Patents Assigned to Cisco Technology
  • Patent number: 12132734
    Abstract: In one aspect, the present disclosure is directed to a method that includes receiving, at an edge component of a cloud-based secure access service, a corresponding access designation for each of a plurality of endpoints, each access designation specifying a type of access a corresponding endpoint has to remaining ones of the plurality of endpoints and other accessible network resources; based on the corresponding access designation of each of the plurality of endpoints, updating a routing table at the edge component, to include routing information for a subset of the plurality of endpoints having access to at least one other endpoint of the plurality of endpoints or to the other accessible network resources; and enabling routing of network traffic, via the cloud-based secure access service, between any number of the plurality of endpoints based at least in part on the routing table.
    Type: Grant
    Filed: February 23, 2022
    Date of Patent: October 29, 2024
    Assignee: Cisco Technology, Inc.
    Inventor: Mark A. Bakke
  • Publication number: 20240354399
    Abstract: A method may include receiving monitoring data including a first monitoring event, a second monitoring event, and a third monitoring event associated with a computing system. The method may further include may determining, by a first predictive model, that the first and the second monitoring events are security-related while the third monitoring event is not security-related, a first feature set for the first monitoring event, and a second feature set for the second monitoring event. The method may further include determining, by a second predictive model, that the first and second feature sets relate to a first threat, and a third feature set that is associated with the first threat. The method may further include determining whether to perform an incident response action based on the third feature set.
    Type: Application
    Filed: August 23, 2023
    Publication date: October 24, 2024
    Applicant: Cisco Technology, Inc.
    Inventors: Cenek Skarda, Josef Krupicka, Michal Svoboda
  • Publication number: 20240356958
    Abstract: This disclosure describes techniques for mapping local device identifiers used in monitoring data from different sources to a common global identifier to enable correlation of monitoring events related to the same device. The techniques can be used in the context of an Extended Detection and Response (XDR) system architecture for advanced threat detection and response in a computer system. In some cases, the XDR system ingests security data from various monitoring components like Endpoint Detection and Response (EDR), Intrusion Detection Systems (IDSs), Intrusion Prevention Systems (IPSs), firewall engines, and email security systems.
    Type: Application
    Filed: August 22, 2023
    Publication date: October 24, 2024
    Applicant: Cisco Technology, Inc.
    Inventors: Tomas Jirsik, Cenek Skarda, David Sislak, Tomas Kuthan
  • Publication number: 20240356949
    Abstract: This disclosure describes techniques for mapping local device identifiers used in monitoring data from different sources to a common global identifier to enable correlation of monitoring events related to the same device. The techniques can be used in the context of an Extended Detection and Response (XDR) system architecture for advanced threat detection and response in a computer system. In some cases, the XDR system ingests security data from various monitoring components like Endpoint Detection and Response (EDR), Intrusion Detection Systems (IDSs), Intrusion Prevention Systems (IPSs), firewall engines, and email security systems.
    Type: Application
    Filed: August 23, 2023
    Publication date: October 24, 2024
    Applicant: Cisco Technology, Inc.
    Inventors: Tomas Jirsik, Cenek Skarda, David Sislak, Jaroslav Hlavac
  • Publication number: 20240356827
    Abstract: Energy savings through adjustment of link speed may be provided. A utilization of a port may be monitored. The port may be configured to run at a plurality of speeds. Based on monitoring the utilization of the port, it may be determined that the utilization of the port has dropped, for a first predetermined time period, below a supported speed lower than a current port speed. Energy consumed by the port may be lowered, in response to determining that the utilization of the port has dropped, for the first predetermined time period, below a supported speed lower than the current port speed. Lowering the energy consumed by the port may comprise re-configuring the port to run at a second speed comprising a supported speed below the current speed. When the utilization of the port exceeds a predefined threshold over a second predetermined time period, the port speed may be increased.
    Type: Application
    Filed: April 18, 2023
    Publication date: October 24, 2024
    Applicant: Cisco Technology, Inc.
    Inventor: Peter G. JONES
  • Publication number: 20240356950
    Abstract: A method may include receiving, by a processor, first monitoring data from a first monitoring component and second monitoring data from a second monitoring component. The method may further include determining, by the processor, that the first monitoring data represents a first activity pattern of a computing entity in a first period. The method may further include determining, by the processor, that the second monitoring data represents a second activity pattern of the computing entity in the first period. The method may further include determining, by the processor, first feedback data based on the first monitoring data. The method may further include determining, by the processor, second feedback data based on the second monitoring data. The method may further include providing, by the processor, the first feedback data to the second monitoring component and the second feedback data to the first monitoring component.
    Type: Application
    Filed: August 24, 2023
    Publication date: October 24, 2024
    Applicant: Cisco Technology, Inc.
