公开(公告)号：US20200004572A1

公开(公告)日：2020-01-02

申请号：US16457278

申请日：2019-06-28

Applicant: CABLE TELEVISION LABORATORIES, INC

Inventor： Igor Faynberg ,  Donald E. A. Clarke ,  Steven J. Goeringer

IPC: G06F9/455 ,  H04L29/06

Abstract: A virtual network system for a computer network is provided. The system includes a first host executing a virtual network function manager. The system also includes a second host executing a management virtual machine. The management virtual machine is in communication with the virtual network function manager and with one or more virtual network function component instantiations. The management virtual machine is programmed to route messages between the one or more virtual network function component instantiations and the virtual network function manager.

公开(公告)号：US12278011B1

公开(公告)日：2025-04-15

申请号：US17356320

申请日：2021-06-23

Applicant: Cable Television Laboratories, Inc.

Inventor： Steven Goeringer ,  Chris Riha ,  Darshak Thakore ,  Igor Faynberg

IPC: G16H40/20 ,  G16H10/60 ,  G16H10/65 ,  G16H20/10 ,  G16H40/67 ,  G16H50/20 ,  H04L67/12 ,  H04W84/12

Abstract: Network communication systems and methods implementing micro network subsystems for securely delivering personal electronic information across wired and/or wireless media are disclosed. Software-defined networking (SDN) is used to segment a provider network into a plurality of personal micro networks each established for an object that is cryptographically bound to or cryptographically associated with a living being. When multiple providers implementing different workflows and binding different objects to the same person are connected to the communication system, an interoperable network database stores the information and compiles, searches, and distributes the information to/from multiple providers.

公开(公告)号：US20230036553A1

公开(公告)日：2023-02-02

申请号：US17965204

申请日：2022-10-13

Applicant: CABLE TELEVISION LABORATORIES, INC.

Inventor： Steven J. Goeringer ,  Igor Faynberg ,  Donald E.A. Clarke

IPC: H04L9/40 ,  G06F21/57

Abstract: A remote attestation system for a computer network includes an attestation operations subsystem configured to manage attestation procedures for the remote attestation system, and an attestation server pool including a plurality of attestation servers. The plurality of attestation servers is configured to perform attestation of at least one host in a data center. The system further includes an attestation state database configured to store a state of attestation of the at least one host, an attestation policy database configured to store at least one operator policy of the computer network, and an end-user service portal configured to provide access to the remote attestation system by users of the computer network.

公开(公告)号：US11563677B1

公开(公告)日：2023-01-24

申请号：US17162812

申请日：2021-01-29

Applicant: CABLE TELEVISION LABORATORIES, INC.

Inventor： Steven J. Goeringer ,  Igor Faynberg ,  Donald E. A. Clarke

IPC: H04L12/24 ,  G06F16/182 ,  H04L15/16 ,  G06F9/455 ,  H04L29/06 ,  H04L45/586 ,  H04L45/02 ,  H04L45/42

Abstract: A virtual network system for a computer network is provided. The system includes a first host executing a virtual network function manager. The system also includes a second host executing a management virtual machine. The management virtual machine is in communication with the virtual network function manager and with one or more virtual network function component instantiations. The management virtual machine is programmed to route messages between the one or more virtual network function component instantiations and the virtual network function manager.

公开(公告)号：US11516252B2

公开(公告)日：2022-11-29

申请号：US16176865

申请日：2018-10-31

Applicant: CABLE TELEVISION LABORATORIES, INC

Inventor： Igor Faynberg ,  Darshak Thakore ,  Donald E. A. Clarke ,  Steven J. Goeringer

IPC: H04L9/40 ,  G06F21/57 ,  H04L12/28

Abstract: A system for monitoring the security of a connected Internet of Things (IoT) device is provided. The system includes a network doppelgänger (ND) computer device. The ND computer device is in communication with the IoT device and a service provider computer device associated with the IoT device. The ND computer device is programmed to store a plurality of policies associated with the service provider computer device. The ND computer device is also programmed to receive a communication from the IoT device addressed to the service provider computer device. The ND computer device is further programmed to analyze the communication in view of the plurality of policies to determine whether the communication is approved. If the communication is approved, the ND computer device is programmed to route the communication to the service provider computer device.

公开(公告)号：US20190042302A1

公开(公告)日：2019-02-07

申请号：US16052392

申请日：2018-08-01

Applicant: CABLE TELEVISION LABORATORIES, INC

Inventor： Steven J. Goeringer ,  Igor Faynberg ,  Massimiliano Pala

IPC: G06F9/48 ,  G06F9/455 ,  G06F21/57 ,  G06F21/60 ,  H04L12/46

Abstract: A client access network includes a cluster of servers. The cluster of servers includes a boot node, an administrator node, a computing node, and a storage node. The client access network further includes a plurality of segregated subnetworks. The plurality of segregated subnetworks includes a boot subnetwork, an administration subnetwork, a public subnetwork, and a private subnetwork. The client access network further includes at least one hardware security module, a dedicated subnet in operable communication with the at least one hardware security module and each of the plurality of segregated subnetworks, and a router in operable communication with the at least one hardware security module and each of the cluster of servers. The router is further configured to route traffic among the plurality of segregated subnetworks and the dedicated subnet.

公开(公告)号：US11556364B2

公开(公告)日：2023-01-17

申请号：US16576630

申请日：2019-09-19

Applicant: CABLE TELEVISION LABORATORIES, INC.

Inventor： Igor Faynberg ,  Steven J. Goeringer

IPC: G06F9/455 ,  H04L9/32 ,  H04L9/08 ,  H04L9/00

Abstract: Methods, systems, and devices for enabling public key infrastructure (PKI) in the generic could environment and the network function virtualization (NFV) environment. A host device may receive, from an orchestrator of a computer network environment, an indication of a workload to be executed by a virtual machine (VM) hosted on the host device, where the indication includes an identifier of the workload. The VM may transmit a request for a certificate to a hardware security module associated with the host device including the identifier of the workload. After transmitting the request for the certificate, the VM may receive the requested certificate from the HSM. In some cases, the VM may determine a private key associated with the workload and include the private key within the request for the certificate. Additionally or alternatively, the HSM may determine the private key. Here, the HSM may include the private key within the certificate.

公开(公告)号：US11477247B2

公开(公告)日：2022-10-18

申请号：US17168956

申请日：2021-02-05

Applicant: CABLE TELEVISION LABORATORIES, INC.

Inventor： Steven J. Goeringer ,  Igor Faynberg ,  Donald E. A. Clarke

IPC: H04L9/40 ,  G06F21/57 ,  H04L67/10 ,  H04L41/069

Abstract: A remote attestation system for a computer network includes an attestation operations subsystem configured to manage attestation procedures for the remote attestation system, and an attestation server pool including a plurality of attestation servers. The plurality of attestation servers is configured to perform attestation of at least one host in a data center. The system further includes an attestation state database configured to store a state of attestation of the at least one host, an attestation policy database configured to store at least one operator policy of the computer network, and an end-user service portal configured to provide access to the remote attestation system by users of the computer network.