公开(公告)号：WO2022055716A1

公开(公告)日：2022-03-17

申请号：PCT/US2021/047784

申请日：2021-08-26

Applicant: CISCO TECHNOLOGY, INC.

Inventor： V, Rajesh, I ,  RAVINDRANATH, Rammohan ,  PATIL, Prashanth ,  SAINI, Vinay

IPC: G06F21/53

Abstract: A trusted application manager (TAM) includes a processor, and anon-transitory computer- readable media storing instructions that, when executed by the processor, causes the processor to perform operations comprising obtaining, from a secure access service edge (SASE) device executing a security service, a data set defining intelligence provided by the security service, defining a policy based at least in part on the intelligence provided by the security service, and managing a trusted application (TA) based on the policy.

公开(公告)号：WO2020041037A1

公开(公告)日：2020-02-27

申请号：PCT/US2019/046298

申请日：2019-08-13

Applicant: CISCO TECHNOLOGY, INC.

Inventor： PATIL, Prashanth ,  RAVINDRANATH, Ram Mohan ,  NAINAR, Nagendra Kumar ,  PIGNATARO, Carlos M.

IPC: H04L12/24

Abstract: Disclosed herein is a distributed ledger method for a fifth-generation (5G) network. A network slice is created in the 5G network and a root block is generated in response, containing parameters of the network slice and contracts between participants in the network slice. A blockID of the root block is transmitted to identified participants in the network slice, who sequentially commit a plurality of new blocks to a blockchain beginning from the root block. The plurality of new blocks comprises auditing information of the network slice, wherein the information is collected by the participants in the network slice. The blockchain is stored in a blockchain network of a plurality of disparate blockchains. Desired auditing information for the network slice is retrieved by using the blockID of the root block to traverse the blockchain beginning at the root block until all blocks with the desired auditing information have been read.

公开(公告)号：WO2015072957A2

公开(公告)日：2015-05-21

申请号：PCT/US2013/046729

申请日：2013-06-20

Applicant: CISCO TECHNOLOGY, INC.

Inventor： NETHI, Ramesh ,  REDDY, Tirumaleswar ,  CHIVUKULA, Srinivas ,  PATIL, Prashanth

CPC classification number: H04W12/02 ,  H04L63/1408 ,  H04W4/06

Abstract: In one implementation, traffic in a mobile network is offloaded to a security as a service server or a cloud server. A mobile access gateway (MAG) in the mobile network identifies one or more mobile nodes that are configured for communication on the mobile network. The MAG receives a message that includes an address of a mobile node and sends a request based on the message to the security as a service server. The MAG forwards traffic flows to the security as a service server according to the message, which is configured to detect an indication of malicious software in the traffic flows and/or filter content of the traffic flows according to a user profile.

Abstract translation: 在一个实现中，移动网络中的流量作为服务服务器或云服务器被卸载到安全性。 移动网络中的移动接入网关（MAG）识别被配置用于在移动网络上进行通信的一个或多个移动节点。 MAG接收包含移动节点的地址的消息，并将基于该消息的请求作为服务服务器发送给安全性。 MAG根据该消息将流量转发到作为业务服务器的安全，该流量配置为根据用户配置文件检测流量中恶意软件的指示和/或过滤流量内容。

公开(公告)号：WO2017196558A1

公开(公告)日：2017-11-16

申请号：PCT/US2017/030042

申请日：2017-04-28

Applicant: CISCO TECHNOLOGY, INC.

Inventor： REDDY, Tirumaleswar ,  WING, Daniel ,  PATIL, Prashanth

IPC: H04L29/06

CPC classification number: H04L63/1458 ,  H04L9/0861 ,  H04L9/14 ,  H04L9/30 ,  H04L9/3263 ,  H04L63/0236 ,  H04L63/0823 ,  H04L63/1425 ,  H04L63/168 ,  H04L65/1006 ,  H04L67/02 ,  H04L67/10 ,  H04L69/329

Abstract: In one embodiment, a distributed denial of service attack on a network is identified. In response to the distributed denial of service attack, a script to request a short term certificate is executed. The short term certificate is generated by a certificate server and received either directly or indirectly from the certificate server. An instruction to redirect traffic using the short term certificate and private key is sent to a distributed denial of service attack protection service that is operable to filter or otherwise mitigate malicious traffic involved in the distributed denial of service attack.

Abstract translation: 在一个实施例中，识别网络上的分布式拒绝服务攻击。 为了响应分布式拒绝服务攻击，执行脚本以请求短期证书。 短期证书由证书服务器生成并直接或间接从证书服务器接收。 使用短期证书和私钥重定向流量的指令被发送到分布式拒绝服务攻击保护服务，该服务可用于过滤或以其他方式缓解涉及分布式拒绝服务攻击的恶意流量。

公开(公告)号：EP2910036B1

公开(公告)日：2019-10-30

申请号：EP13897259.1

申请日：2013-06-20

Applicant: Cisco Technology, Inc.

Inventor： NETHI, Ramesh ,  REDDY, Tirumaleswar ,  CHIVUKULA, Srinivas ,  PATIL, Prashanth

IPC: H04W4/06 ,  H04W12/02 ,  H04W8/08 ,  H04L29/06

公开(公告)号：EP4211580A1

公开(公告)日：2023-07-19

申请号：EP21786043.6

申请日：2021-08-26

Applicant: Cisco Technology, Inc.

Inventor： V, Rajesh, I ,  RAVINDRANATH, Rammohan ,  PATIL, Prashanth ,  SAINI, Vinay

IPC: G06F21/53

公开(公告)号：EP2910036A2

公开(公告)日：2015-08-26

申请号：EP13897259.1

申请日：2013-06-20

Applicant: Cisco Technology, Inc.

Inventor： NETHI, Ramesh ,  REDDY, Tirumaleswar ,  CHIVUKULA, Srinivas ,  PATIL, Prashanth

IPC: H04W4/06

Abstract: In one implementation, traffic in a mobile network is offloaded to a security as a service server or a cloud server. A mobile access gateway (MAG) in the mobile network identifies one or more mobile nodes that are configured for communication on the mobile network. The MAG receives a message that includes an address of a mobile node and sends a request based on the message to the security as a service server. The MAG forwards traffic flows to the security as a service server according to the message, which is configured to detect an indication of malicious software in the traffic flows and/or filter content of the traffic flows according to a user profile.