公开(公告)号：US20240414518A1

公开(公告)日：2024-12-12

申请号：US18329834

申请日：2023-06-06

Applicant: Cisco Technology, Inc.

Inventor： Praveen Joseph ,  Timothy Peter Stammers ,  Monis Mohammed

IPC: H04W8/18

Abstract: Provided herein are techniques to provide per-enterprise subscriber data management (SDM) in multi-tenant network environment. In one instance, a method may include obtaining, by an SDM system, input information indicating SDM services requested for an enterprise entity in which the input information includes a multi-tenancy service attribute for the enterprise entity and indicates whether subscriber data for is to be provided on-premise for the enterprise entity. The method may further include identifying a particular SDM service of the SDM system for storing the subscriber data, deploying the particular SDM service via the SDM system, and deploying one or more on-premise SDM services at each of one or more on-premise locations of the enterprise entity for storing the subscriber data based on determining that the subscriber data is to be provided on-premise for the enterprise entity.

公开(公告)号：US20240396829A1

公开(公告)日：2024-11-28

申请号：US18323134

申请日：2023-05-24

Applicant: Cisco Technology, Inc.

Inventor： David John Zacks ,  Flemming Stig Andreasen ,  Robert Edgar Barton ,  Timothy Peter Stammers

IPC: H04L45/00 ,  H04L43/10

Abstract: Provided herein are techniques to facilitate multi-level performance tracing for a mobile network environment. In one instance, a method may include obtaining, by a mobile network, a trigger from an enterprise to initiate an underlay-level trace for a wireless device of the enterprise, wherein the trigger includes a correlation identifier that correlates the underlay-level trace with an enterprise-level trace for the wireless device and providing the underlay-level trace for a session of the wireless device by including a first trace flag for IP packets for the session and including a second trace flag for encapsulations of the IP packets for the session in which the first and second trace flag are unique to the session of the wireless device and enable elements of the mobile network to provide underlay trace information for the underlay-level trace for the session of the wireless device to a trace.

公开(公告)号：US20240381086A1

公开(公告)日：2024-11-14

申请号：US18315934

申请日：2023-05-11

Applicant: Cisco Technology, Inc.

Inventor： Timothy Peter Stammers ,  Bhavik Yogeshkumar Adhvaryu

IPC: H04W12/069 ,  H04L9/40 ,  H04W12/08 ,  H04W12/30

Abstract: Presented herein are efficient techniques through which an enterprise certificate is obtained for a user device based on a Subscriber Identity Module (SIM)-based authentication of the user device. A request for a SIM-based authentication is received from a user device accessing a private cellular network. A certificate is obtained from an enterprise based on the SIM-based authentication of the user device. The certificate is stored at the user device and used for subsequent authentication of the user device when accessing the private cellular network.

公开(公告)号：US12015917B2

公开(公告)日：2024-06-18

申请号：US18358569

申请日：2023-07-25

Applicant: Cisco Technology, Inc.

Inventor： Srinath Gundavelli ,  Indermeet Singh Gandhi ,  Timothy Peter Stammers ,  Vimal Srivastava

IPC: H04W12/06 ,  H04W12/04 ,  H04W84/04

CPC classification number: H04W12/06 ,  H04W12/04 ,  H04W84/042

Abstract: Presented herein are techniques to facilitate delivering standalone non-public network (SNPN) credentials from an enterprise authentication server to a user equipment (UE) using an Extensible Authentication Protocol (EAP) process. In one example, a method may include determining, by an authentication server of an enterprise, that a UE for the enterprise is to receive credentials to enable the UE to connect to a SNPN of the enterprise in which the determining is performed based, at least in part, on connection of the UE to an access network that is different than the SNPN for the enterprise; and performing an authentication process with the UE by the authentication server in which the authentication process includes providing the credentials to the UE via a first authentication message and obtaining confirmation from the UE via a second authentication message that indicates successful provisioning of the credentials for the UE.

公开(公告)号：US11700525B2

公开(公告)日：2023-07-11

申请号：US17315581

申请日：2021-05-10

Applicant: Cisco Technology, Inc.

Inventor： Mark Grayson ,  Timothy Peter Stammers

IPC: H04W8/12 ,  H04W8/20 ,  H04W8/28 ,  H04W84/04

CPC classification number: H04W8/12 ,  H04W8/20 ,  H04W8/28 ,  H04W84/042

Abstract: Presented herein are techniques associated with replicating an OpenRoaming™ policy federation in a Third Generation Partnership Project (3GPP) network environment. For example, techniques herein provide a roaming policy federation architecture for a 3GPP network environment. In one example a method is provided that may include encoding a multi-bit roaming policy for an identity provider within a plurality of multi-bit 3GPP broadcast identifiers in which the multi-bit roaming policy includes bit-wise roaming policy information for the identity provider. The method may further include configuring the plurality of multi-bit 3GPP broadcast identifiers for a mobile device associated with the identity provider. In one instance, detecting, by the mobile device, at least one multi-bit 3GPP broadcast identifier of the plurality of multi-bit broadcasting identifiers being broadcast by a visited radio access network triggers the mobile device to perform an authentication with the identity provider.

