Patents Assigned to Cisco Technology
-
Patent number: 12132734Abstract: In one aspect, the present disclosure is directed to a method that includes receiving, at an edge component of a cloud-based secure access service, a corresponding access designation for each of a plurality of endpoints, each access designation specifying a type of access a corresponding endpoint has to remaining ones of the plurality of endpoints and other accessible network resources; based on the corresponding access designation of each of the plurality of endpoints, updating a routing table at the edge component, to include routing information for a subset of the plurality of endpoints having access to at least one other endpoint of the plurality of endpoints or to the other accessible network resources; and enabling routing of network traffic, via the cloud-based secure access service, between any number of the plurality of endpoints based at least in part on the routing table.Type: GrantFiled: February 23, 2022Date of Patent: October 29, 2024Assignee: Cisco Technology, Inc.Inventor: Mark A. Bakke
-
Publication number: 20240354399Abstract: A method may include receiving monitoring data including a first monitoring event, a second monitoring event, and a third monitoring event associated with a computing system. The method may further include may determining, by a first predictive model, that the first and the second monitoring events are security-related while the third monitoring event is not security-related, a first feature set for the first monitoring event, and a second feature set for the second monitoring event. The method may further include determining, by a second predictive model, that the first and second feature sets relate to a first threat, and a third feature set that is associated with the first threat. The method may further include determining whether to perform an incident response action based on the third feature set.Type: ApplicationFiled: August 23, 2023Publication date: October 24, 2024Applicant: Cisco Technology, Inc.Inventors: Cenek Skarda, Josef Krupicka, Michal Svoboda
-
Publication number: 20240356958Abstract: This disclosure describes techniques for mapping local device identifiers used in monitoring data from different sources to a common global identifier to enable correlation of monitoring events related to the same device. The techniques can be used in the context of an Extended Detection and Response (XDR) system architecture for advanced threat detection and response in a computer system. In some cases, the XDR system ingests security data from various monitoring components like Endpoint Detection and Response (EDR), Intrusion Detection Systems (IDSs), Intrusion Prevention Systems (IPSs), firewall engines, and email security systems.Type: ApplicationFiled: August 22, 2023Publication date: October 24, 2024Applicant: Cisco Technology, Inc.Inventors: Tomas Jirsik, Cenek Skarda, David Sislak, Tomas Kuthan
-
Publication number: 20240356949Abstract: This disclosure describes techniques for mapping local device identifiers used in monitoring data from different sources to a common global identifier to enable correlation of monitoring events related to the same device. The techniques can be used in the context of an Extended Detection and Response (XDR) system architecture for advanced threat detection and response in a computer system. In some cases, the XDR system ingests security data from various monitoring components like Endpoint Detection and Response (EDR), Intrusion Detection Systems (IDSs), Intrusion Prevention Systems (IPSs), firewall engines, and email security systems.Type: ApplicationFiled: August 23, 2023Publication date: October 24, 2024Applicant: Cisco Technology, Inc.Inventors: Tomas Jirsik, Cenek Skarda, David Sislak, Jaroslav Hlavac
-
Publication number: 20240356827Abstract: Energy savings through adjustment of link speed may be provided. A utilization of a port may be monitored. The port may be configured to run at a plurality of speeds. Based on monitoring the utilization of the port, it may be determined that the utilization of the port has dropped, for a first predetermined time period, below a supported speed lower than a current port speed. Energy consumed by the port may be lowered, in response to determining that the utilization of the port has dropped, for the first predetermined time period, below a supported speed lower than the current port speed. Lowering the energy consumed by the port may comprise re-configuring the port to run at a second speed comprising a supported speed below the current speed. When the utilization of the port exceeds a predefined threshold over a second predetermined time period, the port speed may be increased.Type: ApplicationFiled: April 18, 2023Publication date: October 24, 2024Applicant: Cisco Technology, Inc.Inventor: Peter G. JONES
-
Publication number: 20240356950Abstract: A method may include receiving, by a processor, first monitoring data from a first monitoring component and second monitoring data from a second monitoring component. The method may further include determining, by the processor, that the first monitoring data represents a first activity pattern of a computing entity in a first period. The method may further include determining, by the processor, that the second monitoring data represents a second activity pattern of the computing entity in the first period. The method may further include determining, by the processor, first feedback data based on the first monitoring data. The method may further include determining, by the processor, second feedback data based on the second monitoring data. The method may further include providing, by the processor, the first feedback data to the second monitoring component and the second feedback data to the first monitoring component.Type: ApplicationFiled: August 24, 2023Publication date: October 24, 2024Applicant: Cisco Technology, Inc.Inventors: Cenek Skarda, David Sislak
