公开(公告)号：US11671356B2

公开(公告)日：2023-06-06

申请号：US17482126

申请日：2021-09-22

Applicant: Apple Inc.

Inventor： Yifan Yu

IPC: H04L45/00 ,  H04W40/02 ,  H04L67/1036 ,  H04L65/1033 ,  H04L69/22 ,  H04L67/1038 ,  H04W76/00 ,  H04L61/4511

CPC classification number: H04L45/38 ,  H04L61/4511 ,  H04L65/1036 ,  H04L67/1036 ,  H04L67/1038 ,  H04L69/22 ,  H04W40/02 ,  H04W76/00

Abstract: Techniques for a selection or reselection a user-plane path in a mobile network are disclosed herein. A user-plane gateway (GW-U) can be configured to decode a packet received from a control plane gateway (GW-C) in a packet data network gateway (PGW) to determine a forwarding policy. Additionally, the GW-U can decode, from an evolved node B (eNB), an internet protocol (IP) packet having a header field. Furthermore, the GW-U can determine a user-plane path for the IP packet based on a comparison of the header field and the forwarding policy. Based on the determined user-plane path, the GW-U can forward the IP packet to a local application server (AS), encapsulate and forward the IP packet to the PGW, or discard the IP packet. Moreover, the GW-U can encode the IP packet for transmission based on the determined user-plane selection.

公开(公告)号：US11652792B2

公开(公告)日：2023-05-16

申请号：US16668861

申请日：2019-10-30

Applicant: Avast Software s.r.o.

Inventor： Gandhi Balasubramaniam

IPC: H04L9/40 ,  H04L61/4511 ,  H04L67/02 ,  H04L67/1036 ,  H04L61/59

CPC classification number: H04L63/0236 ,  H04L61/4511 ,  H04L63/0263 ,  H04L63/1483 ,  H04L63/20 ,  H04L67/02 ,  H04L67/1036 ,  H04L61/59 ,  H04L63/08

Abstract: A network is secured by managing domain name requests such that client devices are restricted from visiting malicious or undesirable domains. An endpoint Domain Name Server (DNS) agent is installed on client devices on a local network, and the endpoint DNS agents intercept DNS requests from the client devices and process the received DNS request in the endpoint DNS agent based on a security policy set for the client device via the endpoint DNS agent. In a further example processing the received DNS request comprises identifying the client device, end user, and the DNS request to a cloud-based DNS server, and processing a response received from the cloud-based DNS server received in response to the DNS request. The endpoint DNS agent is further operable to distinguish between DNS requests for local domains and remote domains, and to redirect DNS requests for local domains to a local network DNS server.

公开(公告)号：US11627181B2

公开(公告)日：2023-04-11

申请号：US17338017

申请日：2021-06-03

Applicant: COUPANG CORP.

Inventor： Zhan Chen ,  Seong Hyun Jeong ,  Hyeong Gun Lee

IPC: H04L67/1008 ,  H04L67/1012 ,  H04L67/1029 ,  H04L67/1097 ,  H04L47/125 ,  H04L67/1036 ,  H04L67/1001 ,  H04L67/1004 ,  G06F11/34

Abstract: Systems and methods for monitoring utilization rates of a plurality of network-connected databases; receiving a first data read request from a first user device for a data element stored in the plurality of network-connected databases; selecting a first target database among the plurality of network-connected databases based on the utilization rates and a load sharing ratios; generating a first data query for a copy of the data element stored in the first target database; and forwarding the copy of the data element from the first target database to the first user device in response to the first data read request.

公开(公告)号：US11606672B2

公开(公告)日：2023-03-14

申请号：US17568923

申请日：2022-01-05

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Xiaoqiang Qiao ,  Yan Li

IPC: H04W4/08 ,  H04W8/18 ,  H04W8/20 ,  H04W28/08 ,  H04L67/1036 ,  H04W88/14 ,  H04L67/1023

Abstract: An information transmission method includes: receiving, by a network element selector from a user equipment (UE), a first message including identification information of the UE; determining, based on the identification information of the UE, a user group to which the UE belongs; determining a controller corresponding to the user group; and receiving and sending a further message to the controller.

公开(公告)号：US11570618B2

公开(公告)日：2023-01-31

申请号：US16972888

申请日：2018-06-25

Applicant: Telefonaktiebolaget LM Ericsson (publ)

Inventor： Mert Ocak ,  Jaime Jiménez

IPC: H04W12/04 ,  H04W4/70 ,  H04W12/06 ,  H04L61/3015 ,  H04L67/1036 ,  H04L101/385

Abstract: Methods for operating a device and for managing bootstrapping of devices are disclosed. The method (100) for operating a device comprises computing (102) a derivative of a secret shared between the device and a server entity of a network, generating (104) a temporary bootstrap URI by combining at least a part of the computed derivative with a static bootstrap URI for the network, and sending (106) a bootstrap request to the temporary bootstrap URI. The method for managing bootstrapping of devices comprises generating temporary bootstrap URIs corresponding to devices operable to connect to a network, and updating a network DNS registry to map the generated temporary bootstrap URIs to the IP address of at least one of a bootstrap server instance reachable via the network and/or a bootstrap load balancer. Also disclosed are a device, a bootstrap load balancer, a bootstrap server, and a computer program.

