公开(公告)号：US20200322275A1

公开(公告)日：2020-10-08

申请号：US16910380

申请日：2020-06-24

Applicant: Cisco Technology, Inc.

Inventor： Michael Joseph Stepanek ,  Costas Kleopa ,  David McGrew ,  Blake Harrell Anderson ,  Saravanan Radhakrishnan

IPC: H04L12/851 ,  H04L12/825 ,  H04L12/859 ,  H04L12/931 ,  H04L29/06 ,  H04W12/12

Abstract: In one embodiment, a networking device in a network detects an traffic flow conveyed in the network via the networking device. The networking device generates flow data for the traffic flow. The networking device performs a classification of the traffic flow using the flow data as input to a machine learning-based classifier. The networking device performs a mediation action based on the classification of the traffic flow.

公开(公告)号：US09860257B1

公开(公告)日：2018-01-02

申请号：US15619701

申请日：2017-06-12

Applicant: Cisco Technology, Inc.

Inventor： Ashwin Kumar ,  Saravanan Radhakrishnan

IPC: H04L12/26 ,  H04L29/06 ,  G06F11/30 ,  G06F1/26 ,  G06F11/34

CPC classification number: H04L63/14 ,  G06F1/26 ,  G06F1/263 ,  G06F1/28 ,  G06F11/3062 ,  G06F11/34 ,  H04L43/08 ,  H04L43/16 ,  H04L63/1425 ,  H04L63/1458

Abstract: A network device communicates network traffic in one or more network flows via a plurality of ports. Each port is connected to a corresponding computing device. The network device collects flow-based network data associated with each corresponding computing device. The network device supplies electrical power to the corresponding computing devices via one or more of the ports, and collects power data associated with each corresponding computing device based on the electrical power supplied to each of the ports. The network device combines the flow-based network data for each corresponding computing device and the power data for each corresponding computer device to generate combined data associated with each corresponding computing device. The network device then exports the combined data for the corresponding computing devices to a security server, which detects anomalous behavior in the computing devices.

公开(公告)号：US09800551B2

公开(公告)日：2017-10-24

申请号：US14831557

申请日：2015-08-20

Applicant: Cisco Technology, Inc.

Inventor： Ripon Bhattacharjee ,  Sanjay Kumar Hooda ,  Nalinaksh M. Pai ,  Saravanan Radhakrishnan

IPC: H04L29/06 ,  H04L12/24 ,  H04L12/725 ,  H04L12/721

CPC classification number: H04L63/0281 ,  H04L41/5003 ,  H04L41/5096 ,  H04L43/026 ,  H04L45/306 ,  H04L45/38 ,  H04L45/72 ,  H04L63/0254 ,  H04L63/08 ,  H04L67/322 ,  H04L69/22

Abstract: Techniques for tagging packets within a network fabric. An authentication device for a network fabric receives a first packet originating from a source device, in transit to a destination device, corresponding to a first network flow. User identification information corresponding to an authenticated user of the source device is inserted into a Network Services Header of the first packet. Embodiments receive a second packet that corresponds to the first network flow at the authentication device, the second packet including service identification information within a Network Services Header of the second packet that identifies a service type of the network flow. Upon receiving a third packet for the first network flow, the authentication device inserts the user identification and the service identification information into a Network Services Header of the third packet.

公开(公告)号：US20160164825A1

公开(公告)日：2016-06-09

申请号：US14725371

申请日：2015-05-29

Applicant: Cisco Technology, Inc.

Inventor： Wolfgang Arno Riedel ,  Mark Montanez ,  Saravanan Radhakrishnan ,  Ralph Edward Droms ,  David J. Zacks ,  Rohit Kumar Suri

IPC: H04L29/12 ,  G06F17/30

CPC classification number: H04L61/1511 ,  H04L43/026 ,  H04L43/0876

Abstract: Methods and systems for implementing network traffic policies. A domain name system (DNS) infrastructure is accessed to obtain metadata associated with a destination address of a traffic flow; the traffic flow is classified by the destination address and the metadata; and a policy is applied to the traffic flow, wherein the policy is determined on the basis of the classification of the traffic flow.

Abstract translation: 实现网络流量策略的方法和系统。 访问域名系统（DNS）基础设施以获得与流量的目的地地址相关联的元数据; 流量按目的地址和元数据分类; 并且将策略应用于业务流，其中，基于业务流的分类来确定策略。