公开(公告)号：US07827593B2

公开(公告)日：2010-11-02

申请号：US11171593

申请日：2005-06-29

申请人： Ned M. Smith ,  Howard C. Herbert ,  Karanvir Grewal

发明人： Ned M. Smith ,  Howard C. Herbert ,  Karanvir Grewal

IPC分类号： G06F7/04 ,  H04L29/06

CPC分类号： H04L63/20 ,  H04L63/105 ,  H04L63/1408

摘要： Embodiments of the inventions are generally directed to methods, apparatuses, and systems for the dynamic evaluation and delegation of network access control. In an embodiment, a platform includes a switch to control a network connection and an endpoint enforcement engine coupled with the switch. The endpoint enforcement engine may be capable of dynamically switching among a number of network access control modes responsive to an instruction received from the network connection.

摘要翻译： 本发明的实施例一般涉及用于动态评估和授权网络访问控制的方法，装置和系统。 在一个实施例中，平台包括用于控制网络连接的开关和与开关耦合的端点执行引擎。 端点执行引擎可以响应于从网络连接接收的指令而能够在多个网络访问控制模式之间动态切换。

公开(公告)号：US08752132B2

公开(公告)日：2014-06-10

申请号：US12901349

申请日：2010-10-08

申请人： Ned M. Smith ,  Howard C. Herbert ,  Karanvir Grewal

发明人： Ned M. Smith ,  Howard C. Herbert ,  Karanvir Grewal

IPC分类号： H04L29/06

CPC分类号： H04L63/20 ,  H04L63/105 ,  H04L63/1408

摘要： Embodiments of the inventions are generally directed to methods, apparatuses, and systems for the dynamic evaluation and delegation of network access control. In an embodiment, a platform includes a switch to control a network connection and an endpoint enforcement engine coupled with the switch. The endpoint enforcement engine may be capable of dynamically switching among a number of network access control modes responsive to an instruction received from the network connection.

摘要翻译： 本发明的实施例一般涉及用于动态评估和授权网络访问控制的方法，装置和系统。 在一个实施例中，平台包括用于控制网络连接的开关和与开关耦合的端点执行引擎。 端点执行引擎可以响应于从网络连接接收的指令而能够在多个网络访问控制模式之间动态切换。

公开(公告)号：US20130276052A1

公开(公告)日：2013-10-17

申请号：US12901349

申请日：2010-10-08

申请人： Howard C. Herbert ,  Karanvir Grewal ,  Ned M. Smith

发明人： Howard C. Herbert ,  Karanvir Grewal ,  Ned M. Smith

IPC分类号： H04L29/06

CPC分类号： H04L63/20 ,  H04L63/105 ,  H04L63/1408

摘要： Embodiments of the inventions are generally directed to methods, apparatuses, and systems for the dynamic evaluation and delegation of network access control. In an embodiment, a platform includes a switch to control a network connection and an endpoint enforcement engine coupled with the switch. The endpoint enforcement engine may be capable of dynamically switching among a number of network access control modes responsive to an instruction received from the network connection.

摘要翻译： 本发明的实施例一般涉及用于动态评估和授权网络访问控制的方法，装置和系统。 在一个实施例中，平台包括用于控制网络连接的开关和与开关耦合的端点执行引擎。 端点执行引擎可以响应于从网络连接接收的指令而能够在多个网络访问控制模式之间动态切换。

公开(公告)号：US08661521B2

公开(公告)日：2014-02-25

申请号：US11216429

申请日：2005-08-30

申请人： Ned M. Smith ,  Howard C. Herbert

发明人： Ned M. Smith ,  Howard C. Herbert

IPC分类号： H04L29/06

CPC分类号： H04L63/029 ,  H04L63/08

摘要： Embodiments of the invention are generally directed to systems, methods, and apparatuses for controlling a network connection based, at least in part, on dual-switching. In an embodiment, a tunnel proxy is coupled with a host execution environment. The tunnel proxy includes logic to provide a security protocol client and logic to provide a security protocol server. In one embodiment, the tunnel proxy provides a proxy for a policy decision point to the host execution environment. Other embodiments are described and claimed.

摘要翻译： 本发明的实施例一般涉及至少部分地基于双重切换来控制网络连接的系统，方法和装置。 在一个实施例中，隧道代理与主机执行环境耦合。 隧道代理包括提供安全协议客户端和逻辑以提供安全协议服务器的逻辑。 在一个实施例中，隧道代理为主机执行环境提供用于策略决策点的代理。 描述和要求保护其他实施例。

公开(公告)号：US20240259465A1

公开(公告)日：2024-08-01

申请号：US18619949

申请日：2024-03-28

申请人： Igor Duarte Cardoso ,  Todd Malsbary ,  Eric W. Multanen ,  Malini Bhandaru ,  Kshitij Arun Doshi ,  Ned M. Smith ,  Sunil Cheruvu ,  Anahit Tarkhanyan ,  Mats Gustav Agerstam

发明人： Igor Duarte Cardoso ,  Todd Malsbary ,  Eric W. Multanen ,  Malini Bhandaru ,  Kshitij Arun Doshi ,  Ned M. Smith ,  Sunil Cheruvu ,  Anahit Tarkhanyan ,  Mats Gustav Agerstam

IPC分类号： H04L67/10 ,  G06F11/30 ,  G06F21/57

CPC分类号： H04L67/10 ,  G06F11/3006 ,  G06F21/577

摘要： Various systems and methods for providing intent-based workload orchestration described herein. A data center system may include a plurality of compute nodes and an orchestration node. The orchestration node may be configured to identify a workload for execution on the plurality of compute nodes; identify intents that define requirements for the execution of the workload on the plurality of compute nodes; monitor the execution of the workload to produce monitoring data; and control the execution of the workload based on the intents and the monitoring data, to dynamically adapt to changed conditions during the execution of the workload.

