公开(公告)号：US11824710B2

公开(公告)日：2023-11-21

申请号：US18190560

申请日：2023-03-27

Applicant: Cisco Technology, Inc.

Inventor： Manoj Kumar Kushwaha ,  Scott Taft Potter ,  David Scott McCowan ,  Shailendra Bhargava

IPC: G06F15/173 ,  H04L41/0806 ,  H04L43/0876 ,  H04L41/0893 ,  H04L41/0894

CPC classification number: H04L41/0809 ,  H04L41/0893 ,  H04L41/0894 ,  H04L43/0876

Abstract: The present disclosure is directed to systems and techniques for providing zero-touch deployment (ZTD) and/or adaptive network traffic control policy management for deployed Internet-of-Things (IoT) devices. In one example, the systems and techniques can include obtaining a network traffic policy from a network traffic control service and obtaining one or more data usage policies from an IoT hub. Data usage measurements can be obtained for a plurality of IoT devices. One or more IoT device traffic policies can be automatically generated based at least in part on the network traffic policy, the one or more data usage policies, and the data usage measurements. The IoT device traffic policies can be used to provision or configure at least a portion of the plurality of IoT devices.

公开(公告)号：US20230299979A1

公开(公告)日：2023-09-21

申请号：US17824117

申请日：2022-05-25

Applicant: Cisco Technology, Inc.

Inventor： Manoj Kumar Kushwaha ,  Scott Taft Potter ,  David Scott McCowan ,  Shailendra Bhargava ,  Michael Freed

IPC: H04L9/32 ,  H04L9/08

CPC classification number: H04L9/3268 ,  H04L9/0866 ,  H04L9/3247

Abstract: Disclosed are techniques for dynamically creating policy-based intermediate certificates to sign device certificates of devices deployed in an enterprise network using ZTD. In one aspect, a method includes receiving network policy information to be used for creating policy-based intermediate certificates, each one of the policy-based intermediate certificates being used by a network controller for signing devices certificates of a different cluster of connected IoT devices; receiving, from an IoT device, a request for registration with the network controller; based on identifying information of the IoT device included in the request, determining one of the policy-based intermediate certificates to sign a device certificate of the loT device; and transmitting, to the IoT device, the device certificate signed using the one of the policy-based intermediate certificates.

公开(公告)号：US11658867B1

公开(公告)日：2023-05-23

申请号：US17727484

申请日：2022-04-22

Applicant: Cisco Technology, Inc.

Inventor： Manoj Kumar Kushwaha ,  Scott Taft Potter ,  David Scott McCowan ,  Shailendra Bhargava

IPC: G06F15/173 ,  H04L41/0806 ,  H04L43/0876 ,  H04L41/0893 ,  H04L41/0894

CPC classification number: H04L41/0809 ,  H04L41/0893 ,  H04L41/0894 ,  H04L43/0876

Abstract: The present disclosure is directed to systems and techniques for providing zero-touch deployment (ZTD) and/or adaptive network traffic control policy management for deployed Internet-of-Things (IoT) devices. In one example, the systems and techniques can include obtaining a network traffic policy from a network traffic control service and obtaining one or more data usage policies from an IoT hub. Data usage measurements can be obtained for a plurality of IoT devices. One or more IoT device traffic policies can be automatically generated based at least in part on the network traffic policy, the one or more data usage policies, and the data usage measurements. The IoT device traffic policies can be used to provision or configure at least a portion of the plurality of IoT devices.

公开(公告)号：US20230216734A1

公开(公告)日：2023-07-06

申请号：US17830777

申请日：2022-06-02

Applicant: Cisco Technology, Inc.

Inventor： Manoj Kumar Kushwaha ,  Scott Taft Potter ,  David Scott McCowan ,  Shailendra Bhargava

IPC: H04L41/0806 ,  H04L41/08 ,  H04L61/4511

CPC classification number: H04L41/0806 ,  H04L41/0886 ,  H04L61/4511

Abstract: The present disclosure is directed to techniques for streamlining the process of configuring IoT devices during their onboarding to a network by eliminating the need for pre-provisioning IoT devices with zero-touch deployment (ZTD) specific configurations during manufacturing. In one aspect, a method includes receiving, from an IoT device connected to a ZTD service, a message for establishing a connection to the ZTD service; provisioning, at the zero-touch deployment service, the IoT device with ZTD specific configurations; and completing, at the zero-touch deployment service, initial bootstrapping of the IoT device to establish the connection to the ZTD service using the ZTD specific configurations.

公开(公告)号：US11582601B2

公开(公告)日：2023-02-14

申请号：US16868097

申请日：2020-05-06

Applicant: Cisco Technology, Inc.

