公开(公告)号：US09667509B1

公开(公告)日：2017-05-30

申请号：US14605856

申请日：2015-01-26

Applicant: Amdocs Software Systems Limited

Inventor： Guy Levi ,  Nimrod Sandlerman

IPC: G06F15/173 ,  H04L12/24 ,  H04L12/927

CPC classification number: H04L41/5041 ,  H04L41/0896 ,  H04L41/5035 ,  H04L47/80

Abstract: A system, method, and computer program product are provided for limiting an impact of at least one internal network entity on a network function virtualization (NFV) based communication network hosting the network entity, the method including: providing a container including at least one borderline gateway, providing within the container at least one of internal network entity, where the internal network entity includes a software module, a virtual network function (VNF), and a VNF instance, and assigning the borderline gateway at least one protective limit, where NFV-based network includes at least one external network entity, the external network entity is external to the container, where the at least one internal network entity communicates with any of the external network entities only via the at least one borderline gateway, and where the borderline gateway is operative to use the protective limit to limit the impact on the NFV-based network.

公开(公告)号：US09645899B1

公开(公告)日：2017-05-09

申请号：US14572726

申请日：2014-12-16

Applicant: Amdocs Software Systems Limited

Inventor： Eyal Felstaine ,  Ofer Hermoni ,  Nimrod Sandlerman

IPC: G06F11/20 ,  G06F11/14

CPC classification number: H04L43/10 ,  G06F9/45533 ,  G06F11/008 ,  G06F11/1451 ,  G06F11/1662 ,  G06F11/2002 ,  G06F11/2025 ,  G06F11/2035 ,  G06F11/2097 ,  G06F11/3433 ,  G06F2201/815 ,  G06F2201/84 ,  H04L41/0668 ,  H04L41/0893

Abstract: According to one aspect of the present invention there is provided a system, method, and computer program product for recovering from a network failure in a communication network using network function virtualization (NFV-based network), the method including: selecting a first network component of the NFV-based network, detecting at least one probable failure of the first network component, identifying at least one virtual network function (VNF) instance using the first network component, selecting a second network component to be used by same VNF for replacing the VNF instance in the first network component when the first network component is faulty, and securing at least one resource of the second network component for the VNF.

公开(公告)号：US09460286B1

公开(公告)日：2016-10-04

申请号：US14572723

申请日：2014-12-16

Applicant: Amdocs Software Systems Limited

Inventor： Eyal Felstaine ,  Ofer Hermoni ,  Nimrod Sandlerman

IPC: H04L29/06 ,  G06F21/56 ,  G06F21/43

CPC classification number: H04L63/1416 ,  H04L63/1441 ,  H04L63/1458 ,  H04L63/20

Abstract: A system, method, and computer program product are provided for providing security in a Network Function Virtualization based (NFV-based) communication network. In operation, a security attack is identified. Additionally, a first hardware unit attacked by the security attack is identified. Further, a hardware unit in which to initiate a security defense software program is identified. Moreover, the security defense software program is initiated in the identified hardware unit.

Abstract translation: 提供了一种系统，方法和计算机程序产品，用于在基于网络功能虚拟化（基于NFV的）通信网络中提供安全性。 在操作中，确定了安全攻击。 另外，确定了受安全攻击攻击的第一个硬件单元。 此外，识别出启动安全防御软件程序的硬件单元。 此外，安全防御软件程序在所识别的硬件单元中启动。

公开(公告)号：US09384028B1

公开(公告)日：2016-07-05

申请号：US14572716

申请日：2014-12-16

Applicant: Amdocs Software Systems Limited

Inventor： Eyal Felstaine ,  Ofer Hermoni ,  Nimrod Sandlerman

IPC: G06F9/45 ,  G06F9/455 ,  H04L29/08

CPC classification number: H04L67/02 ,  G06F9/45558 ,  G06F2009/45595 ,  H04L41/5025

Abstract: A system, method, and computer program product are provided for preserving service continuity in a Network Function Virtualization based (NFV-based) communication network. In use, a first virtual network function (VNF) instance associated with a first VNF in a first hardware unit in a Network Function Virtualization based (NFV-based) communication network is identified. Additionally, a second VNF instance on a second hardware unit is instantiated, the second VNF instance being compatible with the first VNF instance. Further, communication directed to the first VNF instance is diverted to the second VNF instance on the second hardware unit, in response to initiating the second VNF instance on a second hardware unit.

