Prioritizing wireless access technologies in an enterprise fabric

    公开(公告)号:US12114198B2

    公开(公告)日:2024-10-08

    申请号:US18359392

    申请日:2023-07-26

    CPC classification number: H04W28/0226 H04L12/4633 H04W84/12 H04W88/08

    Abstract: An enterprise network may receive a WiFi packet associated with a 5G service (or other type of service) at an access point (AP) in the enterprise network. The enterprise network determines whether the WiFi packet satisfies a first-packet policy associated with the 5G service, where the first-packet policy controls access to a tunnel for traversing the enterprise network to reach the 5G service. If the packet satisfies the policy, the enterprise network queries a map server to identify a location of a 5G border in the enterprise network that is connected to the 5G service. The enterprise network can transmit the WiFi packet on the tunnel with priority to meet SLA using the location of the 5G border.

    ROAMING VALIDATION METHOD FOR ACCESS NETWORK PROVIDERS

    公开(公告)号:US20240098477A1

    公开(公告)日:2024-03-21

    申请号:US17933527

    申请日:2022-09-20

    CPC classification number: H04W8/08 H04W8/06 H04W76/18

    Abstract: Roaming validation for Access Network Providers (ANPs), and particularly to protecting communications between Stations (STAs) and ANPs while providing roaming validation for ANPs may be provided. An ANP may first register a roaming federation system. The ANP may determine a roaming message based on subscription features of the network, and the ANP may request signing of the roaming message by the roaming federation system. The ANP may receive the signed roaming message from the roaming federation system and send the signed roaming message to a STA. The ANP may then receive a request to connect to the network from the STA and initiate a connection for the STA.

    CLASSIFICATION-BASED DATA PRIVACY AND SECURITY MANAGEMENT

    公开(公告)号:US20240056488A1

    公开(公告)日:2024-02-15

    申请号:US17886030

    申请日:2022-08-11

    CPC classification number: H04L63/205 H04L63/0478

    Abstract: Techniques are described for classification-based data security management. The classification-based data security management can include utilizing device and/or data attributes to identify security modes for communication of data stored in a source device. The security modes can be identified based on a hybrid-encryption negotiation. The attributes can include a device resource availability value, an access trust score, a data confidentiality score, a geo-coordinates value, and/or a date/time value. The security modes can include a hybrid-encryption mode. The source device can utilize the hybrid-encryption mode to transmit the data, via one or more network nodes, such as an edge node, to one or more service nodes.

    Intelligent and optimal resource selection within a network slice

    公开(公告)号:US11889352B2

    公开(公告)日:2024-01-30

    申请号:US17675190

    申请日:2022-02-18

    CPC classification number: H04W28/08 H04W16/02 H04W72/04 H04W72/542

    Abstract: A method is provided for use in a network that includes a plurality of user plane functions that perform processing of user plane traffic sessions from one or more mobile wireless user devices. The method includes periodically monitoring resource utilization of the plurality of user plane functions to estimate a resource utilization level of respective user plane functions. Based on the periodically monitoring, the method further includes storing for the respective user plane functions a resource utilization level indicator for each of the respective user plane functions according a resource utilization level of the respective user plane functions. User plane traffic sessions for a given tracking area are re-assigned (moved) among the plurality of user plane functions based on the resource utilization level indicators for the respective user plane functions to achieve a desired quality of experience for the user plane traffic sessions.

    SECURE ACCESS SERVICE EDGE FUNCTION WITH CONFIGURED METRIC COLLECTION INTELLIGENCE

    公开(公告)号:US20230379319A1

    公开(公告)日:2023-11-23

    申请号:US17749274

    申请日:2022-05-20

    CPC classification number: H04L63/083 H04L63/20

    Abstract: In one embodiment, a method herein comprises: receiving, at a device, a registration request from a telemetry exporter that transmits telemetry data; generating, by the device, a telemetry configuration file for the telemetry exporter, the telemetry configuration file defining a policy for transmission of telemetry data from the telemetry exporter and an authentication token for the telemetry exporter; sharing, by the device, the policy with a security enforcer; and sending, by the device, the telemetry configuration file to the telemetry exporter, wherein the telemetry exporter is caused to connect with the security enforcer using the authentication token, send the telemetry configuration file to the security enforcer, and transmit collected telemetry data to the security enforcer, and wherein the security enforcer is caused to create a dynamic publish-subscribe stream for publishing the collected telemetry data received from the telemetry exporter based on the telemetry configuration file and the policy.

    Hybrid cloud services for enterprise fabric

    公开(公告)号:US11601496B1

    公开(公告)日:2023-03-07

    申请号:US17728657

    申请日:2022-04-25

    Abstract: This disclosure describes techniques and mechanisms for providing hybrid cloud services for enterprise fabric. The techniques include enhancing an on-demand protocol (e.g., such as LISP) and allowing simplified security and/or firewall service insertion for datacenter servers providing those services. Accordingly, the techniques described herein provide hybrid cloud services that work in disaggregated, distributed, and consistent way, while avoiding complex datacenter network devices (e.g., such running overlay on TOR), replacing and moving the functionality to on demand protocol enabled servers, which intelligently receive the required mappings as well as registers and publishes the service information to intelligently interact with the network.

    REMOTE ACCESS POLICIES FOR IOT DEVICES USING MANUFACTURER USAGE DESCRIPTION (MUD) FILES

    公开(公告)号:US20220263820A1

    公开(公告)日:2022-08-18

    申请号:US17174906

    申请日:2021-02-12

    Abstract: In one embodiment, a management service for a network that is executed by one or more devices establishes a trust relationship with an entity associated with an endpoint in the network. The management service receives, via a Manufacturer Usage Description (MUD) file for the endpoint, an indication that the entity desires remote access to the endpoint in the network. The management service configures, based on the indication, the network to provide a remote access connection between the entity and the endpoint in the network. The management service provides, to the entity, credentials to the entity for the remote access connection.

    Intelligent and optimal resource selection within a network slice

    公开(公告)号:US11297534B2

    公开(公告)日:2022-04-05

    申请号:US16536555

    申请日:2019-08-09

    Abstract: A method is provided for use in a network that includes a plurality of user plane functions that perform processing of user plane traffic sessions from one or more mobile wireless user devices. The method includes periodically monitoring resource utilization of the plurality of user plane functions to estimate a resource utilization level of respective user plane functions. Based on the periodically monitoring, the method further includes storing for the respective user plane functions a resource utilization level indicator for each of the respective user plane functions according a resource utilization level of the respective user plane functions. User plane traffic sessions for a given tracking area are re-assigned (moved) among the plurality of user plane functions based on the resource utilization level indicators for the respective user plane functions to achieve a desired quality of experience for the user plane traffic sessions.

    CONTROLLER-BASED MULTICAST INTERWORKING

    公开(公告)号:US20250055721A1

    公开(公告)日:2025-02-13

    申请号:US18231195

    申请日:2023-08-07

    Abstract: With a controller coupled to a first multicast domain and a second multicast domain having incompatible multicast profiles, source and group (S,G) state information may be extracted from a plurality of nodes of the first multicast domain and the second multicast domain, A first interdomain border node may be within the first multicast domain. A second interdomain border node may be defined within the second multicast domain. The (S,G) state information may be transmitted to the first interdomain border node and the second interdomain border node. The multicast traffic may be transmitted between the first multicast domain and the second multicast domain via the first interdomain border node and the second interdomain border node based at least in part on the (S,G) state information.

Patent Agency Ranking