-
公开(公告)号:US12166671B2
公开(公告)日:2024-12-10
申请号:US17254553
申请日:2019-06-07
Applicant: ORANGE
Inventor: Emile Stephan , Frederic Fieau , Gael Fromentoux
IPC: H04L29/06 , H04L45/02 , H04L45/302
Abstract: A method allowing execution of transmission functions hosted in intermediate pieces of equipment of a path established between two pieces of communication equipment. End-to-end encryption systems are designed to resist any surveillance or tampering attempt, as no third party can decrypt or modify the communicated data. There is a solution which, depending on the connection opening requests of the applications, allows to select and assemble the transport protocols necessary for the operation of the application. However, this method is local: this protocol stack is only assembled at the pieces of communication equipment constituting the ends of the connections. Consequently, the requests emitted by these applications are not transmitted to the intermediate pieces of equipment which host the desired functions. The method allowing execution of transmission functions allows to re-establish cooperation between pieces of communication equipment, constituting the ends of a connection, with intermediate nodes hosting transmission functions.
-
公开(公告)号:US10812511B2
公开(公告)日:2020-10-20
申请号:US16067496
申请日:2016-12-22
Applicant: Orange
Inventor: Nicolas Bihannic , Gael Fromentoux , Frederic Fieau
IPC: H04L29/06
Abstract: A method for processing a network service supported by a network infrastructure allowing virtualization of network functions. The network service is made up of a sequence, called an initial sequence, of at least one virtualized network function processing an incoming stream. The method includes: detecting an anomaly relating to the at least one virtualized network function; on the basis of the anomaly, detecting and identifying a network attack targeting the network service; identifying, in the initial sequence, at least one virtualized network function impacted by the attack; modifying the initial sequence so as to circumscribe the attack in such a way that the incoming stream is routed towards at least one virtualized network function, called the curative function, carrying out a processing of the incoming stream, called the malicious stream, as well as of functions implemented by the at least one virtualized network function impacted by the attack.
-
公开(公告)号:US10389836B2
公开(公告)日:2019-08-20
申请号:US15765143
申请日:2016-09-29
Applicant: Orange
Inventor: Arnaud Braud , Gael Fromentoux , Frederic Fieau
Abstract: A method for controlling, in a communications network, recommendation messages exchanged during a session between a first endpoint, referred to as a source entity, and a second endpoint, referred to as a receiving entity. The messages are exchanged via a tube grouping data packets of a communication protocol with no guarantee of the delivery of the data packets. The method includes: obtaining recommendations contained in the recommendation messages via a control entity located on a network path of the tube, the control entity being authorized by an operator of the communications network; calculating a new recommendation message, on the basis of the recommendations obtained and of at least one information item relating to conditions of the network provided by the control entity; and sending the new recommendation message to at least one network entity located at one end of the tube.
-
公开(公告)号:US20170142218A1
公开(公告)日:2017-05-18
申请号:US15300132
申请日:2015-03-26
Applicant: ORANGE
Inventor: Frederic Fieau , Gael Fromentoux , Emile Stephan
CPC classification number: H04L67/2842 , H04L63/0281 , H04L63/0428 , H04L65/1069 , H04L65/60 , H04N21/222 , H04N21/23106 , H04N21/23116 , H04N21/2393
Abstract: A method for caching a piece of content in a content distribution network of a first network, a browser module running on a user terminal and allowing access to content by using encrypted sessions, the browser module being associated with a proxy server of a second network interconnected with the first network, the proxy server controlling a current session status between the browser module and a content provider. The method includes: the browser module sending a request relating to the content to the content provider; the proxy server obtaining a piece of information relating to the request; the browser module receiving the requested content; and the proxy server commanding the browser module to cache the content in the content distribution network.
-
公开(公告)号:US12250276B2
公开(公告)日:2025-03-11
申请号:US18457669
申请日:2023-08-29
Applicant: ORANGE
Inventor: Gael Fromentoux , Frederic Fieau , Emile Stephan
IPC: H04L67/141 , H04L69/326 , H04W12/02 , H04W48/18 , H04W76/11
Abstract: A method for routing data of a session initialized between a terminal and a server, over a first network slice corresponding to a set of data-processing functions of a communication infrastructure, implemented by the terminal. This method includes receiving from the server at least one routing identifier determined as a function of at least one communication parameter of the session, configuring session information as a function of the at least one identifier received, and emitting to the server subsequent data routed over at least one second slice corresponding to the configured information.