Abstract translation: 提供了一种系统，方法和计算机程序产品，用于在基于网络功能虚拟化（基于NFV的）通信网络中保持服务连续性。 在使用中，识别与基于网络功能虚拟化（基于NFV的）通信网络中的第一硬件单元中的第一VNF相关联的第一虚拟网络功能（VNF）实例。 另外，第二硬件单元上的第二VNF实例被实例化，第二VNF实例与第一VNF实例兼容。 此外，响应于在第二硬件单元上启动第二VNF实例，针对第一VNF实例的通信被转移到第二硬件单元上的第二VNF实例。

公开(公告)号：US09806979B1

公开(公告)日：2017-10-31

申请号：US14572728

申请日：2014-12-16

Applicant: Amdocs Software Systems Limited

Inventor： Eyal Felstaine ,  Ofer Hermoni ,  Nimrod Sandlerman

IPC: G06F15/173 ,  H04L12/26 ,  G06F9/455

CPC classification number: H04L43/10 ,  G06F9/45533 ,  G06F11/008 ,  G06F11/1451 ,  G06F11/1662 ,  G06F11/2002 ,  G06F11/2025 ,  G06F11/2035 ,  G06F11/2097 ,  G06F11/3433 ,  G06F2201/815 ,  G06F2201/84 ,  H04L41/0668 ,  H04L41/0893

Abstract: According to one aspect of the present invention there is provided a system, method, and computer program product for deploying a plurality of virtual network function (VNF) instances in a communication network using network function virtualization (NFV-based network), where the network includes a plurality of computing-related units and communication links in-between, the method including: determining at least one performance value for at least one of the computing-related units and communication links, determining at least one performance requirement for at least one of the VNF instances, and associating the at least one VNF instance with at least one of the computing-related units and the communication links according to the at least one performance requirement and the at least one performance value.

公开(公告)号：US09430262B1

公开(公告)日：2016-08-30

申请号：US14572719

申请日：2014-12-16

Applicant: Amdocs Software Systems Limited

Inventor： Eyal Felstaine ,  Ofer Hermoni ,  Nimrod Sandlerman

IPC: G06F9/45 ,  G06F9/455 ,  H04L29/08

CPC classification number: H04L67/1008 ,  G06F9/45533 ,  G06F9/45558 ,  G06F9/50 ,  G06F2009/45595 ,  H04L41/12 ,  H04L43/16 ,  H04L47/70 ,  H04L67/02 ,  H04L67/10 ,  H04L67/16 ,  H04L67/38

Abstract: A system, method, and computer program product are provided for managing hierarchy and optimization in network function virtualization based networks. In use, a first hardware unit of a plurality of hardware units associated with a network function virtualization (NFV) based communication network is identified, the first hardware unit being identified based on a first load characteristic associated with the first hardware unit. Further, a first virtual network function (VNF) instance associated with the first hardware unit is identified, the first VNF instance being associated with usage of at least one service. Additionally, at least one traffic route associated with the first VNF instance is identified, the at least one traffic route being associated with usage of the at least one service. Furthermore, a second hardware unit for handling at least a portion of a workload associated with the at least one service is identified, the second hardware unit being identified based on a second load characteristic associated with the second hardware unit, and the second hardware unit being capable of utilizing the at least one traffic route. Still yet, a second VNF instance is initiated in the second hardware unit. Moreover, at least part of the at least one service is migrated from the first VNF instance to the second VNF instance without disrupting the service.

Abstract translation: 提供了一种系统，方法和计算机程序产品，用于管理基于网络功能虚拟化的网络中的层次结构和优化。 在使用中，识别与基于网络功能虚拟化（NFV）的通信网络相关联的多个硬件单元的第一硬件单元，基于与第一硬件单元相关联的第一负载特性来识别第一硬件单元。 此外，识别与第一硬件单元相关联的第一虚拟网络功能（VNF）实例，所述第一VNF实例与至少一个服务的使用相关联。 另外，识别与第一VNF实例相关联的至少一个业务路由，所述至少一个业务路由与所述至少一个业务的使用相关联。 此外，识别用于处理与所述至少一个服务相关联的工作负荷的至少一部分的第二硬件单元，所述第二硬件单元基于与所述第二硬件单元相关联的第二负载特性来识别，所述第二硬件单元是 能够利用至少一个交通路线。 仍然，在第二硬件单元中启动第二VNF实例。 此外，至少一个服务的至少一部分从第一VNF实例迁移到第二VNF实例而不中断服务。