    Inventors: Cenek Skarda, David Sislak
  • Publication number: 20240353623
    Abstract: Disclosed is an apparatus, including an isolator wavelength division multiplexer (IWDM). A signal-fiber is optically coupled to a first side of the WDM-Isolator core. The signal-fiber is configured to propagate signal light. A pump-fiber defines an expanded tip optically coupled to the WDM-Isolator core. The pump-fiber is configured to propagate pump light. A common-fiber is optically coupled to the WDM-Isolator core. The common-fiber is configured to propagate a combination of the signal light and the pump light. The WDM-Isolator core is configured to transmit the signal light to the common-fiber and to reflect the pump light into the common-fiber.
    Type: Application
    Filed: September 7, 2023
    Publication date: October 24, 2024
    Applicant: Cisco Technology, Inc.
    Inventor: Colm Cryan
  • Publication number: 20240357345
    Abstract: A selection of a Pairwise Master Key (PMK) caching method in a wireless deployment may be provided. One or more PMK caching methods that are supported by a wireless infrastructure may be advertised. A selection of a PMK caching method based on the advertised one or more PMK caching methods may be received from a first station. The first station may be authenticated in the wireless infrastructure. In response to authenticating, a PMK entry in a cache store associated with the PMK caching method may be created for the first station based on the selection.
    Type: Application
    Filed: April 21, 2023
    Publication date: October 24, 2024
    Applicant: Cisco Technology, Inc.
    Inventors: Jegan MANOHARAN, Niranjan Mallapura MALLIKARJUNAIAH, Gokul Bhoothanathan Kailasanatha SUBRAMANIA
  • Patent number: 12126688
    Abstract: Disclosed are systems, apparatuses, methods, and computer-readable media for managing networks. According to at least one example, a method is provided for connecting to a network controller across different regions. The method includes identifying a first connection with a network orchestrator during establishment of a second connection with the network orchestrator from a network controller; establishing a sibling session that links the second connection and the first connection at a control plane; inserting a sibling data message that identifies the sibling session into control messages sent; receiving a message from the network orchestrator over the second connection, the message including an address of the network controller associated with the second connection; and transmitting the second address of the network controller over the first connection to the network orchestrator.
    Type: Grant
    Filed: September 5, 2023
    Date of Patent: October 22, 2024
    Assignee: Cisco Technology, Inc.
    Inventors: Biju Mathews Mammen, Kiran Desai, Jun Shang, Venkata Suresh Kalluri
  • Patent number: 12126506
    Abstract: Techniques are described for storing and processing network data for responding to queries for such network data. Operational network data is separated from configuration network data so that they can be processed and stored separately. A sliding window cache is used to continually, temporarily store network data objects having time stamps falling within the time range of the sliding window cache. Network data objects stored within the sliding window cache are then moved to computer memory for storage and later retrieval. In response to a query for network data, network data objects can be retrieved from the sliding window cache and also from the computer memory based on time stamps of the network data objects and on the time range of the query.
    Type: Grant
    Filed: June 23, 2023
    Date of Patent: October 22, 2024
    Assignee: Cisco Technology, Inc.
    Inventors: Xueqiang (Sherman) Ma, Zhaomin Yin
  • Patent number: 12127042
    Abstract: System, methods, and computer-readable media for validating and committing a shared O-RU configuration via a shared O-RU Operator. The shared O-RU Operator validates a partitioned configuration received from a tenant operator, with the ability to indicate to the tenant operator that the partitioned configuration is conformant to agreed-upon sharing rules and then commits the shared configuration to the shared O-RU. The shared O-RU operator shares the outcome of the commit operation to the tenant operator via defined operational-data that can be read by the tenant operator. A single radio in O-RAN is shared by multiple different operators and enables a neutral host to deploy a radio unit and then have that attached to different operators networks.
    Type: Grant
    Filed: November 22, 2021
    Date of Patent: October 22, 2024
    Assignee: Cisco Technology, Inc.
    Inventor: Mark Grayson
  • Patent number: 12126117
    Abstract: Embodiments herein describe preventing a pluggable module from connecting to a chassis until ensuring there is no damage on the pluggable module, the chassis, or both. In one embodiment, the chassis includes a blocking element that prevents or blocks the pluggable module from mating with the chassis. The chassis can also include a camera for capturing an image of the pluggable module to determine whether there is damage to its connection elements (e.g., pins). If not, the chassis can release the locking pin to permit the pluggable module to mate with connection elements on the chassis.
    Type: Grant
    Filed: April 20, 2022
    Date of Patent: October 22, 2024
    Assignee: Cisco Technology, Inc.
    Inventors: Garima Mishra, Rohit Dev Gupta, Shilpa Agrawal, Manjunatha Reddy Shivashankara, Ramesh Babu Darla
  • Patent number: 12127020
    Abstract: Systems and methods for managing traffic in a hybrid environment include monitoring traffic load of a local network to determine whether the traffic load exceeds or is likely to exceed a maximum traffic load, where the maximum traffic load is a traffic load for which a service can be provided by the local network, based on a license. An excess traffic load is determined if the traffic load exceeds or is likely to exceed the maximum traffic load. One or more external networks which have a capacity to provide the service to the excess traffic load are determined, to which the excess traffic load is migrated. The local network includes one or more service instances for providing the service for up to the maximum traffic load, and the service to the excess traffic load is provided by one or more additional service instances in the one or more external networks.
