-
公开(公告)号:US10375100B2
公开(公告)日:2019-08-06
申请号:US15795670
申请日:2017-10-27
Applicant: Cisco Technology, Inc.
Inventor: Mark Grayson , Santosh Ramrao Patil , Gangadharan Byju Pularikkal
Abstract: Various implementations disclosed herein enable identifying anomalies in a network. For example, in various implementations, a method of identifying anomalies in a network is performed by a network node. In various implementations, the network node includes one or more processors, and a non-transitory memory. In various implementations, the method includes generating a characteristic indicator that characterizes a device type based on communications associated with a first device of the device type. In various implementations, the method includes determining, based on communications associated with the first device, a performance indicator that indicates a performance of the first device. In various implementations, the method includes synthesizing an anomaly indicator as a function of the performance indicator in relation to the characteristic indicator.
-
公开(公告)号:US20190215692A1
公开(公告)日:2019-07-11
申请号:US15868573
申请日:2018-01-11
Applicant: Cisco Technology, Inc.
Inventor: Mark Grayson , Desmond Joseph O'Connor , Malcolm Muir Smith , Bart Brinckman
Abstract: In one embodiment, a method for providing access to wireless networks may include receiving, by a wireless network access provider from a user device, a request to access a wireless network. The method may include obtaining data representing a policy applicable to the access request, sending the access request, augmented with the policy, to an identity provider associated with the user and having no pre-existing relationship with the access provider, and receiving, from the identity provider, an access request response indicating whether or not the policy is met. The method may include communicating, to the wireless device, an indication that the access request has been accepted, if the policy is met, or an indication that the access request has been rejected, if the policy is not met. The access provider and identity provider may be members of an identity and access federation that communicate over a dynamically established secure connection.
-
公开(公告)号:US20190036888A1
公开(公告)日:2019-01-31
申请号:US15854181
申请日:2017-12-26
Applicant: Cisco Technology, Inc.
Abstract: In various implementations, a method includes receiving a request to establish an end-to-end encrypted session between a device in an enterprise network and an external entity that is outside the enterprise network. In some implementations, the end-to-end encrypted session allows encrypted packets to be transmitted between the device and the external entity. In various implementations, the method includes determining whether the request satisfies an enterprise security criterion for establishing the end-to-end encryption session. In various implementations, the method includes in response to determining that the request satisfies the enterprise security criterion, triggering the establishment of the end-to-end encrypted session between the device in the enterprise network and the external entity that is outside the enterprise entity.
-
公开(公告)号:US10165608B2
公开(公告)日:2018-12-25
申请号:US15171126
申请日:2016-06-02
Applicant: CISCO TECHNOLOGY, INC.
Inventor: Mark Grayson , Ziv Nuss
Abstract: An example method is provided in one example embodiment and may include subscribing to a key distribution service by a plurality of Wi-Fi access points belonging to a same mobility domain; receiving a request from a user equipment to connect to a first Wi-Fi access point of the plurality of Wi-Fi access points belonging to the same mobility domain; determining one or more second Wi-Fi access points of the plurality of Wi-Fi access points belonging to the same mobility domain that neighbor the first Wi-Fi access points; and distributing keying parameters to each of the one or more second Wi-Fi access points. The keying parameters can be associated with 802.11r pairwise master key (PMK) keying parameters.
-
165.发明授权公开(公告)号:US09807652B2
公开(公告)日:2017-10-31
申请号:US14302086
申请日:2014-06-11
Applicant: CISCO TECHNOLOGY, INC.
Inventor: Sandro Grech , Santosh Ramrao Patil , Cristovao Correia Da Silva , Mark Grayson , Anton Okmyanskiy
CPC classification number: H04W36/0072 , H04W36/04 , H04W84/045
Abstract: An example method is provided in one example embodiment and includes receiving a request to relocate a user equipment (UE) from a source macro radio to an ambiguous small cell access point (AP), wherein the request includes a target cell identity (ID) encoded with a source macro cell identifier for the source macro radio and a target sub-carrier identifier for the ambiguous small cell AP; determining potential target small cell APs for relocation of the first UE using the using the first target cell ID, wherein each of the potential target small cell APs are within a coverage area of the source macro radio and operate using the target sub-carrier identifier; and preparing, for each of the potential target small cell APs, a common channel to receive relocation of the first UE. The first UE can relocate to a particular target small cell access point using the common channel.
