公开(公告)号：US20200177549A1

公开(公告)日：2020-06-04

申请号：US16209291

申请日：2018-12-04

Applicant: Cisco Technology, Inc.

Inventor： Robert Edgar Barton ,  Jerome Henry ,  Matthias Falkner ,  Maik Guenter Seewald

IPC: H04L29/06 ,  H04L12/24

Abstract: A server, in communication with a plurality of microservices in a microservices mesh environment, obtains data about inbound communications to a first microservice and outbound communications from the first microservice of the plurality of microservices. The server analyzes the data to learn an operational behavior of the first microservice and determine a firewall rule set to be applied associated with the first microservice based on the operational behavior learned for the first microservice. The server causes a micro-firewall to be instantiated for the first microservice. The micro-firewall is configured to apply the firewall rule set to inbound communications to the first microservice and outbound communications from the first microservice.

公开(公告)号：US12082227B2

公开(公告)日：2024-09-03

申请号：US17395796

申请日：2021-08-06

Applicant: Cisco Technology, Inc.

Inventor： Robert E. Barton ,  Maik Guenter Seewald ,  Pascal Thubert ,  Jerome Henry

IPC: H04W72/50 ,  H04W84/12

CPC classification number: H04W72/535 ,  H04W84/12

Abstract: Time Sensitive Networking (TSN) in wireless environments may be provided. First, a Radio Frequency (RF) profile associated with a station may be received by a computing device. Next, a number of Transmit Opportunities (TxOPs) to use for transmitting data between an Access Point (AP) and the station based on the received RF profile may be determined. The determined number of TxOPs may then be provided to a wireless controller associated with the AP.

公开(公告)号：US20240090011A1

公开(公告)日：2024-03-14

申请号：US17932066

申请日：2022-09-14

Applicant: Cisco Technology, Inc.

Inventor： Malcolm Muir Smith ,  Maik Guenter Seewald ,  Robert E. Barton

IPC: H04W72/12 ,  H04W28/02

CPC classification number: H04W72/1231 ,  H04W28/0268

Abstract: Time Sensitive Network (TSN) Quality of Service (QoS) management may be provided. A number of Transmit Opportunities (TxOPs) to use for transmitting data between an Access Point (AP) and a client device over a wireless link may be received. An initial gate configuration to the AP for transmitting data between the AP and the client device over the wireless link for a transmit period of each cycle of a number of cycles may be provided based on the number of TxOPs. A change in a network condition of the wireless link may be detected. The initial gate configuration for the transmit period in a current cycle of the number of cycles may be adjusted in response detecting the change in the network condition of the wireless link.

公开(公告)号：US11755762B2

公开(公告)日：2023-09-12

申请号：US17236936

申请日：2021-04-21

Applicant: Cisco Technology, Inc.

Inventor： Maik Guenter Seewald ,  Robert Edgar Barton ,  Jerome Henry

IPC: G06F21/62 ,  H04L9/08 ,  G06F9/445 ,  H04L9/40

CPC classification number: G06F21/6218 ,  G06F9/445 ,  G06F21/62 ,  H04L9/0861 ,  H04L63/08

Abstract: The disclosed technology provides solutions that enable scalable and secure data retrieval between microservices by using microservice attributes to encrypt container based data stores. A process of the technology can include steps for: instantiating a first microservice and a second microservice in a cloud environment, wherein the first microservice is associated with a first attribute label and the second microservice is associated with a second attribute label, generating a first key based on the first attribute label and a second key based on the second attribute label, associating a first data store with the first microservice, wherein the first data store is encrypted using the first key, and associating a second data store with the second microservice, wherein the second data store is encrypted using the second key. Systems and machine readable media are also provided.

公开(公告)号：US20230087308A1

公开(公告)日：2023-03-23

申请号：US17481784

申请日：2021-09-22

Applicant: Cisco Technology, Inc.

Inventor： Malcolm Muir Smith ,  Jerome Henry ,  Maik Guenter Seewald ,  Sanjay Katabathuni

IPC: H04W56/00 ,  H04W48/16

Abstract: Ranging and timing may be provided. A station may send an action frame. The action frame may include an Identifier (ID) associated with an upcoming Timing Measurement (TM)/Fine Timing Measurement (FTM) session. The action frame may indicate a purpose of the upcoming TM/FTM session. Next, the station may send, subsequent to sending the action frame, a TM/FTM session request associated with the action frame. The station may then perform the purpose indicated by the action frame.

公开(公告)号：US20220350925A1

公开(公告)日：2022-11-03

申请号：US17244114

申请日：2021-04-29

Applicant: Cisco Technology, Inc.