公开(公告)号：US20240241769A1

公开(公告)日：2024-07-18

申请号：US18617321

申请日：2024-03-26

申请人： Ned M. Smith ,  Kshitij Arun Doshi ,  Sunil Cheruvu

发明人： Ned M. Smith ,  Kshitij Arun Doshi ,  Sunil Cheruvu

IPC分类号： G06F9/50 ,  G06F21/54

CPC分类号： G06F9/5077 ,  G06F9/505 ,  G06F21/54

摘要： Various systems and methods for providing secure and reliable node lifecycle in elastic workloads are described here. A compute node may be configured to: receive data describing a first elastic workload of the plurality of elastic workloads, the first elastic workload to execute on a first virtual execution environment, the first virtual execution environment associated with a first security context; determine a common resource that is used by the plurality of elastic workloads; store the common resource in a memory accessible by the first virtual execution environment; and execute the first elastic workload, wherein the first elastic workload has access to the common resource, and wherein the plurality of elastic workloads is executed in isolation from one another based on respective security contexts.

公开(公告)号：US20240232669A1

公开(公告)日：2024-07-11

申请号：US18617302

申请日：2024-03-26

申请人： Ned M. Smith ,  Kshitij Arun Doshi ,  Sunil Cheruvu

发明人： Ned M. Smith ,  Kshitij Arun Doshi ,  Sunil Cheruvu

IPC分类号： G06N7/01

CPC分类号： G06N7/01

摘要： Various systems and methods for providing Monte Carlo as a service are described here. A networked computing device may be configured to receive data describing an elastic workload that is partitioned among multiple nodes, execute a Monte Carlo simulation using at least a portion of the data describing the elastic workload, to obtain a workload configuration that distributes the elastic workload over a plurality of nodes, and present the workload configuration.

公开(公告)号：US20230319141A1

公开(公告)日：2023-10-05

申请号：US18205664

申请日：2023-06-05

申请人： Kshitij Arun Doshi ,  Francesc Guim Bernat ,  Sunil Cheruvu ,  Ned M. Smith ,  Marcos E. Carranza

发明人： Kshitij Arun Doshi ,  Francesc Guim Bernat ,  Sunil Cheruvu ,  Ned M. Smith ,  Marcos E. Carranza

IPC分类号： H04L67/12 ,  H04L12/18

CPC分类号： H04L67/12 ,  H04L12/1881 ,  H04L12/185

摘要： Various systems and methods for providing consensus-based named function execution are described herein. A system is configured to access an interest packet received from a user device, the interest packet including a function name of a function and a data payload; broadcast the interest packet to a plurality of compute nodes, wherein the plurality of compute nodes are configured to execute a respective instance of the function; receive a plurality of responses from the plurality of compute nodes, the plurality of responses including respective results of the execution of the respective instances of the function; analyze the plurality of responses using a consensus protocol to identify a consensus result; and transmit the consensus result to the user device.

公开(公告)号：US20220224776A1

公开(公告)日：2022-07-14

申请号：US17711742

申请日：2022-04-01

申请人： Kshitij Arun Doshi ,  Francesc Guim Bernat ,  Ned M. Smith

发明人： Kshitij Arun Doshi ,  Francesc Guim Bernat ,  Ned M. Smith

IPC分类号： H04L67/5681 ,  H04L43/0852 ,  G06F12/0897 ,  G06F12/0891

摘要： The present disclosure is related to managing a caching system based on object fetch costs, where the fetch cost are based on the access latency, cache misses, and time to reuse of individual objects. The caching system may be a multi-tiered caching system that includes multiple storage tiers, where an object management system determines whether to retain or evict an object from a cache of a particular storage tier based on the object's fetch cost. Additionally, eviction can include moving objects from a current storage tier to another storage tier based on the current storage tier and fetch costs.

公开(公告)号：US20220222359A1

公开(公告)日：2022-07-14

申请号：US17711542

申请日：2022-04-01

申请人： Kshitij Arun Doshi ,  Francesc Guim Bernart ,  Ned M. Smith

发明人： Kshitij Arun Doshi ,  Francesc Guim Bernart ,  Ned M. Smith

IPC分类号： G06F21/60

摘要： System and techniques for fault tolerant telemetry of distributed devices are described herein. A node includes a hardware component that receives telemetry from an entity resident on the node. The hardware component signs the telemetry with a cryptographic key to create signed telemetry and stores the signed telemetry in memory of the hardware component. Then, upon request from a remote entity, the hardware component provides the signed telemetry.