-
公开(公告)号:US20210021619A1
公开(公告)日:2021-01-21
申请号:US17033757
申请日:2020-09-26
申请人: Ned M. Smith , Francesc Guim Bernat , Rajesh Poornachandran , Kshitij Arun Doshi , Tarun Viswanathan , Kapil Sood
发明人: Ned M. Smith , Francesc Guim Bernat , Rajesh Poornachandran , Kshitij Arun Doshi , Tarun Viswanathan , Kapil Sood
IPC分类号: H04L29/06
摘要: Various aspects of methods, systems, and use cases for trust-based orchestration of an edge node. An edge node may be configured for trust-based orchestration in an edge computing environment, where the edge node includes a transceiver to receive an instruction to perform a workload, the instruction from an edge orchestrator, the edge node being in a group of edge nodes managed with a ledger; and a processor to execute the workload at the edge node to produce a result, wherein the execution of the workload is evaluated by other edge nodes in the group of edge nodes to produce a reputation score of the edge node, where the transceiver is to provide the result to the edge orchestrator.
-
公开(公告)号:US20190042319A1
公开(公告)日:2019-02-07
申请号:US16147118
申请日:2018-09-28
摘要: System and techniques for multifactor intelligent agent control are described herein. A workload request may be received from a user device via a network. The workload may be instantiated in an isolated environment on an edge computing platform. Here, the isolated environment may be a container or a virtual machine. The instantiation of the workload may include using a hardware security component (SEC) of the mobile edge computing platform to prevent access to data or code of the workload from other environments hosted by the mobile edge computing platform. The workload may then be executed in the isolated environment and a result of the workload returned to the user device.
-
公开(公告)号:US20180114012A1
公开(公告)日:2018-04-26
申请号:US15298416
申请日:2016-10-20
申请人: Kapil Sood , Somnath Chakrabarti , Wei Shen , Carlos V. Rozas , Mona Vij , Vincent R. Scarlata
发明人: Kapil Sood , Somnath Chakrabarti , Wei Shen , Carlos V. Rozas , Mona Vij , Vincent R. Scarlata
CPC分类号: G06F21/53 , G06F8/61 , G06F9/4406 , G06F9/45558 , G06F12/1036 , G06F12/109 , G06F12/1425 , G06F21/575 , G06F21/79 , G06F2009/45587 , G06F2212/1052 , H04L41/5041
摘要: Methods and apparatus for implemented trusted packet processing for multi-domain separatization and security. Secure enclaves are created in system memory of a compute platform configured to support a virtualized execution environment including a plurality of virtual machines (VMs) or containers, each secure enclave occupying a respective protected portion of the system memory, wherein software code external from a secure enclave cannot access code or data within a secure enclave, and software code in a secure enclave can access code and data both within the secure enclave and external to the secure enclave. Software code for implementing packet processing operations is installed in the secure enclaves. The software in the secure enclaves is then executed to perform the packet processing operations. Various configurations of secure enclaves and software code may be implemented, including configurations supporting service chains both within a VM or contain or across multiple VMs or containers, as well a parallel packet processing operations.
-
公开(公告)号:US09705849B2
公开(公告)日:2017-07-11
申请号:US14513140
申请日:2014-10-13
申请人: Kapil Sood , Mesut A. Ergin , John R. Fastabend , Shinae Woo , Jeffrey B. Shaw , Brian J. Skerry
发明人: Kapil Sood , Mesut A. Ergin , John R. Fastabend , Shinae Woo , Jeffrey B. Shaw , Brian J. Skerry
CPC分类号: H04L63/0272 , G06F21/554 , H04L63/0428 , H04L63/061 , H04L63/1408 , H04L63/1425 , H04L63/1433 , H04L63/20
摘要: Technologies for distributed detection of security anomalies include a computing device to establish a trusted relationship with a security server. The computing device reads one or more packets of at least one of an inter-virtual network function network or an inter-virtual network function component network in response to establishing the trusted relationship and performs a security threat assessment of the one or more packets. The computing device transmits the security threat assessment to the security server.
