公开(公告)号：US20190124053A1

公开(公告)日：2019-04-25

申请号：US16230173

申请日：2018-12-21

Applicant: Schweitzer Engineering Laboratories, Inc.

Inventor： Rhett Smith ,  Barry Jakob Grussling

IPC: H04L29/06

CPC classification number: H04L63/0471 ,  H04L45/38 ,  H04L45/42 ,  H04L45/64 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/162

Abstract: The present disclosure pertains to systems and methods for selectively encrypting data flows within a software defined network (SDN). In one embodiment, a communication device may be configured to receive a plurality of unencrypted data packets. The communication device may receive from an SDN controller a criterion used to identify at least one of the unencrypted data flows to be encrypted. Based on the criterion, an encryption subsystem may generate an encrypted data flow the unencrypted data packets based on an encryption key. In some embodiments, the encryption system may parse the packets and encrypt the data payloads without encrypting the routing information associated with the packet. In other embodiments, the encryption subsystem may be configured to encapsulate and encrypt the entire unencrypted data packet. In some embodiments, the encryption subsystem may further be configured to authenticate a sending device and/or to verify the integrity of a message.

公开(公告)号：US20190028382A1

公开(公告)日：2019-01-24

申请号：US15655197

申请日：2017-07-20

Applicant: VMware Inc.

Inventor： Raja Kommula ,  Raj Yavatkar ,  Priyanka Tembey

IPC: H04L12/729 ,  H04L29/08 ,  H04L12/721 ,  G06F9/48

CPC classification number: H04L45/125 ,  G06F9/45558 ,  G06F9/4856 ,  H04L45/38 ,  H04L45/70 ,  H04L47/2433 ,  H04L67/148 ,  H04L69/22

Abstract: Methods, apparatus, systems, and articles of manufacture are disclosed. An example apparatus includes a packet analyzer to determine that a first virtualized server is preparing to migrate to a second virtualized server based on a data packet, a packet flow path generator to identify a set of network switches between the first virtualized server and the second virtualized server when the first virtualized server is in a different rackmount server than the second virtualized server, and a policy adjustor to adjust a policy of one or more network switches in the set to prioritize a packet flow corresponding to the migration.

公开(公告)号：US20190020570A1

公开(公告)日：2019-01-17

申请号：US16133286

申请日：2018-09-17

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Xinggui WU ,  Jiao WANG

IPC: H04L12/751 ,  H04L12/721 ,  H04L12/931

CPC classification number: H04L45/02 ,  H04L41/12 ,  H04L45/26 ,  H04L45/38 ,  H04L45/64 ,  H04L47/32 ,  H04L49/355

Abstract: The disclosure provides a link discovery method and an apparatus. The method includes: sending, by a control plane device, a first message to a plurality of forwarding plane devices in a network to which the control plane device belongs, where the first message is used to instruct each forwarding plane device receiving the first message to send a topology discovery packet at all available ports of the forwarding plane device; receiving, by the control plane device, second messages respectively sent by the plurality of forwarding plane devices, where each of the second messages is generated, according to a first topology discovery packet received at a second port, by a second forwarding plane device sending the second message, and determining, by the control plane device, topology connections between the plurality of forwarding plane devices according to the second messages sent by the plurality of forwarding plane devices.

公开(公告)号：US20180331974A1

公开(公告)日：2018-11-15

申请号：US15776987

申请日：2016-11-23

Applicant: Alcatel Lucent

Inventor： Yuanyuan HE ,  Xin QU ,  Zhi WANG ,  Yigang CAI

IPC: H04L12/927 ,  H04L12/725 ,  H04L12/813 ,  H04L12/721 ,  H04L12/24 ,  G06F17/30

CPC classification number: H04L47/808 ,  G06F17/30867 ,  G06F17/30876 ,  H04L41/20 ,  H04L45/22 ,  H04L45/308 ,  H04L45/38 ,  H04L47/20 ,  H04L63/102

Abstract: A method for controlling a user data flow in an SDN controller of an SDN network includes retrieving user profile information from a user information database via an Ss interface with the user information database; controlling a data flow of a user based on the user profile information. The SDN controller is enabled to have a capability of obtaining user profile information through a newly added interface between the SDN controller and the user information database, such that the SDN controller may control a user data flow based on the user profile information.

公开(公告)号：US20180324086A1

公开(公告)日：2018-11-08

申请号：US16032073

申请日：2018-07-11

Applicant: INTERNATIONAL BUSINESS MACHINES CORPORATION

Inventor： Charles S. Lingafelt ,  James W. Murray ,  James T. Swantek ,  James S. Worley

IPC: H04L12/721 ,  H04L12/26 ,  H04L12/707 ,  H04L12/801

CPC classification number: H04L45/38 ,  H04L43/08 ,  H04L43/0852 ,  H04L43/087 ,  H04L43/0876 ,  H04L43/16 ,  H04L45/22 ,  H04L47/18 ,  H04L47/29

Abstract: Technical solutions for optimization of network resources are described. One general aspect includes a method, including measuring, by a controller, an attribute of network route being used to communicate a network flow between a first apparatus and a second apparatus. The method also includes comparing, by the controller, a predetermined threshold and the attribute. The method also includes in response to the attribute being non-compliant with the predetermined threshold, selecting, by the controller, an alternative network route to communicate the network flow between the first apparatus and the second apparatus. The method also includes routing, by the controller, the network flow to be communicated via the alternative route between the first apparatus and the second apparatus.

