公开(公告)号：US10454891B2

公开(公告)日：2019-10-22

申请号：US15639045

申请日：2017-06-30

Applicant: Architecture Technology Corporation

Inventor： Benjamin L. Burnett ,  Deborah K. Charan ,  Fabio Pozzo ,  Ranga Ramanujan

IPC: H04L29/06 ,  H04L12/24

Abstract: This disclosure describes a context aware scalable dynamic network whereby network information concerning network elements in an untrusted (Black) network are gathered by network sensors, stored at a network sensor collector, and sent to another network sensor collector in a trusted (Red) network through a one-way guard. At the Red network, the network information from the Black network may be combined with network information from one or more Red networks. The combined network information may then be used to visualize a cross-domain network topology of both Red and Black networks, and to implement network management functions.

公开(公告)号：US20150180830A1

公开(公告)日：2015-06-25

申请号：US14512123

申请日：2014-10-10

Applicant: Architecture Technology Corporation

Inventor： Benjamin L. Burnett ,  Deborah K. Charan ,  Fabio Pozzo ,  Ranga Ramanujan

IPC: H04L29/06

CPC classification number: H04L63/02 ,  H04L41/0853 ,  H04L41/0856 ,  H04L41/22 ,  H04L41/28 ,  H04L63/0272 ,  H04L63/20

Abstract: This disclosure describes a context aware scalable dynamic network whereby network information concerning network elements in an untrusted (Black) network are gathered by network sensors, stored at a network sensor collector, and sent to another network sensor collector in a trusted (Red) network through a one-way guard. At the Red network, the network information from the Black network may be combined with network information from one or more Red networks. The combined network information may then be used to visualize a cross-domain network topology of both Red and Black networks, and to implement network management functions.

Abstract translation: 本公开描述了一种上下文感知可扩展动态网络，由此网络信息由不可信（黑）网络中的网络元件收集，存储在网络传感器收集器处的网络传感器收集，并发送到可信任（红色）网络中的另一个网络传感器收集器 单程护卫 在红色网络中，来自黑色网络的网络信息可以与来自一个或多个红色网络的网络信息组合。 然后可以将组合的网络信息用于可视化红色和黑色网络的跨域网络拓扑，并实现网络管理功能。

公开(公告)号：US11503119B1

公开(公告)日：2022-11-15

申请号：US17537457

申请日：2021-11-29

Applicant: ARCHITECTURE TECHNOLOGY CORPORATION

Inventor： Benjamin L. Burnett ,  Ranga S. Ramanujan

IPC: H04L29/06 ,  H04L29/08 ,  G06F9/50 ,  G06F21/55 ,  G06F21/31 ,  H04L67/1095 ,  H04L67/01

Abstract: Disclosed herein are embodiments of a cloud data synchronization system enabling an user operating a mobile client device to download mission-specific data sets from a fixed cloud-based server system to a database of the mobile client device, and then use the downloaded data sets independently on the mobile client device when the mobile client device is disconnected from a network connecting to the fixed cloud-based server system. When connectivity to the fixed cloud-based server system is re-established by the mobile client device in an intermittent and bandwidth-limited communication network environment, the fixed cloud-based server system may provide bi-directional data synchronization between records of the fixed cloud-based server system and the mobile client device to update the data sets on the fixed cloud-based server system and the mobile client device while operating in the intermittent and bandwidth-limited communication network environment.

公开(公告)号：US10986182B1

公开(公告)日：2021-04-20

申请号：US16773744

申请日：2020-01-27

Applicant: ARCHITECTURE TECHNOLOGY CORPORATION

Inventor： Benjamin L. Burnett ,  Ranga S. Ramanujan

IPC: H04L29/08 ,  H04L29/06

Abstract: Disclosed herein are embodiments of a cloud data synchronization system enabling an user operating a mobile client device to download mission-specific data sets from a fixed cloud-based server system to a database of the mobile client device, and then use the downloaded data sets independently on the mobile client device when the mobile client device is disconnected from a network connecting to the fixed cloud-based server system. When connectivity to the fixed cloud-based server system is re-established by the mobile client device in an intermittent and bandwidth-limited communication network environment, the fixed cloud-based server system may provide bi-directional data synchronization between records of the fixed cloud-based server system and the mobile client device to update the data sets on the fixed cloud-based server system and the mobile client device while operating in the intermittent and bandwidth-limited communication network environment.

公开(公告)号：US20180077171A1

公开(公告)日：2018-03-15

申请号：US15262979

申请日：2016-09-12

Applicant: Architecture Technology Corporation

Inventor： Ranga Ramanujan ,  Benjamin L. Burnett

IPC: H04L29/06 ,  H04L12/28

CPC classification number: H04L63/1408 ,  H04L12/2854 ,  H04L63/1441 ,  H04L63/1458 ,  H04L63/1483 ,  H04L69/22 ,  H04L2463/121

Abstract: This disclosure is directed to monitoring a crypto-partitioned, or cipher-text, wide-area network (WAN). A first computing device may be situated in a plain-text portion of a first enclave behind a first inline network encryptor (INE). A second device may be positioned in a plain-text portion of a second enclave behind a second INE. The two enclaves may be separated by a cipher-text WAN, over which the two enclaved may communicate. The first computing device may receive a data packet from the second computing device. The first computing device may then determine contents of a header of the data packet. The first computing device may, based at least in part on the contents of the header of the data packet, determine a status of the cipher-text WAN.