-
5.发明申请TECHNOLOGIES FOR GEOLOCATION ATTESTATION OF COMPUTING DEVICES IN A NETWORK PATH 审中-公开网络路径中计算设备的地面测绘技术公开(公告)号:US20160344729A1
公开(公告)日:2016-11-24
申请号:US14670856
申请日:2015-03-27
申请人: Thomas M. Slaight , Brian J. Skerry , Kapil Sood , Ren Wang
发明人: Thomas M. Slaight , Brian J. Skerry , Kapil Sood , Ren Wang
IPC分类号: H04L29/06 , H04L12/26 , H04L9/32 , H04L12/721
CPC分类号: H04L63/0876 , H04L9/3247 , H04L9/3297 , H04L43/106 , H04L45/123 , H04L63/0435 , H04L63/0442 , H04L63/061
摘要: Technologies for geolocation attestation of computing devices in a network path include a verification device to generate a secure trace packet such that the secure trace packet includes a timestamp that corresponds with a departure time of the secure trace packet from the verification device. The computing device transmits the secure trace packet to a computing device in the network path. The network path identifies one or more intermediate devices through which to communicate the secure trace packet from the verification device to a target computing device. The computing device verifies a signature of a cryptographically-signed secure trace packet received by the verification computing device from the computing device and determines whether a sub-path of the network path is authorized based on the cryptographically-signed secure trace packet and reference network path data, which indicates a maximum allowed geographical distance between two computing devices in the network path.
摘要翻译: 用于网络路径中的计算设备的地理位置证明的技术包括生成安全跟踪分组的验证设备,使得安全跟踪分组包括与来自验证设备的安全跟踪分组的出发时间相对应的时间戳。 计算设备将安全跟踪分组发送到网络路径中的计算设备。 网络路径识别一个或多个中间设备,通过该中间设备将安全跟踪分组从验证设备传送到目标计算设备。 计算设备验证由验证计算设备从计算设备接收的加密签名的安全跟踪分组的签名,并且基于加密签名的安全跟踪分组和参考网络路径来确定网络路径的子路径是否被授权 数据,其指示网络路径中两个计算设备之间的最大允许的地理距离。
-
公开(公告)号:US20160094573A1
公开(公告)日:2016-03-31
申请号:US14513140
申请日:2014-10-13
申请人: Kapil Sood , Mesut A. Ergin , John R. Fastabend , Shinae Woo , Jeffrey B. Shaw , Brian J. Skerry
发明人: Kapil Sood , Mesut A. Ergin , John R. Fastabend , Shinae Woo , Jeffrey B. Shaw , Brian J. Skerry
CPC分类号: H04L63/0272 , G06F21/554 , H04L63/0428 , H04L63/061 , H04L63/1408 , H04L63/1425 , H04L63/1433 , H04L63/20
摘要: Technologies for distributed detection of security anomalies include a computing device to establish a trusted relationship with a security server. The computing device reads one or more packets of at least one of an inter-virtual network function network or an inter-virtual network function component network in response to establishing the trusted relationship and performs a security threat assessment of the one or more packets. The computing device transmits the security threat assessment to the security server.
摘要翻译: 用于分布式检测安全异常的技术包括与安全服务器建立信任关系的计算设备。 响应于建立可信关系,计算设备读取虚拟网络功能网络或虚拟网络功能组件网络中的至少一个的一个或多个分组,并对一个或多个分组进行安全威胁评估。 计算设备向安全服务器传输安全威胁评估。
-
7.发明授权Method and apparatus for low-power AP-assisted fast wireless roaming using optimized neighbor graphs 有权使用优化邻居图的低功率AP辅助快速无线漫游的方法和装置公开(公告)号:US09014376B2
公开(公告)日:2015-04-21
申请号:US12383204
申请日:2009-03-19
申请人: Zongming Yao , Kapil Sood
发明人: Zongming Yao , Kapil Sood
CPC分类号: H04L9/0844 , H04L9/08 , H04L63/061 , H04L2209/80 , H04W12/04 , H04W12/06 , H04W36/0016 , H04W84/12 , H04W88/08 , Y02D70/1222 , Y02D70/142 , Y02D70/146 , Y02D70/23
摘要: An embodiment of the present invention provides a method, comprising using optimized neighbor graphs for low-power access point assisted fast wireless roaming by a wireless station (STA) operating in a wireless network.
