Patents by Inventor Igor Faynberg
Igor Faynberg has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Publication number: 20240089201Abstract: A virtual network system for a computer network is provided. The system includes a first host executing a virtual network function manager. The system also includes a second host executing a management virtual machine. The management virtual machine is in communication with the virtual network function manager and with one or more virtual network function component instantiations. The management virtual machine is programmed to route messages between the one or more virtual network function component instantiations and the virtual network function manager.Type: ApplicationFiled: November 17, 2023Publication date: March 14, 2024Inventors: STEVEN J. GOERINGER, IGOR FAYNBERG, DONALD E.A. CLARKE
-
Patent number: 11855890Abstract: A virtual network system for a computer network is provided. The system includes a first host executing a virtual network function manager. The system also includes a second host executing a management virtual machine. The management virtual machine is in communication with the virtual network function manager and with one or more virtual network function component instantiations. The management virtual machine is programmed to route messages between the one or more virtual network function component instantiations and the virtual network function manager.Type: GrantFiled: January 20, 2023Date of Patent: December 26, 2023Assignee: Cable Television Laboratories, Inc.Inventors: Steven J. Goeringer, Igor Faynberg, Donald E. A. Clarke
-
Patent number: 11831687Abstract: A remote attestation system for a computer network includes an attestation operations subsystem configured to manage attestation procedures for the remote attestation system, and an attestation server pool including a plurality of attestation servers. The plurality of attestation servers is configured to perform attestation of at least one host in a data center. The system further includes an attestation state database configured to store a state of attestation of the at least one host, an attestation policy database configured to store at least one operator policy of the computer network, and an end-user service portal configured to provide access to the remote attestation system by users of the computer network.Type: GrantFiled: October 13, 2022Date of Patent: November 28, 2023Assignee: Cable Television Laboratories, Inc.Inventors: Steven J. Goeringer, Igor Faynberg, Donald E. A. Clarke
-
Patent number: 11822946Abstract: A virtual network system for a computer network is provided. The system includes a first host executing a virtual network function manager. The system also includes a second host executing a management virtual machine. The management virtual machine is in communication with the virtual network function manager and with one or more virtual network function component instantiations. The management virtual machine is programmed to route messages between the one or more virtual network function component instantiations and the virtual network function manager.Type: GrantFiled: June 28, 2019Date of Patent: November 21, 2023Assignee: Cable Television Laboratories, Inc.Inventors: Igor Faynberg, Donald E. A. Clarke, Steven J. Goeringer
-
Patent number: 11726813Abstract: A client access network includes a cluster of servers. The cluster of servers includes a boot node, an administrator node, a computing node, and a storage node. The client access network further includes a plurality of segregated subnetworks. The plurality of segregated subnetworks includes a boot subnetwork, an administration subnetwork, a public subnetwork, and a private subnetwork. The client access network further includes at least one hardware security module, a dedicated subnet in operable communication with the at least one hardware security module and each of the plurality of segregated subnetworks, and a router in operable communication with the at least one hardware security module and each of the cluster of servers. The router is further configured to route traffic among the plurality of segregated subnetworks and the dedicated subnet.Type: GrantFiled: August 1, 2018Date of Patent: August 15, 2023Assignee: Cable Television Laboratories, Inc.Inventors: Steven J. Goeringer, Igor Faynberg, Massimiliano Pala
-
Publication number: 20230155935Abstract: A virtual network system for a computer network is provided. The system includes a first host executing a virtual network function manager. The system also includes a second host executing a management virtual machine. The management virtual machine is in communication with the virtual network function manager and with one or more virtual network function component instantiations. The management virtual machine is programmed to route messages between the one or more virtual network function component instantiations and the virtual network function manager.Type: ApplicationFiled: January 20, 2023Publication date: May 18, 2023Inventors: STEVEN J. GOERINGER, IGOR FAYNBERG, DONALD E.A. CLARKE
-
Publication number: 20230080894Abstract: A system for monitoring the security of a connected Internet of Things (IoT) device is provided. The system includes a network doppelganger (ND) computer device. The ND computer device is in communication with the IoT device and a service provider computer device associated with the IoT device. The ND computer device is programmed to store a plurality of policies associated with the service provider computer device. The ND computer device is also programmed to receive a communication from the IoT device addressed to the service provider computer device. The ND computer device is further programmed to analyze the communication in view of the plurality of policies to determine whether the communication is approved. If the communication is approved, the ND computer device is programmed to route the communication to the service provider computer device.Type: ApplicationFiled: October 26, 2022Publication date: March 16, 2023Inventors: Igor Faynberg, Darshak Thakore, Donald E. A. Clarke, Steven J. Goeringer
