Patents by Inventor David Delano Ward
David Delano Ward has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11575540Abstract: This disclosure describes methods and systems to externally manage network-to-network interconnect configuration data in conjunction with a centralized database subsystem. An example of the methods includes receiving and storing, in the centralized database subsystem, data indicative of user intent to interconnect at least a first network and a second network. The example method further includes, based at least in part on the data indicative of user intent, determining and storing, in the centralized database subsystem, a network intent that corresponds to the user intent. The example method further includes providing data indicative of the network intent from the centralized database subsystem to a first data plane adaptor, associated with the first network, and a second data plane adaptor, associated with the second network.Type: GrantFiled: February 14, 2022Date of Patent: February 7, 2023Assignee: Cisco Technology, Inc.Inventors: Pierre Pfister, William Mark Townsley, Yoann Desmouceaux, David Delano Ward
-
Patent number: 11570062Abstract: In one embodiment, a network quality assessment service that monitors a network obtains multimodal data indicative of a plurality of measurements from the network and subjective perceptions of the network by users of the network. The network quality assessment service uses the obtained multimodal data as input to one or more neural network-based models. The network quality assessment service maps, using a conceptual space, outputs of the one or more neural network-based models to symbols. The network quality assessment service applies a symbolic reasoning engine to the symbols, to generate a conclusion regarding the monitored network. The network quality assessment service provides an indication of the conclusion to a user interface.Type: GrantFiled: December 22, 2020Date of Patent: January 31, 2023Assignee: Cisco Technology, Inc.Inventors: Enzo Fenoglio, Hugo M. Latapie, Kenneth Gray, Sawsen Rezig, David Delano Ward
-
Publication number: 20230026420Abstract: An enclave manager of a network enclave obtains a request to retrieve configuration information and state information corresponding to compute devices and network devices comprising a network enclave. The request specifies a set of parameters of the configuration information and the state information usable to generate a response to the request. The enclave manager evaluates the compute devices, the network devices, and network connections among these devices within the network enclave to obtain the configuration information and the state information. Based on the configuration information and the state information, the enclave manager determines whether the network enclave is trustworthy. Based on the parameters of the request, the enclave manager generates a response indicating a summary that is used to identify the trustworthiness of the network enclave.Type: ApplicationFiled: October 4, 2022Publication date: January 26, 2023Inventors: David Delano Ward, Robert Stephen Rodgers, Andrew Phillips Thurber, Eric Voit, Thomas John Giuli
-
Publication number: 20220368636Abstract: In one embodiment, an offload platform is an compute platform, adjunct to a router or other packet switching device, that performs packet processing operations including determining an egress forwarding value corresponding to the next-hop node of the packet switching device to which to send an offload-platform processed packet. The offload platform downloads forwarding information from the router, and augments it, such as, but not limited to, representing interfaces of the router as identifiable virtual interface(s) on the offload platform, and including each of one or more next-hop nodes of the router represented as an identifiable virtual adjacency and identifiable tunnel (e.g., identified by the egress forwarding value). In one embodiment, the egress forwarding value is an Multiprotocol Label Switching (MPLS) label or Segment Routing Identifier. The router identifies packets of certain packet flows to send to the adjunct offload platform, rather than processing per its routing information base.Type: ApplicationFiled: July 25, 2022Publication date: November 17, 2022Inventors: Ijsbrand Wijnands, Neale David Raymond Ranns, David Delano Ward, David Richard Barach
-
Publication number: 20220360577Abstract: In one embodiment, an apparatus of a LISP environment includes one or more processors and computer-readable non-transitory storage media coupled to the one or more processors. The computer-readable non-transitory storage media include instructions that, when executed by the one or more processors, cause the one or more processors to perform operations including receiving an attestation token from a first component of the LISP environment. The operations also include encoding the attestation token using a LISP message format. The operations further include distributing the encoded attestation token with a LISP signaling message to a third component of the LISP environment.Type: ApplicationFiled: July 22, 2022Publication date: November 10, 2022Inventors: Clarence Filfils, Marc Portoles Comeras, David Delano Ward, Alberto Rodriguez Natal
-
Publication number: 20220351521Abstract: In one embodiment, a video analysis service receives video data captured by one or more cameras at a particular location. The service applies a neural network-based model to portions of the video data, to identify objects within the video data. The service maps outputs of the neural network-based model to symbols using a conceptual space. The outputs of the model comprise the identified objects. The service applies a symbolic reasoning engine to the symbols, to generate an alert. The service sends the alert to a user interface in conjunction with the video data.Type: ApplicationFiled: July 8, 2022Publication date: November 3, 2022Inventors: Hugo Latapie, Enzo FENOGLIO, David Delano WARD, Guillaume Sauvage DE SAINT MARC, Carole GRIDLEY
-