-
Patent Agency Ranking
公开(公告)号:US20170142709A1
公开(公告)日:2017-05-18
申请号:US14939884
申请日:2015-11-12
Applicant: CISCO TECHNOLOGY, INC.
Inventor: David Lake , Mark Grayson , Santosh Ramrao Patil
Abstract: An example method is provided in one example embodiment and includes intercepting a setup request for a session via a small cell network portion associated with a wide area network (WAN) instance, wherein the WAN instance comprises the small cell network portion and an enterprise network portion and wherein the small cell network portion and the enterprise network portion are interconnected to a service provider network; classifying the session to a particular WAN priority queue, wherein a plurality of WAN priority queues are configured for the WAN instance; determining whether the particular WAN priority queue has available bandwidth for the session; allocating bandwidth for the particular WAN priority queue if the particular WAN priority queue has available bandwidth; and permitting the session to be established if the particular WAN priority queue has available bandwidth.
-
167.发明申请SYSTEM AND METHOD FOR MANAGING INTERFERENCE IN A NETWORK ENVIRONMENT BASED ON USER PRESENCE 审中-公开基于用户存在,管理网络环境干扰的系统和方法公开(公告)号:US20160295521A1
公开(公告)日:2016-10-06
申请号:US14687198
申请日:2015-04-15
Applicant: CISCO TECHNOLOGY, INC.
Inventor: Mark Grayson , Anton Okmyanskiy , Ziv Nuss , Swaminathan A. Anantha , Andrea Giustina , Mickael James Graham , Santosh Ramrao Patil
CPC classification number: H04W4/02 , H04W36/165 , H04W52/244 , H04W52/283 , H04W64/006 , H04W68/02 , H04W84/045 , H04W84/12 , H04W84/18
Abstract: An example method is provided in one example embodiment and may include determining a presence of user equipment (UE) in relation to small cell radio(s) of a small cell network based on information obtained through the small cell network and one or more parallel networks; and adjusting transmit power for the small cell radio(s) based on the presence of UE in relation to the small cell radio(s). Another example method can include determining that a UE in cell paging channel mode has changed its selected macro cell radio; determining that the UE is allowed service on a small cell radio located in a vicinity of a macro cell coverage area of a selected macro cell radio; and adjusting a transmit power of the small cell radio based on a presence of the UE in a surrounding macro cell coverage area of the small cell radio.
Abstract translation: 在一个示例实施例中提供了示例性方法,并且可以包括基于通过小型小区网络获得的信息和一个或多个并行网络来确定与小型小区网络的小型小区无线电相关的用户设备(UE)的存在 ; 并且基于相对于小小区无线电的UE的存在来调整小小区无线电的发射功率。 另一示例性方法可以包括确定小区寻呼信道模式中的UE已经改变其选择的宏小区无线电; 确定所述UE是否位于位于所选宏小区无线电的宏小区覆盖区域附近的小小区无线电上的允许服务; 以及基于所述小区无线电的周围宏小区覆盖区域中的所述UE的存在来调整所述小小区无线电的发射功率。
-
168.发明申请SYSTEM, METHOD, APPARATUS AND MACHINE-READABLE MEDIA FOR ENTERPRISE WIRELESS CALLING 审中-公开用于企业无线呼叫的系统,方法,设备和机器可读介质公开(公告)号:US20160255050A1
公开(公告)日:2016-09-01
申请号:US15044957
申请日:2016-02-16
Applicant: CISCO TECHNOLOGY, INC.
Inventor: Mark Grayson , Gangadharan Byju Pularikkal , Mickael James Graham , Santosh Ramrao Patil , Peter Gaspar
CPC classification number: H04L63/029 , H04L63/0272 , H04L63/0823 , H04L63/1408 , H04L63/1425 , H04L63/1433 , H04L63/164 , H04L63/20 , H04L65/1069 , H04W12/1208 , H04W76/12 , H04W84/12 , H04W88/16
Abstract: Embodiments include receiving one or more packets of a Wi-Fi calling session via a secure tunnel from a user device, where the user device is connected to a source network via a Wi-Fi access point. Embodiments also include determining whether the Wi-Fi calling session is a threat based, at least in part, on identifying an anomaly of at least one packet of the one or more packets. An action can be taken if the Wi-Fi calling communication is determined to be a threat. More specific embodiments include determining the at least one packet is associated with the Wi-Fi calling session by correlating information in the packet with control plane data of the Wi-Fi calling session. Further embodiments can include intercepting the one or more packets in a second secure tunnel established between an evolved packet data gateway and a service provider network associated with the user device.
