公开(公告)号：US20180191607A1

公开(公告)日：2018-07-05

申请号：US15394215

申请日：2016-12-29

Applicant: Juniper Networks, Inc.

Inventor： Ravindranath C. Kanakarajan

IPC: H04L12/713 ,  H04L12/24 ,  H04L12/715

CPC classification number: H04L45/586 ,  G06F9/5077 ,  H04L41/0893 ,  H04L45/04

Abstract: In general, techniques are described for placing, for execution, virtualized network functions (VNFs) for network services to virtual hardware components of a network function virtualization infrastructure (NFVI) having a multi-layer switch hierarchy to locate VNFs that are adjacent, in an ordering within a network service or between network services, logically near to one another in the multi-layer switch hierarchy.

公开(公告)号：US10469476B1

公开(公告)日：2019-11-05

申请号：US16163036

申请日：2018-10-17

Applicant: Juniper Networks, Inc.

Inventor： Ravindranath C. Kanakarajan

IPC: H04L29/06 ,  H04L12/24 ,  H04L12/713

Abstract: The disclosed apparatus may include (1) providing a framework that enables a customer entity of a service provider to configure, via a customer portal, a network device of the service provider that directs network traffic of the customer entity, (2) creating, for the customer entity by way of the framework, a virtual network that includes at least a portion of the network device of the service provider, (3) detecting an attempt by the customer entity to configure at least a portion of the virtual network via the customer portal, and then in response to detecting the attempt by the customer entity, (4) performing a configuration operation that configures the portion of the virtual network as directed by the customer entity via the customer portal. Various other apparatuses, systems, and methods are also disclosed.

公开(公告)号：US10063415B1

公开(公告)日：2018-08-28

申请号：US15197754

申请日：2016-06-29

Applicant: Juniper Networks, Inc.

Inventor： Ravindranath C. Kanakarajan

IPC: G06F15/177 ,  H04L12/24 ,  H04L29/08

CPC classification number: H04L41/5054 ,  H04L41/0806 ,  H04L67/10 ,  H04L67/16

Abstract: Techniques are disclosed for reducing the time required to instantiate network services in a service provider network to service requests by subscriber devices. In one example, an orchestration engine pre-creates pools of different virtual network functions (VNFs). Upon receiving a request to service network traffic from a subscriber device, the orchestration engine dynamically creates a service chain using the appropriate VNFs from the pools of different VNFs. In another example, the orchestration engine pre-creates pools of common service chains. Upon receiving a request to service network traffic from a subscriber device, the orchestration engine selects the appropriate service chain from the pools of service chains. After configuring the service chain, the orchestration engine issues instructions to a Software-Defined Networking (SDN) controller causing the SDN controller to update forwarding information in the service provider network to enable the service chain to service the subscriber traffic.

公开(公告)号：US10230709B1

公开(公告)日：2019-03-12

申请号：US15197756

申请日：2016-06-30

Applicant: Juniper Networks, Inc.

Inventor： Ravindranath C. Kanakarajan

IPC: H04L29/06 ,  H04L12/24 ,  H04L12/713

Abstract: The disclosed apparatus may include (1) providing a framework that enables a customer entity of a service provider to configure, via a customer portal, a network device of the service provider that directs network traffic of the customer entity, (2) creating, for the customer entity by way of the framework, a virtual network that includes at least a portion of the network device of the service provider, (3) detecting an attempt by the customer entity to configure at least a portion of the virtual network via the customer portal, and then in response to detecting the attempt by the customer entity, (4) performing a configuration operation that configures the portion of the virtual network as directed by the customer entity via the customer portal. Various other apparatuses, systems, and methods are also disclosed.

公开(公告)号：US10079812B1

公开(公告)日：2018-09-18

申请号：US15078908

申请日：2016-03-23

Applicant: Juniper Networks Inc.

Inventor： Venkanna Thadishetty ,  Ravindranath C. Kanakarajan

IPC: H04L29/06 ,  H04L29/08 ,  G06F21/60 ,  H04L9/32 ,  H04L9/08

CPC classification number: H04L63/0471 ,  G06F21/6209 ,  H04L9/0877 ,  H04L9/0897 ,  H04L9/3234 ,  H04L67/06 ,  H04L67/1097

Abstract: Techniques are disclosed for intercepting, by a customer-premises equipment (CPE), a request for a content file. The request may originate from a computing device in a local area network for the CPE and may be destined for a destination device external to the local area network for the CPE. In response to determining that an encrypted content file for the content file is stored by a storage device for the CPE, the CPE may decrypt, using at least one cryptographic key obtained from a Trusted Platform Module (TPM) for the CPE, the encrypted content file to obtain the content file. The CPE may send the content file to the computing device.

公开(公告)号：US20180176077A1

公开(公告)日：2018-06-21

申请号：US15898207

申请日：2018-02-15

Applicant: Juniper Networks, Inc.

Inventor： Ravindranath C. Kanakarajan ,  Venkanna Thadishetty

IPC: H04L12/24 ,  H04L9/32 ,  H04W64/00 ,  H04L29/06

CPC classification number: H04L41/08 ,  H04L9/005 ,  H04L9/3247 ,  H04L9/3297 ,  H04L41/0813 ,  H04L41/0893 ,  H04L41/28 ,  H04L63/107 ,  H04L63/123 ,  H04L63/126 ,  H04L63/20 ,  H04W64/003

Abstract: The disclosed apparatus may include an encryption device that signs information exchanged between network devices to ensure the integrity of the information. The disclosed apparatus may also include a network device communicatively coupled to the encryption device, wherein the network device (1) obtains geo-location information that identifies the location of the network device, (2) directs the encryption device to sign the geo-location information to ensure the integrity of the geo-location information, (3) provides the signed geo-location information to a remote management system that manages the configuration of the network device based at least in part on the geo-location information, and (4) receives a configuration profile that modifies the configuration of the network device to account for the current location of the network device from the remote management system. Various other apparatuses, systems, and methods are also disclosed.