摘要翻译: 本发明的一个实施例提供一种方法,其包括使用经由在无线网络中操作的无线站(STA)的低功率接入点辅助的快速无线漫游的优化邻居图。
-
8.发明授权Method, apparatus and system for platform identity binding in a network node 有权用于网络节点中的平台身份绑定的方法,装置和系统公开(公告)号:US08812704B2
公开(公告)日:2014-08-19
申请号:US13339276
申请日:2011-12-28
申请人: Kapil Sood , Jesse R. Walker
发明人: Kapil Sood , Jesse R. Walker
CPC分类号: H04L63/10 , H04L9/3234 , H04L9/3263 , H04L29/06775 , H04L63/0823 , H04L63/102
摘要: Embodiments of apparatuses, articles, methods, and systems for binding various platform identities for a policy negotiation are generally described herein. Other embodiments may be described and claimed.
摘要翻译: 这里通常描述用于绑定用于策略协商的各种平台身份的装置,文章,方法和系统的实施例。 可以描述和要求保护其他实施例。
-
9.发明授权Apparatus, system and method of prioritizing a management frame of a wireless network 有权对无线网络的管理帧进行优先排序的装置,系统和方法公开(公告)号:US08767758B2
公开(公告)日:2014-07-01
申请号:US12611480
申请日:2009-11-03
申请人: Kapil Sood
发明人: Kapil Sood
IPC分类号: H04L12/28
摘要: A method and apparatus to enable configuring of a management frame priority and security type. The method and the apparatus may set a priority level and a transmission data rate of a management frame. The apparatus includes a memory including a priority queue for each management frame and a transmitter to transmit said management frame according to the priority queue of said frame.
摘要翻译: 一种能够配置管理帧优先级和安全类型的方法和装置。 该方法和装置可以设置管理帧的优先级和传输数据速率。 该装置包括一个包括每个管理帧的优先级队列的存储器和一个根据所述帧的优先级队列发射所述管理帧的发射机。
-
公开(公告)号:US20130311809A1
公开(公告)日:2013-11-21
申请号:US13953160
申请日:2013-07-29
申请人: Kapil Sood
发明人: Kapil Sood
IPC分类号: G06F1/32
CPC分类号: G06F1/3293 , G06F1/3209 , G06F1/3287 , H04L12/10 , H04L49/90 , Y02D10/171 , Y02D50/20
摘要: Technologies for reduced power network processing include a main processor, a low-power co-processor, and a network interface controller. The network interface controller receives one or more network packets while the computing device is in a sleep state, filters the one or more network packets to identify network packets to be handled by the low-power co-processor without waking the main processor from the sleep state, and wakes the low-power co-processor, without waking the main processor, to handle at least one network packet of the identified network packets to be handled by the low-power co-processor.
摘要翻译: 用于减少电力网络处理的技术包括主处理器,低功率协处理器和网络接口控制器。 网络接口控制器在计算设备处于睡眠状态时接收一个或多个网络分组,对一个或多个网络分组进行过滤,以识别由低功率协处理器处理的网络分组,而不会使主处理器从休眠状态唤醒 状态,并且在不唤醒主处理器的情况下唤醒低功率协处理器来处理由低功率协处理器处理的所识别的网络分组的至少一个网络分组。
-
-
-
-
-
-
-
-
-
搜索结果
133 条记录 (耗时 0.03 秒)
