Abstract: In one example embodiment, a server obtains a labeled fingerprint of an ultrasound-capable client device. Based on the labeled fingerprint, the server determines that the ultrasound-capable client device is in physical proximity with a collaboration endpoint. The server subsequently obtains an unlabeled fingerprint of an ultrasound-incapable client device. Based on the unlabeled fingerprint and the labeled fingerprint, the server determines that the ultrasound-incapable client device is a meeting attendee device for a collaboration meeting to which the collaboration endpoint is connected. In response to determining that the ultrasound-incapable client device is the meeting attendee device for the collaboration meeting, the server connects the ultrasound-incapable client device to the collaboration endpoint.

Abstract: Resource Unit (RU) sharing between Access Points in a wireless network is provided by identifying a first Access Point (AP) associated with a first user device, wherein the first AP has won contention for a RU; identifying a second AP associated with a second user device, wherein the first user device and the second user device are located within an overlapping area served by the first AP and the second AP; identifying an unused portion of the RU to which the first AP has not scheduled traffic between the first AP and the first user device; and assigning the unused portion to the second AP for communication between the second AP and the second user device.

Abstract: Aspects described herein include a method comprising predicting, based on one or more transmission characteristics, error values for a sequence of bit positions used for modulating data within a packet. The method further comprises generating a bitmap that maps one or more payload bits and one or more padding bits of the packet to respective bit positions of the sequence. The one or more padding bits are preferentially mapped to respective bit positions having relatively greater error values. The method further comprises modulating the sequence according to the bitmap.

Abstract: Techniques for interface bandwidth management. A wired interface bandwidth is configured for a wired interface of a router. A cellular interface bandwidth is configured for a cellular interface of cellular interfaces of the router. The cellular interface bandwidth includes an uplink bandwidth. One or more instantaneous uplink throughput values for the cellular interface are determined based on one or more uplink throughput per resource block values for the cellular interface. A predicted average uplink throughput for the cellular interface is determined based on the one or more instantaneous uplink throughput values. The uplink bandwidth is dynamically adjusted based on the predicted average uplink throughput determined for the cellular interface of the router.

Abstract: Aspects described herein include a method comprising receiving an initial Fine Timing Measurement (FTM) request from an Initiating Station (ISTA), determining a priority classification of the ISTA relative to other ISTAs, and determining, based at least partly on the priority classification, whether to accept the initial FTM request.

Abstract: This disclosure describes techniques for providing manufacturer usage description (MUD) solution to automatically update network access policy for client application software. The method may include embedding metadata in the application binary. The metadata may include MUD uniform resource identifiers (URIs) that may point to MUD files describing the application's network access requirements. The MUD files may be hosted by application vendor's MUD servers. The system may include a network policy server that is able discover the MUD URIs. The MUD URIs may be discovered based on extracting the MUD URIs from the metadata and/or being provision with the set of MUD URIs for trusted applications. The method may include enterprise wide policy and individual host policy for implementation of the MUD files.

Abstract: In one embodiment, a client device having a plurality of radios obtains a list of basic service set identifiers (BSSIDs) for a plurality of wireless access points of a wireless network. The client device associates each of the plurality of radios of the client device with a different wireless access point of the wireless network, based on the obtained list of BSSIDs. The client device receives a copy of a data packet from a particular one of the associated wireless access points. Each of the associated wireless access points receives a replicated copy of the data packet to be transmitted towards the client device. The device causes the associated wireless access points to cease further transmission of their copies of the data packet by acknowledging receipt of the data packet to the particular wireless access point.

Abstract: A system and method are disclosed for using segment routing (SR) in native IP networks. The method involves receiving a packet. The packet is an IP packet and includes an IP header. The method also involves updating the packet. Updating the packet involves writing information, including a segment routing segment identifier, to the destination address of the packet.

Abstract: A plurality of policies to be enforced in a network environment via a plurality of devices are determined. A topology of the plurality of devices within the network environment is also determined. For each policy of the plurality of policies, a device of the plurality of devices is selected as the location at which to enforce the policy of the plurality of policies. Selecting the device for each policy of the plurality of policies includes correlating the policy of the plurality of policies with another of the plurality of policies and correlating the policy of the plurality of policies with the topology.

Abstract: In one embodiment, an apparatus includes an optical module comprising a first end for insertion into a network device and a second end extending from the network device when the optical module is inserted into the network device, and a temperature indicator thermally coupled to the optical module and extending from said second end of the optical module. The temperature indicator provides an indication that a surface temperature of the optical module exceeds a predefined safe touch temperature limit.