    Type: Grant
    Filed: November 30, 2023
    Date of Patent: October 22, 2024
    Assignee: Cisco Technology, Inc.
    Inventors: Balaji Sundararajan, Sanjay Kumar Hooda, Venkatesh Ramachandra Gota, Chandramouli Balasubramanian, Anand Oswal
  • Patent number: 12124326
    Abstract: Systems and methods are described herein for logging system events within an electronic machine using an event log structured as a collection of tree-like cause and effect graphs. An event to be logged may be received. A new event node may be created within the event log for the received event. One or more existing event nodes within the event log may be identified as having possibly caused the received event. One or more causal links may be created within the event log between the new event node and the one or more identified existing event nodes. The new event node may be stored as an unattached root node in response to not identifying an existing event node that may have caused the received event.
    Type: Grant
    Filed: March 27, 2023
    Date of Patent: October 22, 2024
    Assignee: Cisco Technology, Inc.
    Inventors: Jay Kemper Johnston, David C. White, Jr., Christopher Blayne Dreier
  • Patent number: 12126653
    Abstract: In one embodiment, a service that monitors a network obtains file characteristic data of a file stored on a first endpoint in the network. The service infers characteristics of encrypted content within encrypted traffic in the network between the first endpoint and a second endpoint, by applying a machine learning-based classifier to traffic data regarding the encrypted traffic session. The service compares the file characteristic data of the file to the inferred content characteristics of the encrypted content within the encrypted traffic, to detect the file within the encrypted traffic. The service enforces a network policy in the network, based on the detection of the file within the encrypted traffic.
    Type: Grant
    Filed: November 30, 2020
    Date of Patent: October 22, 2024
    Assignee: Cisco Technology, Inc.
    Inventors: Blake Harrell Anderson, Chris Allen Shenefiel, David McGrew, Robert M. Waitman
  • Patent number: 12127035
    Abstract: Technologies for systems, methods and computer-readable storage media for solving complex distributed congestion in a 5G network by using traffic engineering data to redirect sessions. Specifically, involving anchoring a network node to a User Plane (UP) entity based on traffic engineering data and subscribing to traffic engineering data associated with requested parameters to push particular policies and/or select alternate application functions to correct congestion.
    Type: Grant
    Filed: October 20, 2023
    Date of Patent: October 22, 2024
    Assignee: Cisco Technology, Inc.
    Inventors: Raghavendar Rao Kota, Nithin Chitta, Srinivasa R. Irigi
  • Patent number: 12126056
    Abstract: In one embodiment, a depassivating circuit includes a battery, a resistive load coupled to the battery, and a magnetic field sensor. The magnetic field sensor detects a presence of a magnetic field. The magnetic field sensor depassivates the battery by causing current from the battery to flow through the resistive load, in response to the presence of the magnetic field. The magnetic field sensor detects removal of the magnetic field. The magnetic field sensor ends depassivation of the battery, in response to the removal of the magnetic field.
    Type: Grant
    Filed: July 28, 2022
    Date of Patent: October 22, 2024
    Assignee: Cisco Technology, Inc.
    Inventors: Kevin William Holcomb, Aumen Kwok Lee
  • Publication number: 20240348708
    Abstract: A method of managing data streaming processes may include at a processing device, computing hypertext transmission protocol version 3 (HTTP/3) header of a first message received at a first network interface controller (NIC) into a first control message and a second control message, and transmitting the first control message to the first NIC associated with the processing device. The method may further include transmitting the second control message to a second NIC associated with the processing device, and with the first control message and the second control message, transmitting data directly between the first NIC and the second NIC.
    Type: Application
    Filed: April 11, 2023
    Publication date: October 17, 2024
    Applicant: Cisco Technology, Inc.
    Inventors: Rajiv Asati, Edward Albert Warnicke
  • Patent number: D1048006
    Type: Grant
    Filed: August 30, 2021
    Date of Patent: October 22, 2024
    Assignee: Cisco Technology, Inc.
    Inventors: Anton Love Ingvaldson, Sebastian Andre Olsson
  • Patent number: RE50187
    Abstract: An algorithm for determining redundant radios in APs is disclosed. The algorithm first performs a coverage peak flattening algorithm to predict an impact to the total coverage area if a radio in a selected AP does not transmit signals in a frequency band. If the impact to the total coverage area is acceptable, the algorithm then performs a multi-point check algorithm to determine whether the radio in the selected AP is redundant in the frequency band. After determining that the radio in the selected AP is redundant in the frequency band, the algorithm transforms the redundant radio into various services based on the network deployment and user preference.
    Type: Grant
    Filed: March 31, 2022
    Date of Patent: October 22, 2024
    Assignee: Cisco Technology, Inc.
    Inventors: Vishal S. Desai, Allaukik Abhishek, Pooya Monajemi, Young Il Choi