公开(公告)号：US09736112B2

公开(公告)日：2017-08-15

申请号：US14512123

申请日：2014-10-10

Applicant: Architecture Technology Corporation

Inventor： Benjamin L. Burnett ,  Deborah K. Charan ,  Fabio Pozzo ,  Ranga Ramanujan

IPC: G06F15/173 ,  H04L29/06 ,  H04L12/24 ,  G06F15/00

CPC classification number: H04L63/02 ,  H04L41/0853 ,  H04L41/0856 ,  H04L41/22 ,  H04L41/28 ,  H04L63/0272 ,  H04L63/20

Abstract: This disclosure describes a context aware scalable dynamic network whereby network information concerning network elements in an untrusted (Black) network are gathered by network sensors, stored at a network sensor collector, and sent to another network sensor collector in a trusted (Red) network through a one-way guard. At the Red network, the network information from the Black network may be combined with network information from one or more Red networks. The combined network information may then be used to visualize a cross-domain network topology of both Red and Black networks, and to implement network management functions.

公开(公告)号：US12047285B2

公开(公告)日：2024-07-23

申请号：US16812917

申请日：2020-03-09

Applicant: ARCHITECTURE TECHNOLOGY CORPORATION

Inventor： Ranga S. Ramanujan ,  Benjamin L. Burnett ,  Barry A. Trent ,  Jafar Al-Gharaibeh

IPC: H04L45/74 ,  H04L45/02 ,  H04L45/125 ,  H04L45/24 ,  H04W40/00

CPC classification number: H04L45/74 ,  H04L45/02 ,  H04L45/125 ,  H04L45/24 ,  H04W40/00

Abstract: A method of routing an Internet Protocol (IP) packet from a routing device is provided. The method includes receiving a first IP packet having a first IP header and a first IP data field, the first IP packet having a final destination corresponding to a destination device communicatively coupled to the routing device via a network route including at least two hops between the routing device and the final destination. A second IP packet having a second IP header and a second IP data field is generated. The second IP data field is a copy of the first IP data field, and a destination IP address field in the second IP header includes an IP address of a next hop on the network route. The second IP packet does not include an IP address of the final destination in the second IP header.

公开(公告)号：US11463366B1

公开(公告)日：2022-10-04

申请号：US17028664

申请日：2020-09-22

Applicant: Architecture Technology Corporation

Inventor： Benjamin L. Burnett ,  Deborah K. Charan ,  Ian J. McLinden ,  Jordan C. Bonney

IPC: H04L47/2441 ,  H04L47/762 ,  H04L41/084 ,  H04L41/0816 ,  H04L41/08 ,  H04L47/78 ,  H04W16/28 ,  H04B7/06 ,  H04W76/19 ,  H04L45/02 ,  H04W8/04

Abstract: This disclosure is directed to network optimization in a complex joint network for increasing the network utility of the complex joint network. A computing device in the complex joint network may receive a data flow via a complex joint network. The computing device may determine, based on a network template, a mission utility associated with the data flow and a traffic class associated with the data flow. The computing device may control one or more quality of service decisions based at least in part on the mission utility associated with the data flow and the traffic class associated with the data flow.

公开(公告)号：US20220294808A1

公开(公告)日：2022-09-15

申请号：US17663597

申请日：2022-05-16

Applicant: Architecture Technology Corporation

Inventor： Ranga Ramanujan ,  Benjamin L. Burnett

IPC: H04L9/40 ,  H04L12/28 ,  H04L69/22

Abstract: This disclosure is directed to monitoring a crypto-partitioned, or cipher-text, wide-area network (WAN). A first computing device may be situated in a plain-text portion of a first enclave behind a first inline network encryptor (INE). A second device may be positioned in a plain-text portion of a second enclave behind a second INE. The two enclaves may be separated by a cipher-text WAN, over which the two enclaved may communicate. The first computing device may receive a data packet from the second computing device. The first computing device may then determine contents of a header of the data packet. The first computing device may, based at least in part on the contents of the header of the data packet, determine a status of the cipher-text WAN.

公开(公告)号：US11336659B2

公开(公告)日：2022-05-17

申请号：US16856843

申请日：2020-04-23

Applicant: Architecture Technology Corporation

Inventor： Ranga Ramanujan ,  Benjamin L. Burnett

IPC: H04L29/06 ,  H04L12/28 ,  H04L69/22

Abstract: This disclosure is directed to monitoring a crypto-partitioned, or cipher-text, wide-area network (WAN). A first computing device may be situated in a plain-text portion of a first enclave behind a first inline network encryptor (INE). A second device may be positioned in a plain-text portion of a second enclave behind a second INE. The two enclaves may be separated by a cipher-text WAN, over which the two enclaved may communicate. The first computing device may receive a data packet from the second computing device. The first computing device may then determine contents of a header of the data packet. The first computing device may, based at least in part on the contents of the header of the data packet, determine a status of the cipher-text WAN.