Abstract: Modifications to frame/subframe structure are presented herein so that a wireless device can transmit its data within a fraction of a subframe. The device obtains data to be transmitted in an unlicensed spectrum and determines whether an entire subframe is required to completely communicate the data. If the data is small enough to not require the entire subframe, then the device generates a burst transmission to minimize the time period of the subframe used to communicate the data. The device transmits the burst transmission and a parameter indicating the duration of the burst transmission.

Abstract: Methods and systems are disclosed which may consolidate a flash management entity using IO virtualization. The consolidation may occur in a centralized location. Furthermore, a boot strap may be created to allow booting of the micro server from a virtualized firmware management entity.

Abstract: Devices and methods for policing traffic flows in a network are described herein. For example, a network device can include a processing unit and a memory operably coupled to the processing unit. The network device can be configured to provide an input port and an output port, the input and output ports being configured to process a traffic flow received at the network device. The network device can also be configured to queue the traffic flow using a plurality of buffers associated with the output port, cyclically direct the traffic flow from the input port to each of the plurality of buffers according to a queuing schedule, and enforce a policer policy synchronized to the queuing schedule. The policer policy can ensure that the traffic flow does not exceed a predetermined bandwidth.

Abstract: In one embodiment, a method includes creating a set of network related indicators of compromise at a computing device, the set associated with a malicious network operation, identifying at the computing device, samples comprising at least one of the indicators of compromise in the set, creating sub-clusters of the samples at the computing device, and selecting at the computing device, one of the samples from the sub-clusters for additional analysis, wherein results of the analysis provide information for use in malware detection. An apparatus and logic are also disclosed herein.

Abstract: Techniques are provided for enabling tag networking. In one example, a network device (e.g., switch, router, etc.) is configured to receive a packet of a traffic flow and to analyze the traffic flow to determine the packet belongs to a particular type of traffic. The network device can then add and/or change a tag in a data field of the packet. The tag, among other things, serves as an identifier for the particular type of traffic flow. The tag is identifiable by a downstream node that is preconfigured to recognize the tag and to carry out logic in response to recognizing the tag. Advantageously, the tag functionality of the present approach provides a generalized way of adding information to packets; the information and the associated functionalities are customizable during a runtime of the network.

Abstract: Embodiments are provided for providing optimal route reflector (ORR) root address assignment to route reflector clients and fast failover capabilities in an autonomous system, including identifying a first node in an autonomous system as a candidate root node of a first routing group, identifying a client node based on a neighbor address used in a first routing protocol, mapping the neighbor address to routing information received from the client node via a second routing protocol, and associating the neighbor address with the first routing group if the routing information includes an identifier of the first routing group. In more specific embodiments, identifying the first node as a candidate root node includes determining the first node and the first routing group are advertised in a first protocol packet, and determining the first node and the second routing group are advertised in a second protocol packet.

Abstract: In one embodiment a system, method, and related apparatus are described for a router which receives notice of a route including a hijacked prefix having a hijacked prefix netmask length, searches a set of routes with equal or shorter netmask lengths that cover the hijacked prefix in order to find at least one route which has no autonomous system (AS) in common with the particular route comprising the hijacked prefix, if a specific route is found with a netmask length equal to or shorter than the hijacked prefix netmask length, then the specific route which has been found is a determined alternative route, extracts the particular route comprising the hijacked prefix from the specific route if said specific route has a netmask length covering a larger address range than the hijacked prefix netmask length, inserts the determined alternative route in a routing table, and modifies attributes of the determined alternative route in the routing table according to the determined alternative route.

Abstract: A first service node receives a message configured to set up a secure communication session between a client and a server, in which the first service node acts as a proxy. Data packets in the secure communication session are subject to multiple service functions that require decryption of the data packets. A service function chain assigns a service node to each of the service functions. A service header is generated including metadata instructing the service nodes other than the first service node not to act as proxies in the secure communication session. The message and the service header are transmitted to a second service node in the service function chain.

Abstract: An example method is provided in one example embodiment and can include obtaining, within a radio access network, a channel state for a data channel associated with a mobile terminal; including the channel state in a differentiated services (diffserv) marking within an Internet Protocol (IP) header of at least one IP packet associated with the mobile terminal; and transmitting the at least one IP packet including the IP header having the diffserv marking toward a packet data network.

Abstract: Embodiments are directed to a virtual mobility anchor network element to receive, from a packet gateway (PGW) node, a request for an internet protocol (IP) address for a mobile device, establish an IP address for the mobile device; and provide the IP address to the PGW node in response to the request for the IP address for the mobile device. The virtual mobility anchor network element is configured to receive IP traffic from a network location; determine a target destination for the IP traffic based on a destination IP address, the destination IP address comprising the second IP address; and forward the IP traffic to the PGW node associated with the destination IP address. The virtual mobility anchor network element is also configured to receive IP traffic from the PGW node; determine a target destination for the IP traffic; and route the IP traffic to the target destination.

Abstract: In one embodiment, a first device in a network identifies a first traffic flow between two endpoints that traverses the first device in a first direction. The first device receives information from a second device in the network regarding a second traffic flow between the two endpoints that traverses the second device in a second direction that is opposite that of the first direction. The first device merges characteristics of the first traffic flow captured by the first device with characteristics of the second traffic flow captured by the second device and included in the information received from the second device, to form an input feature set. The first device detects an anomaly in the network by analyzing the input feature set using a machine learning-based anomaly detector.