公开(公告)号：US11627511B2

公开(公告)日：2023-04-11

申请号：US16952253

申请日：2020-11-19

Applicant: Cisco Technology, Inc.

Inventor： Timothy Peter Stammers

IPC: H04W36/30 ,  H04W76/18 ,  H04W76/15 ,  H04L45/74

Abstract: Presented herein are techniques to facilitate data stream routing and entitlement for Internet of Things (IoT) data streams. In one example, a method is provided that may include causing an IoT device to connect to a plurality of access networks based on a data stream policy; directing, based on the data stream policy, an IoT gateway to transmit a plurality of output data streams to a plurality of destinations in which the plurality of output data streams are based on a source data stream obtained by the IoT gateway from the IoT device via one or more of the plurality of access networks. The method may further include determining a degradation for at least one access network and, upon determining the degradation, causing a remediation action to be performed by at least one of the IoT device and the IoT gateway based on the data stream policy.

公开(公告)号：US11582066B2

公开(公告)日：2023-02-14

申请号：US16720755

申请日：2019-12-19

Applicant: Cisco Technology, Inc.

Inventor： Srinath Gundavelli ,  Sangram Kishore Lakkaraju ,  Alberto Rodriguez Natal ,  Fabio R. Maino ,  Timothy Peter Stammers

IPC: H04L12/46 ,  H04L45/74 ,  H04L47/24 ,  H04L49/25 ,  H04L61/2592 ,  H04L69/22 ,  H04L101/622

Abstract: Techniques are described for extending a cellular quality of service bearer through an enterprise fabric network. In one example, a method obtaining, by a first switch of a network, a packet to be delivered to a client connected to the network via a cellular access point; identifying quality of service (QoS) bearer information associated with the packet, wherein the QoS bearer information is associated with a radio access bearer for the client and the QoS bearer information comprises a bearer indicator and a QoS class identifier; providing a fabric tunnel encapsulation for the packet, wherein the bearer indicator and the QoS class identifier are included within the fabric tunnel encapsulation of the packet; and forwarding the packet within the fabric tunnel encapsulation toward a second switch of the network via a fabric tunnel, wherein the cellular access point is connected to the network via the second switch.

公开(公告)号：US11540202B2

公开(公告)日：2022-12-27

申请号：US17091102

申请日：2020-11-06

Applicant: Cisco Technology, Inc.

Inventor： Timothy Peter Stammers ,  Flemming Andreasen

IPC: H04W4/00 ,  H04W48/04 ,  H04W48/18 ,  H04W36/14 ,  H04W76/11 ,  H04W64/00 ,  H04W48/14 ,  H04W4/021

Abstract: Techniques are provided to use a trusted identity and location to select the most appropriate point of interconnect to edge application execution environments as well as a specific edge application execution environment. The techniques may involve obtaining, on behalf of a wireless mobile device, an access identifier that indicates an access location of the wireless mobile device that is wirelessly connected to wireless network infrastructure equipment operated by an access network provider that is associated with, and a member of, a federation of access network providers. The access location for the wireless mobile device is derived based on the access identifier, and the access location is used to select an edge resource to be used by the wireless mobile device.

公开(公告)号：US20220070652A1

公开(公告)日：2022-03-03

申请号：US17315581

申请日：2021-05-10

Applicant: Cisco Technology, Inc.

Inventor： Mark Grayson ,  Timothy Peter Stammers

IPC: H04W8/12 ,  H04W8/28 ,  H04W8/20

Abstract: Presented herein are techniques associated with replicating an OpenRoaming™ policy federation in a Third Generation Partnership Project (3GPP) network environment. For example, techniques herein provide a roaming policy federation architecture for a 3GPP network environment. In one example a method is provided that may include encoding a multi-bit roaming policy for an identity provider within a plurality of multi-bit 3GPP broadcast identifiers in which the multi-bit roaming policy includes bit-wise roaming policy information for the identity provider. The method may further include configuring the plurality of multi-bit 3GPP broadcast identifiers for a mobile device associated with the identity provider. In one instance, detecting, by the mobile device, at least one multi-bit 3GPP broadcast identifier of the plurality of multi-bit broadcasting identifiers being broadcast by a visited radio access network triggers the mobile device to perform an authentication with the identity provider.

公开(公告)号：US20220060893A1

公开(公告)日：2022-02-24

申请号：US17101071

申请日：2020-11-23

Applicant: Cisco Technology, Inc.

Inventor： Srinath Gundavelli ,  Indermeet Singh Gandhi ,  Timothy Peter Stammers ,  Vimal Srivastava

IPC: H04W12/06 ,  H04W12/04

Abstract: Presented herein are techniques to facilitate delivering standalone non-public network (SNPN) credentials from an enterprise authentication server to a user equipment (UE) using an Extensible Authentication Protocol (EAP) process. In one example, a method may include determining, by an authentication server of an enterprise, that a UE for the enterprise is to receive credentials to enable the UE to connect to a SNPN of the enterprise in which the determining is performed based, at least in part, on connection of the UE to an access network that is different than the SNPN for the enterprise; and performing an authentication process with the UE by the authentication server in which the authentication process includes providing the credentials to the UE via a first authentication message and obtaining confirmation from the UE via a second authentication message that indicates successful provisioning of the credentials for the UE.