公开(公告)号：US11855960B2

公开(公告)日：2023-12-26

申请号：US17556277

申请日：2021-12-20

Applicant: Cisco Technology, Inc.

Inventor： Jerome Henry ,  Robert E. Barton ,  Stephen Michael Orr

IPC: H04L61/5038 ,  H04W84/12 ,  H04L101/622

CPC classification number: H04L61/5038 ,  H04L2101/622 ,  H04W84/12

Abstract: Techniques herein facilitate a device address rotation management protocol that may be implemented for a wireless local area network (WLAN), which can be used to influence when wireless client devices or stations may rotate their Media Access Control (MAC) addresses, how to perform such rotations, and/or the like. In one example, a method may include providing, by an access point (AP), a first communication indicating that the AP supports a MAC address rotation management protocol; obtaining, by the AP, a second communication from a wireless station (STA) indicating that the STA intends to perform a MAC address rotation; and transmitting, by the AP, a third communication to influence the MAC address rotation of the STA, the third communication comprising a rotation status indicator and timing information.

公开(公告)号：US20230336977A1

公开(公告)日：2023-10-19

申请号：US17720490

申请日：2022-04-14

Applicant: Cisco Technology, Inc.

Inventor： Jerome Henry ,  Robert Edgar Barton ,  Stephen Michael Orr

IPC: H04W8/26 ,  H04W12/02 ,  H04L61/5069

CPC classification number: H04W8/26 ,  H04W12/02 ,  H04L61/5069 ,  H04W84/12

Abstract: Techniques herein facilitate policy-based wireless infrastructure-initiated device address rotations for wireless devices of a wireless local area network (WLAN). In one example, a method may include obtaining device information for a plurality of wireless devices connected to the wireless network infrastructure; associating a first wireless device of the plurality of wireless devices with a Media Access Control (MAC) address rotation policy based on device information obtained for the first wireless device; determining that a MAC address rotation is to be performed for the first wireless device based on the MAC address rotation policy; and triggering the MAC address rotation for the wireless device via the wireless network infrastructure.

公开(公告)号：US20230262465A1

公开(公告)日：2023-08-17

申请号：US17674304

申请日：2022-02-17

Applicant: Cisco Technology, Inc.

Inventor： Domenico Ficara ,  Roberto Muccifora ,  Robert Edgar Barton ,  Jerome Henry ,  Stephen Michael Orr ,  Amine Choukir

IPC: H04W12/122

CPC classification number: H04W12/122

Abstract: Methods are provided to determine validity of a MAC address. The methods involve obtaining a media access control (MAC) address validity message that indicates a plurality of valid MAC addresses in the wireless network using a fully-exploded format or a probabilistic data structure and determining whether a MAC address is valid based on the MAC address validity message. Other methods involve obtaining a query regarding a validity of a media access control (MAC) address, determining whether the MAC address is a value included in a data set of expected values of a probabilistic data structure. The data set represents a list of MAC addresses. The other methods involve determining whether the MAC address is valid in the wireless network based on determining whether the MAC address is the value included in the data set and providing a response indicating whether the MAC address is valid.

公开(公告)号：US20220386111A1

公开(公告)日：2022-12-01

申请号：US17329819

申请日：2021-05-25

Applicant: Cisco Technology, Inc.

Inventor： Robert E. Barton ,  Jerome Henry ,  Stephen Michael Orr

IPC: H04W8/28 ,  H04W68/00 ,  H04L12/46

Abstract: A network controller provides proactive notification of a wireless client device's address rotation to layer 2 (L2) and/or layer 3 (L3) devices. Traditional methods of device address discovery rely on broadcasting of address queries across a plurality of links until a path to a device having the queried address responds. As device address changes become more frequent in an effort to improve user privacy, traditional methods of address discovery impose a large burden on networks, reducing their performance and efficiency. By proactively propagating address changes to upstream devices, the need for broadcast oriented address discovery techniques is reduced, resulting in improved network performance.

公开(公告)号：US20180242169A1

公开(公告)日：2018-08-23

申请号：US15581213

申请日：2017-04-28

Applicant: Cisco Technology, Inc.

Inventor： Michael Alan Kowal ,  Stephen Michael Orr ,  Robert Edgar Barton ,  Jerome Henry ,  Malcolm Muir Smith

IPC: H04W24/02

CPC classification number: H04W24/02 ,  H04W28/0247 ,  H04W28/08 ,  H04W88/08

Abstract: Presented herein are techniques for optimizing spectral efficiency in a network. One or more metrics of one or more wireless access points that enable one or more wireless client devices to connect to a wireless network are monitored. The one or more metrics reflect a level of client device activity. Based on the one or more metrics, the level of client device activity is determined to require a change in a number of the one or more wireless access points that are active to serve the one or more wireless client devices. The one or more wireless access points are activated or deactivated to improve a spectral efficiency of the wireless network.