-
Publication number: 20240353623Abstract: Disclosed is an apparatus, including an isolator wavelength division multiplexer (IWDM). A signal-fiber is optically coupled to a first side of the WDM-Isolator core. The signal-fiber is configured to propagate signal light. A pump-fiber defines an expanded tip optically coupled to the WDM-Isolator core. The pump-fiber is configured to propagate pump light. A common-fiber is optically coupled to the WDM-Isolator core. The common-fiber is configured to propagate a combination of the signal light and the pump light. The WDM-Isolator core is configured to transmit the signal light to the common-fiber and to reflect the pump light into the common-fiber.Type: ApplicationFiled: September 7, 2023Publication date: October 24, 2024Applicant: Cisco Technology, Inc.Inventor: Colm Cryan
-
Publication number: 20240357345Abstract: A selection of a Pairwise Master Key (PMK) caching method in a wireless deployment may be provided. One or more PMK caching methods that are supported by a wireless infrastructure may be advertised. A selection of a PMK caching method based on the advertised one or more PMK caching methods may be received from a first station. The first station may be authenticated in the wireless infrastructure. In response to authenticating, a PMK entry in a cache store associated with the PMK caching method may be created for the first station based on the selection.Type: ApplicationFiled: April 21, 2023Publication date: October 24, 2024Applicant: Cisco Technology, Inc.Inventors: Jegan MANOHARAN, Niranjan Mallapura MALLIKARJUNAIAH, Gokul Bhoothanathan Kailasanatha SUBRAMANIA
-
Patent number: 12126688Abstract: Disclosed are systems, apparatuses, methods, and computer-readable media for managing networks. According to at least one example, a method is provided for connecting to a network controller across different regions. The method includes identifying a first connection with a network orchestrator during establishment of a second connection with the network orchestrator from a network controller; establishing a sibling session that links the second connection and the first connection at a control plane; inserting a sibling data message that identifies the sibling session into control messages sent; receiving a message from the network orchestrator over the second connection, the message including an address of the network controller associated with the second connection; and transmitting the second address of the network controller over the first connection to the network orchestrator.Type: GrantFiled: September 5, 2023Date of Patent: October 22, 2024Assignee: Cisco Technology, Inc.Inventors: Biju Mathews Mammen, Kiran Desai, Jun Shang, Venkata Suresh Kalluri
-
Patent number: 12126506Abstract: Techniques are described for storing and processing network data for responding to queries for such network data. Operational network data is separated from configuration network data so that they can be processed and stored separately. A sliding window cache is used to continually, temporarily store network data objects having time stamps falling within the time range of the sliding window cache. Network data objects stored within the sliding window cache are then moved to computer memory for storage and later retrieval. In response to a query for network data, network data objects can be retrieved from the sliding window cache and also from the computer memory based on time stamps of the network data objects and on the time range of the query.Type: GrantFiled: June 23, 2023Date of Patent: October 22, 2024Assignee: Cisco Technology, Inc.Inventors: Xueqiang (Sherman) Ma, Zhaomin Yin
-
Patent number: 12127042Abstract: System, methods, and computer-readable media for validating and committing a shared O-RU configuration via a shared O-RU Operator. The shared O-RU Operator validates a partitioned configuration received from a tenant operator, with the ability to indicate to the tenant operator that the partitioned configuration is conformant to agreed-upon sharing rules and then commits the shared configuration to the shared O-RU. The shared O-RU operator shares the outcome of the commit operation to the tenant operator via defined operational-data that can be read by the tenant operator. A single radio in O-RAN is shared by multiple different operators and enables a neutral host to deploy a radio unit and then have that attached to different operators networks.Type: GrantFiled: November 22, 2021Date of Patent: October 22, 2024Assignee: Cisco Technology, Inc.Inventor: Mark Grayson
-
Patent number: 12126117Abstract: Embodiments herein describe preventing a pluggable module from connecting to a chassis until ensuring there is no damage on the pluggable module, the chassis, or both. In one embodiment, the chassis includes a blocking element that prevents or blocks the pluggable module from mating with the chassis. The chassis can also include a camera for capturing an image of the pluggable module to determine whether there is damage to its connection elements (e.g., pins). If not, the chassis can release the locking pin to permit the pluggable module to mate with connection elements on the chassis.Type: GrantFiled: April 20, 2022Date of Patent: October 22, 2024Assignee: Cisco Technology, Inc.Inventors: Garima Mishra, Rohit Dev Gupta, Shilpa Agrawal, Manjunatha Reddy Shivashankara, Ramesh Babu Darla
-
