公开(公告)号：US12107854B2

公开(公告)日：2024-10-01

申请号：US18344527

申请日：2023-06-29

Applicant: Cisco Technology, Inc.

Inventor： Thomas Szigeti ,  Alan Robert Lynn ,  David John Zacks ,  Frank Michaud

IPC: H04L9/40 ,  H04L67/55

CPC classification number: H04L63/0861 ,  H04L63/107 ,  H04L63/20 ,  H04L67/55 ,  H04L2463/082

Abstract: Disclosed herein are systems, methods, and computer-readable media for increasing security of devices that leverages an integration of an authentication system with at least one corporate service. In one aspect, a request is received from a user device to authenticate a person as a particular user by the authentication system. A photo of the person attempting to be authenticated as the particular user is captured. Nodal points are mapped to the captured photo of the person attempting to be authenticated, and the nodal points from the photo are compared against a reference model for facial recognition of the particular user. It is then determined whether the nodal points match the reference model for the particular user. The present technology also includes sending a command to the user device to send data to identify the person, and/or a location of the user device.

公开(公告)号：US12107830B2

公开(公告)日：2024-10-01

申请号：US17900516

申请日：2022-08-31

Applicant: Cisco Technology, Inc.

Inventor： Thomas Szigeti ,  David John Zacks ,  Walter T. Hulick, Jr. ,  Rachana Anubhav Soni ,  Hemamalini Subash

IPC: H04L9/40 ,  H04L69/22

CPC classification number: H04L63/0245 ,  H04L69/22

Abstract: A method is provided that is performed using an application performance management agent running on an application and/or application microservices. The method comprises detecting a request to the application and/or application microservices for data, and inserting data compliance metadata into packet headers of packets that are to be sent in response to the request by the application and/or application microservices. The data compliance metadata comprises data-compliance markings associated with the data based on user/operator-defined data compliance requirements. The method further includes causing the packets to be sent into a network so that one or more network devices or services in the network can read the data compliance metadata and apply packet handling policies.

公开(公告)号：US20240259089A1

公开(公告)日：2024-08-01

申请号：US18104141

申请日：2023-01-31

Applicant: Cisco Technology, Inc.

Inventor： Thomas Szigeti ,  David John Zacks ,  Jeff Apcar ,  Robert Edgar Barton ,  Jerome Henry ,  Vinay Saini

IPC: H04B7/185 ,  H04W12/37 ,  H04W40/20

CPC classification number: H04B7/18565 ,  H04W12/37 ,  H04W40/20

Abstract: This disclosure describes techniques for complying with a data sovereignty policy of data routed through a satellite network. An example method includes identifying data comprising a data sovereignty label indicating a first geographical region; determining that a coverage region of a satellite includes a first ground station in the first geographical region; determining that coverage region excludes a second ground station in a second geographical region; and based on determining that the coverage area includes the first ground station and excludes the second ground station, transmitting the data to the satellite.

公开(公告)号：US20240257645A1

公开(公告)日：2024-08-01

申请号：US18104200

申请日：2023-01-31

Applicant: Cisco Technology, Inc.

Inventor： Jeff Apcar ,  Thomas Szigeti ,  David John Zacks ,  Robert Edgar Barton

IPC: G08G5/00 ,  B64D45/00 ,  H04B7/185

CPC classification number: G08G5/0004 ,  B64D45/00 ,  H04B7/1851

Abstract: This disclosure describes techniques for tracking aircraft using a satellite network. An example method includes receiving ADS-B messages from multiple aircraft; determining that at least one of the ADS-B messages satisfies at least one condition; and in response to determining that at least one of the ADS-B messages satisfies the at least one condition, transmitting an alert. In some cases, a system transmits an instruction to perform the example method to at least one satellite and receives the alert.

公开(公告)号：US20240244003A1

公开(公告)日：2024-07-18

申请号：US18586355

申请日：2024-02-23

Applicant: Cisco Technology, Inc.

Inventor： David John Zacks ,  Jeff Apcar ,  Oliver Boehmer ,  Thomas Szigeti

IPC: H04L47/193 ,  H04B7/185 ,  H04L69/16

CPC classification number: H04L47/193 ,  H04B7/18502 ,  H04L69/16

Abstract: Techniques for a TCP proxy to communicate over a LEO satellite network on behalf of a client device by selecting a TCP congestion-control algorithm that is optimal for the LEO satellite network based on the time of day and/or location of the TCP proxy. Based on the locations of satellites during the day as they traverse predefined and patterned orbital paths, different TCP congestion-control algorithms may be more optimized to communicate data through the LEO satellite network. However, client devices generally use a single TCP congestion-control algorithm to communicate over WAN networks. Accordingly, a TCP proxy may be inserted on, for example, a router to communicate with the client device using a TCP congestion-control algorithm that the client device is configured to use, but then communicate over the LEO satellite network using a different TCP congestion-control algorithm that is optimal based on the time of day and/or other factors.

公开(公告)号：US12001856B2

公开(公告)日：2024-06-04

申请号：US17898924

申请日：2022-08-30

Applicant: Cisco Technology, Inc.

