparatus allows the IP traffic to flow through the first network apparatus.

公开(公告)号：US20200053169A1

公开(公告)日：2020-02-13

申请号：US16100830

申请日：2018-08-10

Applicant: Cisco Technology, Inc.

Inventor： Selvaraj Mani ,  Shwetha Subray Bhandari ,  Rakesh Reddy Kandula ,  Saiprasad Muchala ,  Swapna Gopalkrishna Shingre ,  Srinivasu Angadala

IPC: H04L29/08 ,  G06F17/30 ,  H04L29/12 ,  H04L29/06

Abstract: In one embodiment, a service configured to execute on trusted participant devices authenticates network service devices each having identifying information and one or more offered services, and creates an entry into a secure digital ledger for each authenticated network service device and associated offered services, each entry based on the identifying information and the one or more offered services for a corresponding network service device. Upon receiving an advertisement for an advertised service from an advertising device attached to a given trusted participant device, the service then requests and may receive an authentic ledger entry from the secure digital ledger for the advertised service. In response to either validating or failing to validate authenticity of the advertised service based on the authentic ledger entry, registration at the given trusted participant device of the advertised service for the received advertisement from the advertising device may either be permitted or denied, respectively.

公开(公告)号：US20230275904A1

公开(公告)日：2023-08-31

申请号：US18195081

申请日：2023-05-09

Applicant: Cisco Technology, Inc.

Inventor： Shwetha Subray Bhandari ,  Santhosh N ,  Rakesh Reddy Kandula ,  Saiprasad Reddy Muchala ,  Frank Brockners

IPC: H04L9/40 ,  H04L45/00 ,  H04L9/32 ,  H04L9/08

CPC classification number: H04L63/123 ,  H04L45/72 ,  H04L9/321 ,  H04L63/0435 ,  H04L9/0869 ,  H04L63/0428

Abstract: Techniques to facilitate verification of in-situ network telemetry data of data packet of data traffic of packet-switched networks are described herein. A technique described herein includes a network node obtaining a data packet of data traffic of a packet-switched network. The data packet includes an in-situ network telemetry block. The network node obtains telemetry data and cryptographic key. The cryptographic key confidentially identifies the network node. The node encrypts at least a portion of the telemetry data based on the cryptographic key to produce signed telemetry data and updates telemetry-data entry of the in-situ network telemetry block. The telemetry data and signed telemetry data is inserted into the telemetry-data entry. The node forwards the data packet with the updated telemetry-data entry to another network node of the packet-switched network.

公开(公告)号：US11444955B2

公开(公告)日：2022-09-13

申请号：US16916368

申请日：2020-06-30

Applicant: Cisco Technology, Inc.

Inventor： Shwetha Subray Bhandari ,  Santhosh N ,  Rakesh Reddy Kandula ,  Saiprasad Reddy Muchala ,  Frank Brockners

IPC: H04L29/06 ,  H04L9/40 ,  H04L45/00 ,  H04L9/32 ,  H04L9/08

Abstract: Techniques to facilitate verification of in-situ network telemetry data of data packet of data traffic of packet-switched networks are described herein. A technique described herein includes a network node obtaining a data packet of data traffic of a packet-switched network. The data packet includes an in-situ network telemetry block. The network node obtains telemetry data and cryptographic key. The cryptographic key confidentially identifies the network node. The node encrypts at least a portion of the telemetry data based on the cryptographic key to produce signed telemetry data and updates telemetry-data entry of the in-situ network telemetry block. The telemetry data and signed telemetry data is inserted into the telemetry-data entry. The node forwards the data packet with the updated telemetry-data entry to another network node of the packet-switched network.

公开(公告)号：US20210409423A1

公开(公告)日：2021-12-30

申请号：US16916368

申请日：2020-06-30

Applicant: Cisco Technology, Inc.

Inventor： Shwetha Subray Bhandari ,  Santhosh N ,  Rakesh Reddy Kandula ,  Saiprasad Reddy Muchala ,  Frank Brockners

IPC: H04L29/06 ,  H04L12/721 ,  H04L9/08 ,  H04L9/32

Abstract: Techniques to facilitate verification of in-situ network telemetry data of data packet of data traffic of packet-switched networks are described herein. A technique described herein includes a network node obtaining a data packet of data traffic of a packet-switched network. The data packet includes an in-situ network telemetry block. The network node obtains telemetry data and cryptographic key. The cryptographic key confidentially identifies the network node. The node encrypts at least a portion of the telemetry data based on the cryptographic key to produce signed telemetry data and updates telemetry-data entry of the in-situ network telemetry block. The telemetry data and signed telemetry data is inserted into the telemetry-data entry. The node forwards the data packet with the updated telemetry-data entry to another network node of the packet-switched network.

公开(公告)号：US20180294983A1

公开(公告)日：2018-10-11

申请号：US15479738

申请日：2017-04-05

Applicant: Cisco Technology, Inc.

Inventor： Selvaraj Mani ,  Swapna Yelamanchi ,  Amarender Musku ,  Rakesh Reddy Kandula ,  Deep Preet Singh ,  Shwetha Subray Bhandari ,  Shrirang Arvind Bage

IPC: H04L12/12 ,  H04L29/08 ,  H04L29/12

CPC classification number: H04L12/12 ,  H04L61/103 ,  H04L61/1511 ,  H04L61/6022 ,  H04L63/00 ,  H04L67/145 ,  H04L67/16 ,  H04L67/2814 ,  H04L67/2861 ,  H04W52/0219

Abstract: In one embodiment, a sleep proxy device identifies one or more services offered by a first node in the network. The sleep proxy device announces the one or more identified services to a second node in the network on behalf of the first node. The sleep proxy device intercepts an attempt by the second node to use the one or more services offered by the first node. The sleep proxy device causes the first node to switch from a low power state to an awake state, based on the intercepted attempt.