Patent number: 11489823Abstract: An enclave manager of a network enclave obtains a request to retrieve configuration information and state information corresponding to compute devices and network devices comprising a network enclave. The request specifies a set of parameters of the configuration information and the state information usable to generate a response to the request. The enclave manager evaluates the compute devices, the network devices, and network connections among these devices within the network enclave to obtain the configuration information and the state information. Based on the configuration information and the state information, the enclave manager determines whether the network enclave is trustworthy. Based on the parameters of the request, the enclave manager generates a response indicating a summary that is used to identify the trustworthiness of the network enclave.Type: GrantFiled: March 4, 2020Date of Patent: November 1, 2022Assignee: CISCO TECHNOLOGY, INC.Inventors: David Delano Ward, Robert Stephen Rodgers, Andrew Phillips Thurber, Eric Voit, Thomas John Giuli
-
Patent number: 11470105Abstract: Systems, methods, and computer-readable media for assessing reliability and trustworthiness of devices across domains. Attestation information for an attester node in a first domain is received at a verifier gateway in the first domain. The attestation information is translated at the verifier gateway into translated attestation information for a second domain. Specifically, the attestation information is translated into translated attested information for a second domain that is a different administrative domain from the first domain. The translated attestation information can be provided to a verifier in the second domain. The verifier can be configured to verify the trustworthiness of the attester node for a relying node in the second domain by identifying a level of trust of the attester node based on the translated attestation information.Type: GrantFiled: December 19, 2019Date of Patent: October 11, 2022Assignee: CISCO TECHNOLOGY, INC.Inventors: David Delano Ward, Nancy Cam-Winget, Eric Voit, Jesse Daniel Backman
-
Super-resolution inference of an object's physical characteristic models from multi-spectral signals
Patent number: 11467252Abstract: In one embodiment, a service receives signal data indicative of phases and gains associated with wireless signals received by one or more antennas located in a particular area. The service determines, from the received signal data, changes in the phases and gains associated with the wireless signals. The service estimates a direction of motion of one or more objects located in the particular area, based on the determined changes in the gains associated with the wireless signals. The service estimates a total mass of the one or more objects located in the particular area based on a ratio of the determined changes in the gains associated with the wireless signals over the determined changes in the phases associated with the wireless signals.Type: GrantFiled: January 10, 2020Date of Patent: October 11, 2022Assignee: Cisco Technology, Inc.Inventors: David A. Maluf, David Delano Ward -
Patent number: 11463561Abstract: In one embodiment, new Segment Routing capabilities are used in the steering of packets through Segment Routing nodes in a network. A Segment List includes a set of one or more Segment List (SL) Groups, each of which identifies one or more Segments contiguously or non-contiguously stored in the Segment List (or stored across multiple Segment Lists) of a Segment Routing packet. Each SL Group typically includes one Segment that is encoded as a Segment Identifier, and may include Segments that are Extended Values. The steering order of SL Groups is not required to be the same order as they are listed in the Segment List, as the value of Segments Left may be increased, remain the same, or decreased (possibly to skip a next SL Group) and possibly based on the result of an evaluation of a conditional expression.Type: GrantFiled: September 15, 2020Date of Patent: October 4, 2022Assignee: CISCO TECHNOLOGY, INC.Inventors: Clarence Filsfils, Francois Clad, Pablo Camarillo Garvia, David Delano Ward
-
Publication number: 20220294729Abstract: In one embodiment, a method includes a method includes receiving, by a headend node, network traffic. The method also includes determining, by the headend node, that the network traffic matches a service route. The method further includes steering, by the headend node, the network traffic into an SR-TE policy. The SR-TE policy is associated with the service route and includes a security level constraint.Type: ApplicationFiled: June 2, 2022Publication date: September 15, 2022Inventors: Francois Clad, David Delano Ward, Clarence Filsfils
-
Patent number: 11410522Abstract: In one embodiment, a service receives signal characteristic data indicative of characteristics of wireless signals received by one or more antennas located in a particular area. The service identifies an object in the particular area, based on the received signal characteristic data. The service associates the identified object with an object kinematics model. The service updates the object kinematics model over time by applying Bayesian inference to changes in the signal characteristic data.Type: GrantFiled: January 10, 2020Date of Patent: August 9, 2022Assignee: Cisco Technology, Inc.Inventors: David A. Maluf, David Delano Ward
-
Patent number: 11411948Abstract: In one embodiment, an apparatus of a LISP environment includes one or more processors and computer-readable non-transitory storage media coupled to the one or more processors. The computer-readable non-transitory storage media include instructions that, when executed by the one or more processors, cause the one or more processors to perform operations including receiving an attestation token from a first component of the LISP environment. The operations also include encoding the attestation token using a LISP message format. The operations further include distributing the encoded attestation token with a LISP signaling message to a third component of the LISP environment.Type: GrantFiled: September 18, 2019Date of Patent: August 9, 2022Assignee: CISCO TECHNOLOGY, INC.Inventors: Clarence Filsfils, Marc Portoles Comeras, David Delano Ward, Alberto Rodriguez Natal
-