Abstract translation: 实施例包括经由来自用户设备的安全隧道接收Wi-Fi呼叫会话的一个或多个分组,其中用户设备经由Wi-Fi接入点连接到源网络。 实施例还包括至少部分地基于识别一个或多个分组中的至少一个分组的异常来确定Wi-Fi呼叫会话是否是基于威胁的。 如果Wi-Fi呼叫通信被确定为威胁,则可采取措施。 更具体的实施例包括通过将分组中的信息与Wi-Fi呼叫会话的控制平面数据相关联来确定至少一个分组与Wi-Fi呼叫会话相关联。 另外的实施例可以包括拦截建立在演进的分组数据网关与与用户设备相关联的服务提供商网络之间的第二安全隧道中的一个或多个分组。
-
公开(公告)号:US09420503B2
公开(公告)日:2016-08-16
申请号:US14160127
申请日:2014-01-21
Applicant: CISCO TECHNOLOGY, INC.
Inventor: Mukesh Taneja , Mark Grayson
CPC classification number: H04W36/0066 , H04B17/318 , H04L63/0272 , H04L63/029 , H04L63/08 , H04W12/06 , H04W36/0044 , H04W36/0061 , H04W36/14 , H04W84/042 , H04W84/12 , H04W88/06
Abstract: In one example embodiment, an apparatus is provided that includes an antenna that receives, in a first wireless network, a first identifier of a second wireless network access point. The apparatus also includes a processor that processes data received by the antenna. The apparatus transmits, in the first wireless network, the first identifier of the second wireless network access point. The apparatus establishes a tunnel to the second wireless network. The antenna transmits a second identifier of the second wireless network access point.
Abstract translation: 在一个示例实施例中,提供了一种装置,其包括在第一无线网络中接收第二无线网络接入点的第一标识符的天线。 该装置还包括处理由天线接收的数据的处理器。 该装置在第一无线网络中发送第二无线网络接入点的第一标识符。 该设备建立到第二无线网络的隧道。 天线发送第二无线网络接入点的第二标识符。
-
170.发明授权System and method for small cell power control in an enterprise network environment 有权企业网络环境中小电池功率控制的系统和方法公开(公告)号:US09414310B2
公开(公告)日:2016-08-09
申请号:US14092448
申请日:2013-11-27
Applicant: CISCO TECHNOLOGY, INC.
Inventor: Mark Grayson
IPC: H04W52/02
CPC classification number: H04W52/0206 , Y02D70/1242 , Y02D70/142 , Y02D70/144 , Y02D70/146 , Y02D70/24
Abstract: A method is provided in one embodiment and includes receiving a first message including an indication that a first access point of a first network is a gateway access point of a first network, receiving a second message including an indication that a second access point of the first network is an inner access point of the first network, and receiving an indication of a number of wireless devices registered with at least one of the first access point and the second access point. The method further includes determining a power mode for the second access point based upon whether at least one wireless device is registered with the first access point or the second access point, and sending a power mode command message to the second access point indicative of the determined power mode.
Abstract translation: 在一个实施例中提供了一种方法,包括接收包括第一网络的第一接入点是第一网络的网关接入点的指示的第一消息,接收第二消息,该第二消息包括第一接入点的第一接入点 网络是第一网络的内部接入点,并且接收对第一接入点和第二接入点中的至少一个登记的无线设备的数量的指示。 该方法还包括基于至少一个无线设备是否向第一接入点或第二接入点注册来确定第二接入点的功率模式,以及向指示所确定的第二接入点的第二接入点发送功率模式命令消息 电源模式。
-
-
-
-
-
-
-
-
-
Search Results
231
records
(took 0.046 seconds)