公开(公告)号：US10084694B2

公开(公告)日：2018-09-25

申请号：US14369841

申请日：2011-12-29

Applicant: Hans-Jochen Morper ,  Ernst-Dieter Schmidt

Inventor： Hans-Jochen Morper ,  Ernst-Dieter Schmidt

IPC: H04L12/28 ,  H04L12/717 ,  H04L12/721 ,  H04L12/715 ,  H04J14/02 ,  H04B10/27

CPC classification number: H04L45/42 ,  H04B10/27 ,  H04J14/0227 ,  H04J14/0282 ,  H04J14/0283 ,  H04J14/0286 ,  H04L45/04 ,  H04L45/38

Abstract: Traffic is conveyed in a communications network by a homogeneous transport network from edge nodes located at edges of the homogeneous transport network to at least one processing center (D-center, C-center) located at an edge of the homogeneous transport network. The at least one processing center processes the traffic and controls and forwards traffic to be further conveyed to the edge nodes.

公开(公告)号：US10075373B2

公开(公告)日：2018-09-11

申请号：US15249127

申请日：2016-08-26

Applicant: ViaSat, Inc.

Inventor： Pawan Uberoy

IPC: H04L12/741 ,  H04L29/06 ,  H04L29/08 ,  H04L12/803

CPC classification number: H04L45/745 ,  H04L45/38 ,  H04L45/64 ,  H04L47/125 ,  H04L47/2483 ,  H04L65/1069 ,  H04L67/10 ,  H04L67/104 ,  H04L67/327

Abstract: A process capable of facilitating network communication using forwarders or vforwarders interconnected via an overlay network is disclosed. The process, in one aspect, is able to receive a packet stream or network traffic from a customer premise equipment (“CPE”) using a point-to-point (“PTP”) connection via the overlay network. After identifying a service component able to provide a network function (“NF”) in accordance with the packet stream, at least a portion of the packet stream is forwarded to the service component via a second PTP connection through the overlay network according to a set of predefined requirements. Upon receipt of a processed packet stream in response to the packet stream from the service component, the processed packet stream is forwarded to another forwarder via a hop-to-hop (“HTH”) link through the overlay network in accordance with the processed packet stream.

公开(公告)号：US20180248790A1

公开(公告)日：2018-08-30

申请号：US15965849

申请日：2018-04-28

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Shiyong TAN ,  Xiaoqiang QIAO

IPC: H04L12/721 ,  H04L12/851 ,  H04L12/803 ,  H04L12/841 ,  H04L12/26 ,  H04L12/751

CPC classification number: H04L45/38 ,  H04L43/106 ,  H04L45/02 ,  H04L45/306 ,  H04L47/125 ,  H04L47/2441 ,  H04L47/28

Abstract: The present disclosure discloses a route determining method, including: receiving a first flow entry which includes a first route mapping relationship and a first load ratio with respect to a full load capacity of each service node; receiving a second flow entry which includes a second route mapping relationship, a second load ratio with respect to a full load capacity of each service node, and a start time of the second flow entry; receiving a first packet of a first service flow; determining, according to a service chain identifier included in the first packet, that the first service flow is a first type of service flow; determining whether a time corresponding to a timestamp precedes the start time of the second flow entry; and if so, determining a service node for receiving the first packet according to the first flow entry; if not, determining a service node for receiving the first packet according to the second flow entry.

公开(公告)号：US20180248755A1

公开(公告)日：2018-08-30

申请号：US15965570

申请日：2018-04-27

Applicant: Huawei Technologies Co., Ltd.

Inventor： Artur Hecker ,  Zoran Despotovic

IPC: H04L12/24 ,  H04L12/741 ,  H04L12/721 ,  H04L12/707 ,  H04L12/751

CPC classification number: H04L41/0816 ,  H04L41/0668 ,  H04L45/02 ,  H04L45/22 ,  H04L45/38 ,  H04L45/54

Abstract: An embodiment first network node has a data flow table identifying forwarding rules to be applied to incoming data packets. The first network node is configured to allow for manipulation of the data flow table via control messages received via a control connection to a controller. The first network node is further configured to determine an occurrence of a network event or compliance with a condition specified by the controller. The first network node is further configured: to establish a control connection to a second network node in case that the network event occurs or the condition is met and to exchange control messages with the second network node via the control connection.

公开(公告)号：US10063466B2

公开(公告)日：2018-08-28

申请号：US14609664

申请日：2015-01-30

Applicant: Coriant Operations, Inc.

Inventor： Jaye M. Sauer

IPC: G01R31/08 ,  H04L12/28 ,  H04J3/16 ,  G06F15/177 ,  H04L12/721 ,  H04L29/06 ,  H04L12/24 ,  H04L12/751 ,  H04L12/801 ,  H04L12/715

CPC classification number: H04L45/38 ,  H04L41/0803 ,  H04L45/02 ,  H04L45/64 ,  H04L47/35 ,  H04L69/18

Abstract: The described embodiments provide techniques and architectures for enabling interoperability between legacy network systems and Software Defined Networking (SDN) systems. The embodiments add functionality to an SDN system to support interworking between an SDN controlled network, and a legacy network. When upgrading a legacy system to SDN, it may not be possible to upgrade all network components at once. The described embodiments facilitate the use of legacy network components together with SDN system components, by adding new functionality to the SDN data plane elements and control plane elements. The SDN forwarding network elements (NEs) terminate the physical links carrying legacy protocols that include combined data traffic and control information. The new functionality within the SDN forwarding NEs includes processing none or some of the control messages from a legacy NE within an SDN forwarding NE, and then forwarding the remaining control messages to the controller under which that particular SDN forwarding NE is subtended.