Patent number: 11405236Abstract: This disclosure describes methods and systems to externally manage network-to-network interconnect configuration data in conjunction with a centralized database subsystem. An example of the methods includes receiving and storing, in the centralized database subsystem, data indicative of user intent to interconnect at least a first network and a second network. The example method further includes, based at least in part on the data indicative of user intent, determining and storing, in the centralized database subsystem, a network intent that corresponds to the user intent. The example method further includes providing data indicative of the network intent from the centralized database subsystem to a first data plane adaptor, associated with the first network, and a second data plane adaptor, associated with the second network.Type: GrantFiled: February 24, 2020Date of Patent: August 2, 2022Assignee: Cisco Technology, Inc.Inventors: Pierre Pfister, William Mark Townsley, Yoann Desmouceaux, David Delano Ward
-
Patent number: 11398983Abstract: In one embodiment, an offload platform is an compute platform, adjunct to a router or other packet switching device, that performs packet processing operations including determining an egress forwarding value corresponding to the next-hop node of the packet switching device to which to send an offload-platform processed packet. The offload platform downloads forwarding information from the router, and augments it, such as, but not limited to, representing interfaces of the router as identifiable virtual interface(s) on the offload platform, and including each of one or more next-hop nodes of the router represented as an identifiable virtual adjacency and identifiable tunnel (e.g., identified by the egress forwarding value). In one embodiment, the egress forwarding value is an Multiprotocol Label Switching (MPLS) label or Segment Routing Identifier. The router identifies packets of certain packet flows to send to the adjunct offload platform, rather than processing per its routing information base.Type: GrantFiled: July 31, 2019Date of Patent: July 26, 2022Assignee: CISCO TECHNOLOGY, INC.Inventors: Ijsbrand Wijnands, Neale David Raymond Ranns, David Delano Ward, David Richard Barach
-
Patent number: 11386667Abstract: In one embodiment, a video analysis service receives video data captured by one or more cameras at a particular location. The service applies a neural network-based model to portions of the video data, to identify objects within the video data. The service maps outputs of the neural network-based model to symbols using a conceptual space. The outputs of the model comprise the identified objects. The service applies a symbolic reasoning engine to the symbols, to generate an alert. The service sends the alert to a user interface in conjunction with the video data.Type: GrantFiled: December 10, 2019Date of Patent: July 12, 2022Assignee: Cisco Technology, Inc.Inventors: Hugo Latapie, Enzo Fenoglio, David Delano Ward, Guillaume Sauvage De Saint Marc, Carole Gridley
-
Patent number: 11356361Abstract: In one embodiment, a method includes a method includes receiving, by a headend node, network traffic. The method also includes determining, by the headend node, that the network traffic matches a service route. The method further includes steering, by the headend node, the network traffic into an SR-TE policy. The SR-TE policy is associated with the service route and includes a security level constraint.Type: GrantFiled: December 17, 2019Date of Patent: June 7, 2022Assignee: CISCO TECHNOLOGY, INC.Inventors: Francois Clad, David Delano Ward, Clarence Filsfils
-
Publication number: 20220166646Abstract: This disclosure describes methods and systems to externally manage network-to-network interconnect configuration data in conjunction with a centralized database subsystem. An example of the methods includes receiving and storing, in the centralized database subsystem, data indicative of user intent to interconnect at least a first network and a second network. The example method further includes, based at least in part on the data indicative of user intent, determining and storing, in the centralized database subsystem, a network intent that corresponds to the user intent. The example method further includes providing data indicative of the network intent from the centralized database subsystem to a first data plane adaptor, associated with the first network, and a second data plane adaptor, associated with the second network.Type: ApplicationFiled: February 14, 2022Publication date: May 26, 2022Inventors: Pierre Pfister, William Mark Townsley, Yoann Desmouceaux, David Delano Ward
-
Patent number: 11316780Abstract: A verifier peer system transmits a request to an application of another peer system to obtain integrity data of the application. In response to the request, the verifier peer system obtains a response that includes kernel secure boot metrics of the other peer system and integrity data of the application and of any application dependencies. If the verifier peer system determines that the response is valid, the verifier peer system evaluates the integrity data and the kernel secure boot metrics against a set of Known Good Values to determine whether the integrity data and the kernel secure boot metrics are valid. If the integrity data and the kernel secure boot metrics are valid, the verifier peer system determines that the other peer system is trustworthy.Type: GrantFiled: March 27, 2020Date of Patent: April 26, 2022Assignee: CISCO TECHNOLOGY, INC.Inventors: David Delano Ward, Jakob Heitz, William Michael Hudson, Jr., Eric Voit
-
Patent number: 11277371Abstract: A method of routing a packet in a network is described. The network includes a plurality of nodes implementing Information Centric Networking (ICN) routing or content centric networking and routing. The method includes receiving the packet at a node implementing ICN routing, the packet comprising an Internet Protocol (IP) header and a packet payload, wherein the packet comprises a request packet for requesting content from the network. The method further includes extracting from the packet payload a content identifier for the requested content and forwarding the packet to a next hop node in the network based on the content identifier extracted from the packet payload.Type: GrantFiled: April 17, 2017Date of Patent: March 15, 2022Assignee: CISCO TECHNOLOGY, INC.Inventors: Andre Jean-Marie Surcouf, David Delano Ward, William Mark Townsley