Inventor： Jaganbabu Rajamanickam ,  Nagendra Kumar Nainar ,  Madhan Sankaranarayanan ,  David John Zacks

IPC: G06F9/445 ,  G06F8/65 ,  H04L45/02

CPC classification number: G06F9/44505 ,  G06F8/65 ,  H04L45/02

Abstract: A network device has a first OS component, a second OS component is added to run concurrently with the first. The first OS component transmits routing information to the second OS component where it is stored in memory. The second OS component registers with a routing infrastructure to receive packets that are routed to the first OS component. A timestamp and a first ID are added to a first instance of a packet and transmitted to the first OS component. The timestamp and a second ID are added to a second instance of the packet and transmitted to the second OS component. First functionality data for the first OS component is transmitted to a controller. Second functionality data for the second OS component is transmitted to the controller. The first and second functionality data are compared to determine whether to replace the first OS component with the second OS component.

公开(公告)号：US11943137B2

公开(公告)日：2024-03-26

申请号：US17721679

申请日：2022-04-15

Applicant: Cisco Technology, Inc.

Inventor： Hemamalini Subash ,  David John Zacks ,  N Shalini Srinivasan ,  Rashmi Nikhil Patil ,  Joel Abraham Obstfeld

IPC: H04L45/00 ,  H04L43/065 ,  H04L45/03 ,  H04L45/28

CPC classification number: H04L45/38 ,  H04L43/065 ,  H04L45/03 ,  H04L45/22 ,  H04L45/28

Abstract: Systems, methods, and computer-readable media are disclosed for proactively and adaptively rerouting data to a healthier path through network, as part of flow provisioning, based on environmental variables associated with devices in the network. The present technology includes identifying a routing path for forwarding traffic flows in a network, receiving diagnostic data of a routing device on the routing path. The diagnostic data include one or more environmental parameters associated with internal state and surroundings of the routing device. Further, the present technology includes comparing the diagnostic data of the routing device with a predetermined threshold and modifying, prior to a failure of the routing device, the routing path to bypass the routing device for at least a portion of the traffic flows based on the comparison between the diagnostic data of the routing device and the predetermined threshold.

公开(公告)号：US11917015B2

公开(公告)日：2024-02-27

申请号：US17667890

申请日：2022-02-09

Applicant: Cisco Technology, Inc.

Inventor： Carlos M. Pignataro ,  Nagendra Kumar Nainar ,  David John Zacks ,  John Matthew Swartz ,  Akram Ismail Sheriff

IPC: H04L67/141 ,  H04L41/08 ,  H04L47/72 ,  G06Q10/02 ,  H04L47/70 ,  H04L41/28 ,  G06Q10/109

CPC classification number: H04L67/141 ,  G06Q10/02 ,  G06Q10/109 ,  H04L41/08 ,  H04L41/28 ,  H04L47/72 ,  H04L47/822 ,  H04L47/825

Abstract: Presented herein are techniques to facilitate infrastructure and policy orchestration in a shared workspace network environment. In one example, a method may include obtaining, by a service broker, a reservation request from a consumer network for a consumer, wherein the reservation request seeks a reservation to reserve, at least in part, at least one workspace device for the consumer for a workspace for a particular day and a particular time period; based on determining that the at least one workspace device is available, providing a response to the consumer network that includes a first indicator for identifying the reservation of the workspace and at least one second indicator identifying the at least one workspace device; and upon receiving a session request from the consumer network that includes the second indicator, establishing a management tunnel to interconnect the consumer network and the at least one workspace device via the service broker.

公开(公告)号：US20240056461A1

公开(公告)日：2024-02-15

申请号：US17886429

申请日：2022-08-11

Applicant: Cisco Technology, Inc.

Inventor： David John Zacks ,  Thomas Szigeti ,  Rachana Anubhav Soni ,  Hemamalini Subash

IPC: H04L9/40 ,  H04L67/1008

CPC classification number: H04L63/1425 ,  H04L63/1433 ,  H04L67/1008

Abstract: This disclosure describes techniques for redirecting data traffic based on endpoint risk. An example method includes determining a risk associated with a first endpoint connected to a redirection point; determining that the risk exceeds a threshold; and based on determining that the risk exceeds the threshold, causing the redirection point to direct data traffic to a second endpoint and to refrain from directing the data traffic to the first endpoint.

公开(公告)号：US20230300138A1

公开(公告)日：2023-09-21

申请号：US17695265

申请日：2022-03-15

Applicant: Cisco Technology, Inc.

Inventor： Nagendra Kumar Nainar ,  Carlos M. Pignataro ,  John Matthew Swartz ,  Paul Brian Giralt ,  David John Zacks ,  Gonzalo Salgueiro

IPC: H04L9/40

CPC classification number: H04L63/102 ,  H04L63/105 ,  H04L63/20 ,  H04L63/029 ,  H04L63/0435

Abstract: Methods are provided in which a network device hosts distinct network access resources that are managed by different entities. The method includes obtaining a request for partitioning one or more network resources of an on-premise network device for connecting one or more endpoints to a first network managed by a first entity. The on-premise network device connects one or more endpoints to a second network managed by a different entity. The method further involves partitioning, based on the request, the one or more network resources and connecting the one or more endpoints to the first network using the one or more network resources. The one or more network resources are managed by the first entity while at least one other network resource of the on-premise network device is managed by the different entity and is associated with connecting the one or more endpoints to the second network.