公开(公告)号：US12301535B2

公开(公告)日：2025-05-13

申请号：US18423491

申请日：2024-01-26

Applicant: Cisco Technology, Inc.

Inventor： Jerome Henry ,  Robert E. Barton ,  Stephen Michael Orr

IPC: H04L61/5014 ,  H04L101/622

Abstract: A method comprises, at a wireless network controller of wireless access points through which wireless client devices that are wireless communicate with the controller: upon receiving, from a wireless client device, a dynamic host configuration protocol (DHCP) request having a media access control (MAC) address, determining whether the wireless client device rotated its MAC address from a previous MAC address to the MAC address; when the wireless client device rotated its MAC address, forwarding, to a DHCP service, the DHCP request with a notification of a MAC address rotation to cause the DHCP service to reassign a previously assigned Internet Protocol (IP) address to the wireless client device; and upon receiving, from the DHCP service, a DHCP offer asserting the previously assigned IP address, forwarding the DHCP offer to the wireless client device.

公开(公告)号：US12278801B2

公开(公告)日：2025-04-15

申请号：US18507349

申请日：2023-11-13

Applicant: Cisco Technology, Inc.

Inventor： Robert Edgar Barton ,  Jerome Henry ,  Stephen Michael Orr

IPC: H04L61/5076 ,  H04L61/5007 ,  H04L61/5061

Abstract: A method is provided that is performed for a wireless network that includes one or more wireless client devices that may rotate their media access control (MAC) address used for wireless communication with one or more wireless access point devices in the wireless network. The method includes determining an impact of MAC address rotation by the one or more wireless client devices on operational resources of one or more networking devices or networking processes in a network infrastructure associated with the wireless network. The method further includes scheduling MAC address rotation by the one or more wireless client devices according to the impact on operational resources of the one or more networking devices or networking processes in the network infrastructure.

公开(公告)号：US12041694B2

公开(公告)日：2024-07-16

申请号：US17976124

申请日：2022-10-28

Applicant: Cisco Technology, Inc.

Inventor： Robert E. Barton ,  Jerome Henry ,  Stephen Michael Orr

IPC: H04W8/28 ,  H04L12/46 ,  H04W68/00

CPC classification number: H04W8/28 ,  H04L12/4679 ,  H04W68/005

Abstract: A network controller provides proactive notification of a wireless client device's address rotation to layer 2 (L2) and/or layer 3 (L3) devices. Traditional methods of device address discovery rely on broadcasting of address queries across a plurality of links until a path to a device having the queried address responds. As device address changes become more frequent in an effort to improve user privacy, traditional methods of address discovery impose a large burden on networks, reducing their performance and efficiency. By proactively propagating address changes to upstream devices, the need for broadcast oriented address discovery techniques is reduced, resulting in improved network performance.

公开(公告)号：US20240171541A1

公开(公告)日：2024-05-23

申请号：US18423491

申请日：2024-01-26

Applicant: Cisco Technology, Inc.

Inventor： Jerome Henry ,  Robert E. Barton ,  Stephen Michael Orr

IPC: H04L61/5014

CPC classification number: H04L61/5014 ,  H04L2101/622

Abstract: A method comprises, at a wireless network controller of wireless access points through which wireless client devices that are wireless communicate with the controller: upon receiving, from a wireless client device, a dynamic host configuration protocol (DHCP) request having a media access control (MAC) address, determining whether the wireless client device rotated its MAC address from a previous MAC address to the MAC address; when the wireless client device rotated its MAC address, forwarding, to a DHCP service, the DHCP request with a notification of a MAC address rotation to cause the DHCP service to reassign a previously assigned Internet Protocol (IP) address to the wireless client device; and upon receiving, from the DHCP service, a DHCP offer asserting the previously assigned IP address, forwarding the DHCP offer to the wireless client device.

公开(公告)号：US11902775B2

公开(公告)日：2024-02-13

申请号：US17333463

申请日：2021-05-28

Applicant: Cisco Technology, Inc.

Inventor： Jerome Henry ,  Stephen Michael Orr ,  Robert E. Barton

IPC: H04W12/0431 ,  H04W12/73 ,  H04W12/03 ,  H04W12/06

CPC classification number: H04W12/0431 ,  H04W12/03 ,  H04W12/06 ,  H04W12/73

Abstract: Rotation of a wireless client device address is based on an encryption key and a nonce value. Key information and nonce value information are shared between a wireless client device and a network infrastructure component over a secure communication channel. The wireless client device encrypts the nonce value using the key information and encodes the encrypted value as a device address. The wireless client device then identifies itself via a source address value in a message transmitted over a wireless network. Upon receiving the message, the network infrastructure component decrypts information derived from the source address value and compares the resulting data to the nonce value. If a match is identified, the network infrastructure identifies the wireless client device as a source of the message. In some embodiments, the nonce value is updated with each rotation to provide for improved entropy of generated device addresses.