公开(公告)号：US20240388883A1

公开(公告)日：2024-11-21

申请号：US18656331

申请日：2024-05-06

Applicant: Cisco Technology, Inc.

Inventor： Jerome HENRY ,  Robert E. BARTON ,  Mir A. ALAMI

IPC: H04W8/02

Abstract: Disclosed herein are a method and system for aiding a station to roam to a new AP. The AP associates with the station and receives a table of the AP beacons the station detected prior to association. The AP sends a beacon report request with one or more condition requests to the station. The station responds by negotiating with the AP regarding the condition request. The AP then receives a beacon report from the station based on the negotiated condition request. Conditions to be negotiated include how often to report on the RF conditions of the station, the station's battery power, the station's traffic, and specific channels for sending the beacon report.

公开(公告)号：US20240353817A1

公开(公告)日：2024-10-24

申请号：US18138458

申请日：2023-04-24

Applicant: Cisco Technology, Inc.

Inventor： Flemming Stig ANDREASEN ,  Timothy P. STAMMERS ,  Robert E. BARTON

IPC: G05B19/418

CPC classification number: G05B19/4185

Abstract: In one embodiment, a device associates available 5G functions stored by a network repository function with contextual information, wherein the contextual information maps each of the available 5G functions with a layer of a hierarchical security model for an industrial network. The device receives a request from a user equipment endpoint to communicate via the industrial network. The device selects a particular user plane function from among the available 5G functions for use by the user equipment endpoint based in part on the layer of the hierarchical security model associated with the particular user plane function. The device causes the user equipment endpoint to communicate via the industrial network using the particular user plane function.

公开(公告)号：US20240250946A1

公开(公告)日：2024-07-25

申请号：US18623817

申请日：2024-04-01

Applicant: Cisco Technology, Inc.

Inventor： Carlos M. PIGNATARO ,  Nagendra Kumar NAINAR ,  Jerome HENRY ,  Robert E. BARTON ,  Bart A. BRINCKMAN

IPC: H04L9/40 ,  H04L9/32

CPC classification number: H04L63/10 ,  H04L9/3236 ,  H04L9/3263 ,  H04L63/0876

Abstract: Embodiments herein describe disconnecting, by an access node, a first device having a first media access control (MAC) address due to a network violation and receiving, by the access node, information about a second device having a second MAC address different from the first MAC address. In one embodiment, the information is generated by a certificate server based on a token generated by the second device. Further, when the access node determines, based on the information, that the second device is the first device, the access node denies a connection request from the second device.

公开(公告)号：US20240098493A1

公开(公告)日：2024-03-21

申请号：US18521852

申请日：2023-11-28

Applicant: Cisco Technology, Inc.

Inventor： Jay K. JOHNSTON ,  Jerome HENRY ,  David C. WHITE, JR. ,  Magnus MORTENSEN ,  John M. SWARTZ ,  Robert E. BARTON

IPC: H04W12/08 ,  G06N20/00

CPC classification number: H04W12/08 ,  G06N20/00

Abstract: Techniques for identifying a trusted SSID for a wireless network are disclosed. Prior to establishing a connection with a wireless network, a first network message is received from a first access point (AP) identifying a first service set identifier (SSID) associated with a first wireless network, a second network message is received from a second AP identifying a second SSID associated with a second wireless network, and a visual similarity is determined between a first visual representation of the first SSID and a second visual representation of the second SSID. The second SSID is designated as suspicious based on the determined visual similarity.

公开(公告)号：US20240015807A1

公开(公告)日：2024-01-11

申请号：US18176999

申请日：2023-03-01

Applicant: Cisco Technology, Inc.

Inventor： Vinay SAINI ,  Jerome HENRY ,  Akram I. SHERIFF ,  Nagendra Kumar NAINAR ,  Robert E. BARTON

IPC: H04W76/10 ,  H04W72/02

CPC classification number: H04W76/10 ,  H04W72/02

Abstract: Disclosed are a system and a method for selecting an additional radio link from a second access point after a connection with a first access point has been established. The first and second access points cooperate with each other by sharing information about performance and available resources. They communicate this information to a multi-link non-AP MLD device requesting the additional radio link so that the non-AP MLD can make a selection that matches the needs of its request. Information about performance includes throughput, a delay between access points, and a delay between access points and a gateway connected to the access points.

公开(公告)号：US20230412603A1

公开(公告)日：2023-12-21

申请号：US17750198

申请日：2022-05-20

Applicant: Cisco Technology, Inc.