Inventor： William Sterling Alexander ,  Joshua Austin Knestaut ,  Jerome Henry ,  Maik Guenter Seewald ,  Robert Edgar Barton

IPC: G06F21/62 ,  G06T5/00 ,  G06T7/11 ,  G06K9/00 ,  G06N20/00 ,  G06T11/20

Abstract: Methods are provided in which a user device connects a participant to a collaboration session in which the participant communicates with at least one other participant using audio and/or video, which is distributed in a media stream to the at least one other participant via a respective user device. In these methods, the user device detects at least one of an object within a space that is included in the video and an audio signal and selectively filters the media stream to exclude the object or a portion of the audio signal based on at least one of participant list information, learned background information, or learned voices of participants of the collaboration session.

公开(公告)号：US11316736B2

公开(公告)日：2022-04-26

申请号：US16865864

申请日：2020-05-04

Applicant: Cisco Technology, Inc.

Inventor： Maik Guenter Seewald ,  Robert Edgar Barton ,  Jerome Henry

IPC: H04L12/24 ,  G05B19/05 ,  H04L29/08 ,  H04L12/851 ,  H04L41/0816 ,  H04L41/08 ,  H04L41/5003 ,  H04L41/5041 ,  H04L69/324 ,  H04L47/2425

Abstract: A network controller automatically adjusts a computer network based on the operational information of an industrial device. The network controller receives a notification from a network element in the computer network that the industrial device attached to the network element has an administrative shell. The administrative shell includes operational information describing the operation of the industrial device. The network controller retrieves the administrative shell from the industrial device. The network controller parses the operational information in the administrative shell to determine an intent for the industrial device, and adjusts the computer network based on the intent of the industrial device.

公开(公告)号：US20210194851A1

公开(公告)日：2021-06-24

申请号：US16838822

申请日：2020-04-02

Applicant: Cisco Technology, Inc.

Inventor： Robert Edgar Barton ,  Thomas Szigeti ,  Jerome Henry ,  Ruben Gerald Lobo ,  Laurent Jean Charles Hausermann ,  Maik Guenter Seewald ,  Daniel R. Behrens

IPC: H04L29/06 ,  H04L12/24 ,  H04L12/823 ,  G05B19/05

Abstract: According to one or more embodiments of the disclosure, a device in a network identifies a packet sent via the network towards an endpoint as being a control packet for the endpoint. The device extracts one or more control parameter values from the control packet. The device compares the one or more control parameter values to a policy associated with the endpoint. The device initiates a corrective measure, based on a determination that the one or more control parameter values violate the policy associated with the endpoint.

公开(公告)号：US20200351249A1

公开(公告)日：2020-11-05

申请号：US16402568

申请日：2019-05-03

Applicant: Cisco Technology, Inc.

Inventor： Robert Edgar Barton ,  Maik Guenter Seewald ,  Jerome Henry

IPC: H04L29/06

Abstract: In one embodiment, a network policy engine obtains a substation configuration description for a substation, indicative of intelligent electronic devices (IEDs), associated network communication devices, and related communication configuration information. The network policy engine then creates a mapping of the IEDs and the associated network communication devices based on the substation configuration description, associating each of the IEDs to a corresponding network port of the associated network communication devices. The network policy engine may then further create network control parameters based on the substation configuration description, which comprise defined communication flows for the IEDs and associated security group tags (SGTs) for the defined communication flows. The techniques herein may then cause the SGTs to be imposed at mapped network ports of the network communication devices for the IEDs according to security group access (SGA)-based network control to thereby establish secure network communication for the IEDs within the particular substation.

公开(公告)号：US20200057863A1

公开(公告)日：2020-02-20

申请号：US16105898

申请日：2018-08-20

Applicant: Cisco Technology, Inc.

Inventor： Maik Guenter Seewald ,  Robert Edgar Barton ,  Jerome Henry

IPC: G06F21/62 ,  H04L29/06 ,  G06F9/445 ,  H04L9/08

Abstract: The disclosed technology provides solutions that enable scalable and secure data retrieval between microservices by using microservice attributes to encrypt container based data stores. A process of the technology can include steps for: instantiating a first microservice and a second microservice in a cloud environment, wherein the first microservice is associated with a first attribute label and the second microservice is associated with a second attribute label, generating a first key based on the first attribute label and a second key based on the second attribute label, associating a first data store with the first microservice, wherein the first data store is encrypted using the first key, and associating a second data store with the second microservice, wherein the second data store is encrypted using the second key. Systems and machine readable media are also provided.