公开(公告)号：US10389575B2

公开(公告)日：2019-08-20

申请号：US15655496

申请日：2017-07-20

Applicant: Juniper Networks, Inc.

Inventor： Ravindranath C. Kanakarajan

IPC: H04L12/26 ,  H04L12/24 ,  H04L12/28 ,  H04L12/801 ,  H04L29/08 ,  H04L12/851

Abstract: A device may include one or more processors to detect an issue in a universal customer premises equipment (uCPE) platform; select a traffic flow to migrate from the uCPE platform to a virtual customer premises equipment (vCPE) platform, the traffic flow may be selected based on a characteristic of the traffic flow; determine a traffic path of the traffic flow through the vCPE platform; select a point of presence (PoP) of the vCPE platform to host a virtual network function (VNF) associated with the traffic flow based on the PoP being situated along the traffic path; and perform an action associated with the PoP or the traffic flow to resolve the issue.

公开(公告)号：US09647841B1

公开(公告)日：2017-05-09

申请号：US14871228

申请日：2015-09-30

Applicant: Juniper Networks, Inc.

Inventor： Venkanna Thadishetty ,  Ravindranath C. Kanakarajan

IPC: H04L9/32 ,  H04L29/06

CPC classification number: H04L9/3234 ,  H04L9/3247 ,  H04L63/0442 ,  H04L63/08 ,  H04L63/083

Abstract: The disclosed system may include (1) a detection module, stored in memory, that detects that a user is attempting to operate a network peripheral device configured for connecting into a base network device, at least one of the network peripheral device and the base network device including a trusted platform module that further includes an endorsement key that identifies the trusted platform module, (2) an obtaining module, stored in memory, that obtains a digitally signed indication that the user is authorized by a vendor to operate the network peripheral device, (3) an enablement module, stored in memory, that enables the user to operate the network peripheral device based on obtaining the digitally signed indication that the user is authorized by the vendor to operate the network peripheral device, and (4) at least one physical processor configured to execute these modules. Various other systems and methods are also disclosed.

公开(公告)号：US20160286392A1

公开(公告)日：2016-09-29

申请号：US14668834

申请日：2015-03-25

Applicant: Juniper Networks, Inc.

Inventor： Ravindranath C. Kanakarajan ,  Venkanna Thadishetty

IPC: H04W12/06 ,  H04L9/32 ,  H04W76/02 ,  H04B7/185 ,  H04W12/04

CPC classification number: H04W12/06 ,  H04B7/1851 ,  H04L9/0825 ,  H04L9/32 ,  H04L9/3247 ,  H04L63/0281 ,  H04L63/0442 ,  H04L63/0876 ,  H04L63/0884 ,  H04L63/126 ,  H04L2209/24 ,  H04L2209/72 ,  H04W12/04 ,  H04W76/12

Abstract: The disclosed apparatus may include (1) a reply-reception module, stored in memory, that receives, from a satellite device, an authentication reply that includes an original authentication message digitally signed by the aggregation device using a private key of the aggregation device and that is digitally signed by the satellite device using a private key of the satellite device, (2) a forwarding module, stored in memory, that forwards the authentication reply to a network management server, (3) a validation-reception module, stored in memory, that receives, from the network management server in response to forwarding the authentication reply, a validation message, and (4) an authentication module, stored in memory, that authenticates the satellite device based at least in part on receiving the validation message. Various other apparatuses, systems, and methods are also disclosed.

Abstract translation: 所公开的装置可以包括：（1）存储在存储器中的应答接收模块，其从卫星设备接收包括由聚合设备使用聚合设备的私钥进行数字签名的原始认证消息的认证回复，以及 由卫星设备使用卫星设备的私钥进行数字签名，（2）存储在存储器中的转发模块，其将认证回复转发给网络管理服务器，（3）验证接收模块，存储在 存储器，其从网络管理服务器接收响应于转发认证答复的验证消息，以及（4）存储在存储器中的至少部分地基于接收验证消息来认证卫星设备的认证模块。 还公开了各种其它装置，系统和方法。

公开(公告)号：US10547508B1

公开(公告)日：2020-01-28

申请号：US16102417

申请日：2018-08-13

Applicant: Juniper Networks, Inc.

Inventor： Ravindranath C. Kanakarajan

IPC: G06F15/177 ,  H04L12/24 ,  H04L29/08

Abstract: Techniques are disclosed for reducing the time required to instantiate network services in a service provider network to service requests by subscriber devices. In one example, an orchestration engine pre-creates pools of different virtual network functions (VNFs). Upon receiving a request to service network traffic from a subscriber device, the orchestration engine dynamically creates a service chain using the appropriate VNFs from the pools of different VNFs. In another example, the orchestration engine pre-creates pools of common service chains. Upon receiving a request to service network traffic from a subscriber device, the orchestration engine selects the appropriate service chain from the pools of service chains. After configuring the service chain, the orchestration engine issues instructions to a Software-Defined Networking (SDN) controller causing the SDN controller to update forwarding information in the service provider network to enable the service chain to service the subscriber traffic.