Inventor： Swapna ANANDAN ,  Flemming Stig ANDREASEN ,  Robert E. BARTON

IPC: H04L9/40

CPC classification number: H04L63/102 ,  H04L63/20 ,  H04L63/0876 ,  H04L63/101

Abstract: In one embodiment, an illustrative method herein may comprise: detecting, by a device, a new asset in a network with a media access control address; monitoring, by the device, the new asset to learn one or more contextual attributes of the new asset in the network; generating, by the device, a profile of the new asset based on the media access control address and the one or more contextual attributes; and using, by the device, the profile to define access and control over the new asset in the network.

公开(公告)号：US20230379213A1

公开(公告)日：2023-11-23

申请号：US17748930

申请日：2022-05-19

Applicant: Cisco Technology, Inc.

Inventor： Thomas Szigeti ,  Robert E. BARTON

IPC: H04L41/082 ,  H04L41/0631 ,  H04L41/0604

CPC classification number: H04L41/082 ,  H04L41/0645 ,  H04L41/0604

Abstract: According to one or more embodiments of the disclosure, intelligent closed-loop device profiling for proactive behavioral expectations is described herein. In particular, in one embodiment, a device controller determines a deliberate change to be made within a network, and generates a profile of a behavioral update that an analytics engine should expect to see based on the deliberate change. The device controller then transmits, to the analytics engine, the profile of the behavioral update to cause the analytics engine to proactively expect the behavioral update in response to the deliberate change.

公开(公告)号：US20230247427A1

公开(公告)日：2023-08-03

申请号：US18297136

申请日：2023-04-07

Applicant: Cisco Technology, Inc.

Inventor： Jerome HENRY ,  Robert E. BARTON ,  Bart A. BRINCKMAN

IPC: H04W12/08 ,  H04W12/06 ,  H04W36/00 ,  H04W60/06 ,  H04W76/11 ,  H04W12/0431

CPC classification number: H04W12/08 ,  H04W12/06 ,  H04W36/0022 ,  H04W60/06 ,  H04W76/11 ,  H04W12/0431

Abstract: Techniques for trusted roaming between identity federation based networks. A first wireless access point (AP) receives a roaming request from a wireless station (STA), to roam from the first AP to a second AP. The first AP is associated with a first access network provider (ANP), the second AP is associated with a second ANP, and the first ANP is different from the second ANP. Authentication information relating to the STA is transmitted from the first ANP to the second ANP using a trusted connection. The trusted connection was previously established between the first ANP and the second ANP based on a query to an identity federation to which both the first and second ANP belong. The STA is de-associated from the first AP. The STA is re-associated at the second AP using the transmitted authentication information.

公开(公告)号：US20230021627A1

公开(公告)日：2023-01-26

申请号：US17443287

申请日：2021-07-23

Applicant: Cisco Technology, Inc.

Inventor： Jerome HENRY ,  Louis G. SAMUEL ,  Mark GRAYSON ,  Bart A. BRINCKMAN ,  Robert E. BARTON ,  Carlos M. PIGNATARO ,  Nagendra Kumar NAINAR ,  Matthew MACPHERSON

IPC: H04W12/08 ,  H04W12/69 ,  H04W12/06 ,  H04L29/06

Abstract: Federation policy exchange is provided in response to receiving a sharing query from an Access Point (AP) indicating that an associated wireless network supports federated identities with data sharing, determining whether the sharing query is within sharing preferences; and in response to determining that the sharing query is within the sharing preferences, transmitting, to the AP, a positive response for identity sharing that authorizes collection and sharing of identity data with at least one entity identified in a sharing policy for the associated wireless network. In various embodiments, federation policy exchange includes transmitting a support notification, via an AP, indicating support for federated identities with data sharing within a wireless network associated with the AP; and in response to receiving a first identify sharing preference from a User Equipment (UE) that indicates that negotiation is preferred, transmitting a sharing policy for the wireless network to the UE.

公开(公告)号：US20220231988A1

公开(公告)日：2022-07-21

申请号：US17248364

申请日：2021-01-21

Applicant: Cisco Technology, Inc.

Inventor： Jerome HENRY ,  Robert E. BARTON ,  Mark GRAYSON ,  Bart A. BRINCKMAN

IPC: H04L29/12 ,  H04L12/741

Abstract: A method includes linking, at an access node, a first media control access (MAC) address of a device to an identifier of the device to establish a communication session between the access node and the device and during the communication session, receiving, at the access node, an indication of a change of the first MAC address to a second MAC address. The method also includes linking, at the access node, the second MAC address to the first MAC address and the identifier and receiving, at the access node, a communication from the device using the second MAC address while maintaining the communication session.