Abstract: A determination is made at a network connected device that a network policy is to be verified. The network policy is applied to network packets sent to an endpoint within a network, and the application of the policy to network traffic can result in at least two outcomes. Another determination is made at the network connected device that a switch is provisionable to host the endpoint. The network connected device provisions a simulated endpoint version of the endpoint at the switch to host the policy. At least one packet is sent to the simulated endpoint via the network connected device for each of the at least two outcomes of the policy. At least one response is received by the network connected device from the simulated endpoint indicating how the policy was applied to each of the packets.

Abstract: In one embodiment, a conference bridge receives a call initiated by a first caller endpoint. The conference bridge identifies a conference to which the call requests entry and determines whether the conference bridge has available resources to process the call. The conference bridge enables the call to join the conference via a second conference bridge associated with a second caller endpoint participating in the conference according to whether the conference bridge has available resources to process the call.

Abstract: The present disclosure relates to providing shared resources to virtual devices on a network switch. In one example, a switch comprises a plurality of virtual device contexts (VDCs) and a default virtual device context (DVDC). The DVDC stores configuration data that identifies a network resource. The DVDC transmits a reference to the configuration data to each of the plurality of VDCs. Each of plurality of VDCs receives the reference from the DVDC. When the DVDC receive, from the at least one of the plurality of VDCs, a request to access the configuration data via the reference, the DVDC transmits at least a portion of the configuration data to the at least one of the plurality of VDCs. The at least the portion of the configuration data is operable to initiate a connection between the at least one of the plurality of VDCs and the network resource.

Abstract: One embodiment provides a system for facilitating efficient communication of a collection of interests. During operation, the system receives, by an intermediate node, a first packet which has a name and a first nonce, wherein the first packet indicates a set of member interests, wherein a member interest has a name. In response to not obtaining a matching entry in a pending interest table based on the name for the first packet, the system creates a new entry in the pending interest table, wherein an entry includes a second nonce, a reference count, and a set of arrival nonces and corresponding arrival interfaces. The system sets the new entry's second nonce to a new nonce, and sets the new entry's reference count to a number of member interests indicated in the first packet. The system forwards the first packet, wherein the first nonce is replaced with the new nonce.

Abstract: A method for setting up standby links on a link failure may be provided. The method comprises for a set of N link ports and M standby link ports, where N and M are integers and N is not equal to M, performing the following functions. Determining the status of a link from a first link port of the N ports. After the link from the first link port has failed, determining when a standby link port from the M standby link ports has been assigned to the first link port of the N ports. After the standby link port has been assigned, determining the health of the standby link port. After the standby link port has been assigned and is healthy, redirecting traffic from the first link port to the standby link port.

Abstract: An application which utilizes a single thread is monitored and context for the individual requests and business transactions operating on that platform are provided. A wrapper is placed is around an object that calls a request. The wrapper renames a request object. Request objects are renamed with a unique name when they are called. When a call stack is sampled, the sampler will retrieve the unique name. Performance data associated with the unique name may be correlated to a business transaction and particular request as metrics are subsequently analyzed. For subsequent reporting, such as call graph reporting, the report or call graph will have requests in the context of a particular business transaction and a particular request instance. This provides more context in reporting of an business application request for frameworks that utilize as single request for multiple threads.

Abstract: One embodiment provides a system in a first node that facilitates efficient packet forwarding. During operation, the system identifies a type, length, and value (TLV) string in a packet and, in response, generates a compressed representation of the TLV string. The system stores the compressed representation for the TLV string in an entry of a learned dictionary in a storage device of the first node. The system then sends the entry to a second node and, in response, receives an acknowledgement from the second node. If the system identifies the TLV string in a subsequent second packet of the acknowledgement, the system compresses the TLV string in the second packet based on the compressed representation.

Abstract: In one embodiment a method includes adjusting a handoff threshold for a cell associated with a mobile communication cell controller, where the handoff threshold indicates a threshold according to which mobile communication devices using a primary radio access technology (RAT) in the cell are handed off by the cell controller to a secondary cell controller using a secondary RAT, monitoring at least one performance indicator associated with communication performance in the cell, if the performance indicator is below a lower performance threshold, reversing the adjusting, otherwise, if the performance indicator is below an upper performance threshold, performing corrective action for targeted mobile communication devices whose associated performance is between the upper and lower performance thresholds as per the monitoring, the corrective action including increasing power for connections associated with the targeted mobile communication devices, and handing off to the secondary RAT controller devices whose perf

Abstract: In one embodiment, a Domain Name Service (DNS) server pre-fetches domain information regarding a domain that includes certificate information for the domain. The DNS server receives a DNS request that includes a security request for the domain in metadata of a Network Service Header (NSH) of the DNS request. The DNS server retrieves the certificate information for the domain from the pre-fetched information regarding the domain, in response to receiving the security request. The DNS server sends, to a Transport Layer Security (TLS) proxy, a DNS response for the domain that includes the certificate information in metadata of an NSH of the DNS response.