公开(公告)号：US11467881B2

公开(公告)日：2022-10-11

申请号：US15703371

申请日：2017-09-13

Applicant: AT&T Intellectual Property I, L.P.

Inventor： Manikka Thyagarajan

IPC: G06F15/173 ,  G06F9/50 ,  H04L41/50 ,  G06F9/455 ,  H04L67/1036 ,  H04L41/0896 ,  H04L41/5051 ,  H04L67/62 ,  H04L67/1014 ,  H04L41/08

Abstract: A system for providing network function as a service includes a combination of virtual network resources hosted on physical network resources, wherein the virtual network resources are communicatively chained to provide a dynamically configurable set of processing resources and a configurable controller in communication with the combination of virtual network resources, wherein the controller includes a scheduler and load balancer. The controller is configured to receive a request to provide network function as a service functionality, retrieve policies associated with the request, schedule the virtual network resources to be assigned in response to the request, instantiate the virtual network resources and balance the virtual network resources across one or more physical resources.

公开(公告)号：US20220158941A1

公开(公告)日：2022-05-19

申请号：US17588016

申请日：2022-01-28

Applicant: NETFLIX, INC.

Inventor： Sergey FEDOROV ,  Phelps Watson WILLIAMS ,  Niosha BEHNAM

IPC: H04L47/125 ,  H04L47/2441 ,  G06F17/11 ,  H04L67/56 ,  H04N21/239 ,  H04L67/1036 ,  H04L43/0864 ,  H04L67/101 ,  H04L67/1021 ,  H04L61/4511

Abstract: In various embodiments, domain name system (DNS) servers are implemented on a content distribution network (CDN) infrastructure in order to facilitate centralized control of traffic steering. Each server appliance in the CDN infrastructure acts as both an authoritative DNS nameserver and a dynamic request proxy, and each such server appliance is assigned to one of multiple cloud computing system regions. The assignment of server appliances to cloud regions is based on latency measurements collected via client application probes and an optimization that minimizes an overall latency experienced by the client applications subject to constraints that the maximum traffic to each cloud region is less than a capacity constraint for that region, the maximum deviation of traffic to each cloud regions at any point in time is less than a given percentage, and the maximum deviation of traffic between direct and indirect paths is less than a given percentage.

公开(公告)号：US11290529B2

公开(公告)日：2022-03-29

申请号：US17010568

申请日：2020-09-02

Applicant: Level 3 Communications, LLC

Inventor： Christopher Newton

IPC: G06F15/173 ,  H04L67/1036 ,  H04L67/1097 ,  H04L67/2866 ,  H04L67/568 ,  H04L67/60 ,  H04L61/4511 ,  H04L67/1042 ,  H04L67/1023 ,  H04L67/1029

Abstract: A computer-implemented method in a content delivery network (CDN) having multiple delivery servers. The CDN delivers content on behalf of at least one content provider. Distinct delivery servers are logically grouped into delivery server groups. One or more CDN name servers are associated with some of the delivery server groups. Network map data are determined using network data determined by the CDN name servers associated with at least some of the deliver server groups. The network data with respect to a CDN name server relative to a resolver is based on an estimated popularity of that CDN name server for that resolver. Responsive to a client request, including a hostname associated with a content provider, at least one CDN name server determines, using network map data, at least one delivery server to process the client request.

公开(公告)号：US12238166B2

公开(公告)日：2025-02-25

申请号：US18221147

申请日：2023-07-12

Applicant: Oracle International Corporation

Inventor： Yomesh Rajen Shah ,  Girish Ahuja ,  Jason Michael Rothstein ,  Mark Andrew Crawford ,  Neeraj Kumar ,  Umair Ahmed

IPC: H04L67/1036 ,  H04L12/66 ,  H04L67/1008 ,  H04L67/1014

Abstract: The present disclosure relates to managing services by a managed service provider (MSP) in a cloud based infrastructure. A control plane of the MSP is established in a first tenancy, and a first access plane of the MSP is established in a second tenancy of a cloud environment. The control plane is configured to manage a plurality of services offered by the MSP to a first host machine included in the second tenancy. A first request is transmitted from the control plane to the first access plane, where the first request is forwarded by the first access plane to the first host machine, and corresponds to a service utilized by the first host machine and managed by the control plane of the MSP. In response to the first request being validated, a first state of the first host machine is modified in the second tenancy based on the first request.

公开(公告)号：US12166760B2

公开(公告)日：2024-12-10

申请号：US18111594

申请日：2023-02-19

Applicant: Aviatrix Systems, Inc.

Inventor： Xiaobo Sherry Wei ,  Ramakrishnan Kunnath

IPC: H04L29/06 ,  G06F9/455 ,  H04L9/40 ,  H04L12/66 ,  H04L67/1036

Abstract: In an embodiment, a secure object transfer system is described. The system features a virtual private cloud network (VPC) and a controller. The VPC includes a plurality of gateways and a network load balancer, which configured to conduct a load balancing scheme on access messages from computing devices deployed within an on-premises network to direct the access memory to one of the plurality of gateways for storage or retrieval of an object from a cloud-based storage element. Each gateway includes Fully Qualified Domain Name (FQDN) filtering logic to restrict access of the computing devices to certain cloud-based storage elements in accordance with a security policy. The controller is configured to maintain and update the security policy utilized by each gateway of the plurality of gateways.