Patent number: 12127020Abstract: Systems and methods for managing traffic in a hybrid environment include monitoring traffic load of a local network to determine whether the traffic load exceeds or is likely to exceed a maximum traffic load, where the maximum traffic load is a traffic load for which a service can be provided by the local network, based on a license. An excess traffic load is determined if the traffic load exceeds or is likely to exceed the maximum traffic load. One or more external networks which have a capacity to provide the service to the excess traffic load are determined, to which the excess traffic load is migrated. The local network includes one or more service instances for providing the service for up to the maximum traffic load, and the service to the excess traffic load is provided by one or more additional service instances in the one or more external networks.Type: GrantFiled: November 30, 2023Date of Patent: October 22, 2024Assignee: Cisco Technology, Inc.Inventors: Balaji Sundararajan, Sanjay Kumar Hooda, Venkatesh Ramachandra Gota, Chandramouli Balasubramanian, Anand Oswal
-
Patent number: 12124326Abstract: Systems and methods are described herein for logging system events within an electronic machine using an event log structured as a collection of tree-like cause and effect graphs. An event to be logged may be received. A new event node may be created within the event log for the received event. One or more existing event nodes within the event log may be identified as having possibly caused the received event. One or more causal links may be created within the event log between the new event node and the one or more identified existing event nodes. The new event node may be stored as an unattached root node in response to not identifying an existing event node that may have caused the received event.Type: GrantFiled: March 27, 2023Date of Patent: October 22, 2024Assignee: Cisco Technology, Inc.Inventors: Jay Kemper Johnston, David C. White, Jr., Christopher Blayne Dreier
-
Patent number: 12126653Abstract: In one embodiment, a service that monitors a network obtains file characteristic data of a file stored on a first endpoint in the network. The service infers characteristics of encrypted content within encrypted traffic in the network between the first endpoint and a second endpoint, by applying a machine learning-based classifier to traffic data regarding the encrypted traffic session. The service compares the file characteristic data of the file to the inferred content characteristics of the encrypted content within the encrypted traffic, to detect the file within the encrypted traffic. The service enforces a network policy in the network, based on the detection of the file within the encrypted traffic.Type: GrantFiled: November 30, 2020Date of Patent: October 22, 2024Assignee: Cisco Technology, Inc.Inventors: Blake Harrell Anderson, Chris Allen Shenefiel, David McGrew, Robert M. Waitman
-
Patent number: 12127035Abstract: Technologies for systems, methods and computer-readable storage media for solving complex distributed congestion in a 5G network by using traffic engineering data to redirect sessions. Specifically, involving anchoring a network node to a User Plane (UP) entity based on traffic engineering data and subscribing to traffic engineering data associated with requested parameters to push particular policies and/or select alternate application functions to correct congestion.Type: GrantFiled: October 20, 2023Date of Patent: October 22, 2024Assignee: Cisco Technology, Inc.Inventors: Raghavendar Rao Kota, Nithin Chitta, Srinivasa R. Irigi
-
Patent number: 12126056Abstract: In one embodiment, a depassivating circuit includes a battery, a resistive load coupled to the battery, and a magnetic field sensor. The magnetic field sensor detects a presence of a magnetic field. The magnetic field sensor depassivates the battery by causing current from the battery to flow through the resistive load, in response to the presence of the magnetic field. The magnetic field sensor detects removal of the magnetic field. The magnetic field sensor ends depassivation of the battery, in response to the removal of the magnetic field.Type: GrantFiled: July 28, 2022Date of Patent: October 22, 2024Assignee: Cisco Technology, Inc.Inventors: Kevin William Holcomb, Aumen Kwok Lee
-
Publication number: 20240348708Abstract: A method of managing data streaming processes may include at a processing device, computing hypertext transmission protocol version 3 (HTTP/3) header of a first message received at a first network interface controller (NIC) into a first control message and a second control message, and transmitting the first control message to the first NIC associated with the processing device. The method may further include transmitting the second control message to a second NIC associated with the processing device, and with the first control message and the second control message, transmitting data directly between the first NIC and the second NIC.Type: ApplicationFiled: April 11, 2023Publication date: October 17, 2024Applicant: Cisco Technology, Inc.Inventors: Rajiv Asati, Edward Albert Warnicke
-
Patent number: D1048006Type: GrantFiled: August 30, 2021Date of Patent: October 22, 2024Assignee: Cisco Technology, Inc.Inventors: Anton Love Ingvaldson, Sebastian Andre Olsson
-
Patent number: RE50187Abstract: An algorithm for determining redundant radios in APs is disclosed. The algorithm first performs a coverage peak flattening algorithm to predict an impact to the total coverage area if a radio in a selected AP does not transmit signals in a frequency band. If the impact to the total coverage area is acceptable, the algorithm then performs a multi-point check algorithm to determine whether the radio in the selected AP is redundant in the frequency band. After determining that the radio in the selected AP is redundant in the frequency band, the algorithm transforms the redundant radio into various services based on the network deployment and user preference.Type: GrantFiled: March 31, 2022Date of Patent: October 22, 2024Assignee: Cisco Technology, Inc.Inventors: Vishal S. Desai, Allaukik Abhishek, Pooya Monajemi, Young Il Choi