Abstract: A link extender configured to extend a range of an optical transceiver module is provided. The link extender includes an array of semiconductor optical amplifiers (SOAs) configured to amplify an optical signal received from the optical transceiver module, a first plurality of variable optical attenuators (VOAs) configured to control a power output of the amplified optical signal output from the array of SOAs, and a plurality of dispersion compensation and filtering (DC&F) devices configured to compensate for chromatic dispersion of the optical signal.

Abstract: An opto-electronic package is described. The opto-electronic package is manufactured using a fan out wafer level packaging to produce dies/frames which include connection features. Additional structures such as heat exchanged structures are joined to a connection component and affixed to packages, using the connection features, to provide structural support and heat exchange to heat generating components in the package, among other functions.

Abstract: A method enables communication between Session Management Function (SMF) and User Plane Function (UPF) instances which are separately deployed behind Network Address Translation (NAT) services. The method includes configuring an SMF or a UPF to initiate an association with a corresponding UPF or SMF. The SMF registers first information with a Network Repository Function (NRF) enabling the remote UPF to communicate with the SMF through a NAT service. The method further includes obtaining second information from the NRF enabling the SMF to communicate with the remote UPF through the NAT service. The method also includes sending an association request to the remote UPF based on the second information and receiving an association response from the remote UPF through the NAT service.

Abstract: Systems, methods, and computer-readable media for providing cross-domain assurance for networks in different network domains. In some embodiments, a method can include collecting first fabric data for a first network in a first network domain and second fabric data for a second network in a second network domain. The second fabric data for the second network can be normalized based on the first network domain to create normalized second fabric data. The first fabric data can then be correlated with the normalized second fabric data to create correlated fabric data. Subsequently, assurance can be provided across the first network in the first network domain and the second network in the second network domain using the correlated fabric data.

Abstract: In one embodiment, a network security service forms, for each of a plurality of malware classes, a feature vector descriptor for the malware class. The service uses the feature vector descriptors for the malware classes and a symmetric mapping function to generate a training dataset having both positively and negatively labeled feature vectors. The service trains, using the training dataset, an instant threat detector to determine whether telemetry data for a particular traffic flow is within a threshold of similarity to a feature vector descriptor for a new malware class that was not part of the plurality of malware classes.

Abstract: In an example embodiment disclosed herein there is described a multi-radio device which comprises a first radio that first radio comprises a transmitter, and a second radio that second radio comprises a receiver that monitors a channel to obtain data representative of a predefined channel parameter. The second radio is operable to receive a signal from the first radio that indicates when the transmitter of the first radio is transmitting. The receiver of the second radio selectively excludes data representative of a predefined channel parameter based on whether the transmitter of the first radio is transmitting.

Abstract: Systems, methods, and computer-readable media for identifying bogon addresses. A system can obtain an indication of address spaces in a network. The indication can be based on route advertisements transmitted by routers associated with the network. The system can receive a report generated by a capturing agent deployed on a host. The report can identify a flow captured by the capturing agent at the host. The system can identify a network address associated with the flow and, based on the indication of address spaces, the system can determine whether the network address is within the address spaces in the network. When the network address is not within the address spaces in the network, the system can determine that the network address is a bogon address. When the network address is within the address spaces in the network, the system can determine that the network address is not a bogon address.

Abstract: Methods are provided for decentralized key negotiation. One method includes initiating, by a first Internet Key Exchange (IKE) node from among a plurality of IKE nodes, a rekeying process for an Internet Protocol Security (IPSec) communication session established with a client device and serviced by a second IKE node from among the plurality of IKE nodes, and in which a first encryption key is used to encrypt traffic. The method further includes obtaining, by the first IKE node from a key value store, information about the IPSec communication session and performing, by the first IKE node, at least a part of the rekeying process in which the first encryption key is replaced with a second encryption key for the IPSec communication session.

Abstract: This disclosure describes techniques for validating a replication network. Validation of a replication network may include checking connectivity among components of the replication network, such as paired clusters. The techniques include performing intra-cluster and inter-cluster replication validation checks. The replication validation checks may generate replication validation output. Based at least in part of the replication validation output, user interface data may be sent to a display device for presentation to a user. In this way, connectivity faults within the replication network may be resolved.