公开(公告)号：US09882828B1

公开(公告)日：2018-01-30

申请号：US14625596

申请日：2015-02-18

Applicant: Amdocs Software Systems Limited

Inventor： Nimrod Sandlerman ,  Eyal Felstaine ,  Ofer Hermoni ,  Itzik Kitroser

IPC: G06F15/173 ,  H04L12/911

CPC classification number: H04L47/74

Abstract: A system, method, and computer program product are provided for planning distribution of one or more network resources in a Network Function Virtualization based (NFV-based) communication network. In use, at least one Virtual Network Function (VNF) instance of a VNF is migrated between processing units in a NFV-based communication network, according to a change of load. Further, a lack of at least one network resource associated with at least one network node is reported for planning distribution of one or more network resources in the NFV-based communication network, the missing network resource at least partially limiting migration of one or more VNF instances.

公开(公告)号：US09838265B2

公开(公告)日：2017-12-05

申请号：US14572729

申请日：2014-12-16

Applicant: Amdocs Software Systems Limited

Inventor： Eyal Felstaine ,  Ofer Hermoni ,  Nimrod Sandlerman ,  Itzik Kitroser

IPC: G06F15/173 ,  H04L12/24 ,  H04W12/08 ,  H04W28/00

CPC classification number: G06F11/0793 ,  G06F11/0709 ,  G06F11/2023 ,  H04L41/022 ,  H04L41/20 ,  H04L41/28 ,  H04L67/10 ,  H04W12/08 ,  H04W28/00

Abstract: According to one aspect of the present invention there is provided a system, method, and computer program product for communicating information in a communication network using network function virtualization (NFV-based communication network), the method including: sending a communication from a first entity of the NFV-based communication network, the first entity being a sender, and receiving the communication by a second entity of the NFV-based communication network, the second entity being a receiver, where the communication includes: an identification of the sender of the communication, and an identification of the receiver of the communication, an identification of a function associated with the NFV-based communication network, and an authorization associating one or more of the sender and the receiver with the function.

公开(公告)号：US09794187B1

公开(公告)日：2017-10-17

申请号：US14572735

申请日：2014-12-16

Applicant: Amdocs Software Systems Limited

Inventor： Eyal Felstaine ,  Ofer Hermoni ,  Nimrod Sandlerman

IPC: G06F15/173 ,  H04L12/911 ,  H04L29/08

CPC classification number: H04L67/1008 ,  G06F9/45533 ,  G06F9/45558 ,  G06F9/50 ,  G06F2009/45595 ,  H04L41/12 ,  H04L43/16 ,  H04L47/70 ,  H04L67/02 ,  H04L67/10 ,  H04L67/16 ,  H04L67/38

Abstract: A system, method, and computer program product are provided for resource conversion in network function virtualization based networks. In use, a first resource of a first type is identified in a first hardware unit, the first resource at least potentially having insufficient availability and being associated with a Network Function Virtualization based (NFV-based) communication network. Additionally, a second resource of a second type is identified, the second resource being associated with the first hardware unit, the second resource being identified as sufficiently available. Further, a third resource of the first type is identified, the third resource being associated with a second hardware unit, the second hardware unit being associated with the second resource, the third resource being identified as sufficiently available.

公开(公告)号：US09760428B1

公开(公告)日：2017-09-12

申请号：US14572732

申请日：2014-12-16

Applicant: Amdocs Software Systems Limited

Inventor： Eyal Felstaine ,  Ofer Hermoni ,  Nimrod Sandlerman

IPC: G06F11/00 ,  G06F11/07 ,  H04L29/08 ,  G06F11/20

CPC classification number: G06F11/0793 ,  G06F11/0709 ,  G06F11/2023 ,  H04L41/022 ,  H04L41/20 ,  H04L41/28 ,  H04L67/10 ,  H04W12/08 ,  H04W28/00

Abstract: A system, method, and computer program product are provided for performing preventative maintenance in a Network Function Virtualization based (NFV-based) communication network. In use, a first potential fault is identified in a first resource in an NFV-based communication network. Additionally, a first time for maintaining the first resource is identified to prevent an occurrence of the first potential fault. Further, a second resource is identified for replacing the first resource during the first time.