Inventor： Elango Ganesan ,  Michael Freed ,  Scott Taft Potter

IPC: H04W72/04 ,  H04W12/04 ,  H04L12/46 ,  H04W8/18 ,  H04W64/00 ,  H04W12/06 ,  H04W60/00 ,  H04W12/088 ,  H04L61/5007

Abstract: In one embodiment, a service receives a device registration request sent by an endpoint device, wherein the endpoint device executes an onboarding agent that causes the endpoint device to send the device registration request via a cellular connection to a private access point name (APN) associated with the service. The service verifies that a network address of the endpoint device from which the device registration request was sent is associated with an integrated circuit card identifier (ICCID) or international mobile equipment identity (IMEI) indicated by the device registration request. The service identifies a tenant identifier associated with the ICCID or IMEI. The service sends, based on the tenant identifier, a device registration response to the endpoint device via the private APN.

公开(公告)号：US11917399B2

公开(公告)日：2024-02-27

申请号：US18104829

申请日：2023-02-02

Applicant: Cisco Technology, Inc.

Inventor： Elango Ganesan ,  Michael Freed ,  Scott Taft Potter

IPC: H04W72/04 ,  H04W12/04 ,  H04L12/46 ,  H04W8/18 ,  H04W64/00 ,  H04W12/06 ,  H04W60/00 ,  H04W12/088 ,  H04L61/5007

CPC classification number: H04W12/04 ,  H04L12/4633 ,  H04L12/4641 ,  H04L61/5007 ,  H04W8/18 ,  H04W12/06 ,  H04W12/088 ,  H04W60/00 ,  H04W64/00

Abstract: In one embodiment, a service receives a device registration request sent by an endpoint device, wherein the endpoint device executes an onboarding agent that causes the endpoint device to send the device registration request via a cellular connection to a private access point name (APN) associated with the service. The service verifies that a network address of the endpoint device from which the device registration request was sent is associated with an integrated circuit card identifier (ICCID) or international mobile equipment identity (IMEI) indicated by the device registration request. The service identifies a tenant identifier associated with the ICCID or IMEI. The service sends, based on the tenant identifier, a device registration response to the endpoint device via the private APN.

公开(公告)号：US20230275805A1

公开(公告)日：2023-08-31

申请号：US18190560

申请日：2023-03-27

Applicant: Cisco Technology, Inc.

Inventor： Manoj Kumar Kushwaha ,  Scott Taft Potter ,  David Scott McCowan ,  Shailendra Bhargava

IPC: H04L41/0806 ,  H04L41/0894 ,  H04L41/0893 ,  H04L43/0876

CPC classification number: H04L41/0809 ,  H04L41/0894 ,  H04L41/0893 ,  H04L43/0876

Abstract: The present disclosure is directed to systems and techniques for providing zero-touch deployment (ZTD) and/or adaptive network traffic control policy management for deployed Internet-of-Things (IoT) devices. In one example, the systems and techniques can include obtaining a network traffic policy from a network traffic control service and obtaining one or more data usage policies from an IoT hub. Data usage measurements can be obtained for a plurality of IoT devices. One or more IoT device traffic policies can be automatically generated based at least in part on the network traffic policy, the one or more data usage policies, and the data usage measurements. The IoT device traffic policies can be used to provision or configure at least a portion of the plurality of IoT devices.

公开(公告)号：US20230198977A1

公开(公告)日：2023-06-22

申请号：US18049245

申请日：2022-10-24

Applicant: Cisco Technology, Inc.

Inventor： Manoj Kumar Kushwaha ,  Scott Taft Potter ,  David Scott McCowan ,  Shailendra Bhargava

IPC: H04L9/40 ,  G06F9/4401

CPC classification number: H04L63/0823 ,  H04L63/20 ,  H04L63/0892 ,  H04L63/107 ,  G06F9/4416

Abstract: The present disclosure is directed to techniques for bootstrapping and certificate management of Internet of Things (IoT) devices using a zero-touch deployment (ZTD) service. In one aspect, a method of managing Internet of Thing (IoT) devices includes receiving, at an IoT management component, a bootstrapping request from an IoT device, the request including location information of the IoT device; receiving, from a controller, credential information for the IoT device; generating a policy for bootstrapping the IoT device based at least on the location information and the credential information; and sending the policy to the IoT device for the IoT device to complete the bootstrapping.

公开(公告)号：US20210352472A1

公开(公告)日：2021-11-11

申请号：US16868097

申请日：2020-05-06

Applicant: Cisco Technology, Inc.

Inventor： Elango Ganesan ,  Michael Freed ,  Scott Taft Potter

IPC: H04W12/04 ,  H04L12/46 ,  H04L29/12 ,  H04W60/00 ,  H04W8/18 ,  H04W64/00 ,  H04W12/06 ,  H04W12/08

Abstract: In one embodiment, a service receives a device registration request sent by an endpoint device, wherein the endpoint device executes an onboarding agent that causes the endpoint device to send the device registration request via a cellular connection to a private access point name (APN) associated with the service. The service verifies that a network address of the endpoint device from which the device registration request was sent is associated with an integrated circuit card identifier (ICCID) or international mobile equipment identity (IMEI) indicated by the device registration request. The service identifies a tenant identifier associated with the ICCID or IMEI. The service sends, based on the tenant identifier, a device registration response to the endpoint device via the private APN.