-
公开(公告)号:US11528326B2
公开(公告)日:2022-12-13
申请号:US16624617
申请日:2018-06-18
Applicant: ORANGE
Inventor: Frederic Fieau , Gael Fromentoux , Arnaud Braud
IPC: G06F13/00 , H04L67/14 , H04L69/164 , H04L67/56 , H04L67/01
Abstract: A method of activating at least one processing entity from among a plurality of entities situated on the path of a data of a session between a terminal of a user and a server of a services provider. The terminal and the server are attached to a communications network. In the method, the terminal: sends to the server an identification message to receive identifiers of entities of the plurality, which are added to the message by the entities; receive from the server an acknowledgement message including the identifiers included in the identification message; select at least one identifier from among those received from the server; and send to the server a message relating to the activation of entities from among the plurality.
-
公开(公告)号:US11272027B2
公开(公告)日:2022-03-08
申请号:US16497201
申请日:2018-03-22
Applicant: ORANGE
Inventor: Gael Fromentoux , Frederic Fieau , Arnaud Braud
IPC: H04L29/08 , H04L67/568 , H04L65/10 , H04L67/563 , H04L69/329
Abstract: A method for recommending a communication stack formed of communication protocols, relating to a data session between a terminal and a first server to provide content in a network including a second server responsible for providing the content by delegation from the first server, the first server having detected incompatibility of the stack used by the terminal and having transmitted a redirection message including information relating to a recommendation of the stack to be used to obtain the content to the terminal. In the method, the second server receives, from the terminal, an acquisition request message; selects a stack to be recommended based on data relating to the communication network or to the received acquisition request message; transmits, to the terminal, a recommendation message including the recommended stack; and receives a message transmitted by the terminal, using the recommended stack, relating to the acquisition of the item of content.
-
公开(公告)号:US11231969B2
公开(公告)日:2022-01-25
申请号:US16338296
申请日:2017-09-29
Applicant: Orange
Inventor: Nicolas Bihannic , Gael Fromentoux , Emile Stephan
IPC: G06F15/173 , G06F9/50 , H04L29/08
Abstract: A method of auditing at least one virtualized resource deployed in a cloud computing network, implemented by an administration device in respect of the at least one resource, able to administer virtual network functions, the virtual infrastructure or the network services. The method includes: storing a set of rules of the audit which are associated with the at least one virtualized resource; receiving from the at least one virtualized resource a message including an item of information about an event arising on the virtualized resource; correlating the item of information received with the set of stored rules; and if the correlation is positive, sending, to a recording device, a command message for writing at least one datum linked to the item of information received in a data register associated with the at least one virtualized resource.
-
9.
公开(公告)号:US20210067962A1
公开(公告)日:2021-03-04
申请号:US16958316
申请日:2018-12-20
Applicant: ORANGE
Inventor: Gael Fromentoux , Frederic Fieau
Abstract: Devices and methods for accessing and for controlling access of a node, called “challenged node”, that has already been authenticated and is provisionally connected to a network of nodes, the network including at least one node, called “challenging node”. The method for controlling access, implemented by a challenging node, includes: defining a personalized test that must be executed by the challenged node; sending the test to the challenged node; receiving, from the challenged node, at least one result of the execution of the test; and authorizing or refusing the access of the challenged node to the network, at least on the basis of the result.
-
10.
公开(公告)号:US10476812B2
公开(公告)日:2019-11-12
申请号:US15118535
申请日:2015-02-09
Applicant: ORANGE
Inventor: Xavier Marjou , Gael Fromentoux , Antonin Marechal
IPC: H04L12/801 , H04L12/927 , H04L12/26 , H04L29/06 , H04L12/851
Abstract: A method for notifying a service provider, performed in a telecommunications network, said method comprising the following steps of: selecting a stream of data transported in the telecommunications network for at least one user terminal of the service provider; comparing a bandwidth value consumed by the selected data stream with a bandwidth threshold; sending a notification to the service provider, said notification comprising at least one identifier of the selected data stream and an indication of the result of the comparison.
-
-
-
-
-
-
-
-
-