-
Publication number: 20230036553Abstract: A remote attestation system for a computer network includes an attestation operations subsystem configured to manage attestation procedures for the remote attestation system, and an attestation server pool including a plurality of attestation servers. The plurality of attestation servers is configured to perform attestation of at least one host in a data center. The system further includes an attestation state database configured to store a state of attestation of the at least one host, an attestation policy database configured to store at least one operator policy of the computer network, and an end-user service portal configured to provide access to the remote attestation system by users of the computer network.Type: ApplicationFiled: October 13, 2022Publication date: February 2, 2023Inventors: Steven J. Goeringer, Igor Faynberg, Donald E.A. Clarke
-
Patent number: 11563677Abstract: A virtual network system for a computer network is provided. The system includes a first host executing a virtual network function manager. The system also includes a second host executing a management virtual machine. The management virtual machine is in communication with the virtual network function manager and with one or more virtual network function component instantiations. The management virtual machine is programmed to route messages between the one or more virtual network function component instantiations and the virtual network function manager.Type: GrantFiled: January 29, 2021Date of Patent: January 24, 2023Assignee: Cable Television Laboratories, Inc.Inventors: Steven J. Goeringer, Igor Faynberg, Donald E. A. Clarke
-
Patent number: 11556364Abstract: Methods, systems, and devices for enabling public key infrastructure (PKI) in the generic could environment and the network function virtualization (NFV) environment. A host device may receive, from an orchestrator of a computer network environment, an indication of a workload to be executed by a virtual machine (VM) hosted on the host device, where the indication includes an identifier of the workload. The VM may transmit a request for a certificate to a hardware security module associated with the host device including the identifier of the workload. After transmitting the request for the certificate, the VM may receive the requested certificate from the HSM. In some cases, the VM may determine a private key associated with the workload and include the private key within the request for the certificate. Additionally or alternatively, the HSM may determine the private key. Here, the HSM may include the private key within the certificate.Type: GrantFiled: September 19, 2019Date of Patent: January 17, 2023Assignee: Cable Television Laboratories, Inc.Inventors: Igor Faynberg, Steven J. Goeringer
-
Patent number: 11553398Abstract: A system for monitoring the communication with a connected Internet of Things (IoT) device is provided. The system includes a first computing device including a least one processor in communication with at least one memory device. The at least one memory device stores a plurality of instructions, which when executed by the at least one processor cause the at least one processor to execute an IoT device communication application. The IoT device communication application monitors the IoT device. The instructions also cause the at least one processor to store IoT device data including a current location of the IoT device, determine an optimal communication path between the IoT device communication application and the IoT device based on the IoT device data, and transfer execution of the IoT device communication application to a second computing device based on the optimal communication path.Type: GrantFiled: March 14, 2019Date of Patent: January 10, 2023Assignee: Cable Television Laboratories, Inc.Inventors: Igor Faynberg, Darshak Thakore, Donald E. A. Clarke, Steven J. Goeringer
-
Patent number: 11516252Abstract: A system for monitoring the security of a connected Internet of Things (IoT) device is provided. The system includes a network doppelgänger (ND) computer device. The ND computer device is in communication with the IoT device and a service provider computer device associated with the IoT device. The ND computer device is programmed to store a plurality of policies associated with the service provider computer device. The ND computer device is also programmed to receive a communication from the IoT device addressed to the service provider computer device. The ND computer device is further programmed to analyze the communication in view of the plurality of policies to determine whether the communication is approved. If the communication is approved, the ND computer device is programmed to route the communication to the service provider computer device.Type: GrantFiled: October 31, 2018Date of Patent: November 29, 2022Assignee: Cable Television Laboratories, Inc.Inventors: Igor Faynberg, Darshak Thakore, Donald E. A. Clarke, Steven J. Goeringer
-
Patent number: 11477247Abstract: A remote attestation system for a computer network includes an attestation operations subsystem configured to manage attestation procedures for the remote attestation system, and an attestation server pool including a plurality of attestation servers. The plurality of attestation servers is configured to perform attestation of at least one host in a data center. The system further includes an attestation state database configured to store a state of attestation of the at least one host, an attestation policy database configured to store at least one operator policy of the computer network, and an end-user service portal configured to provide access to the remote attestation system by users of the computer network.Type: GrantFiled: February 5, 2021Date of Patent: October 18, 2022Assignee: Cable Television Laboratories, Inc.Inventors: Steven J. Goeringer, Igor Faynberg, Donald E. A. Clarke
-
Patent number: 11095616Abstract: Improved virtualized application performance is provided through disabling of unnecessary functions, such as unnecessary encryption and decryption operations. An example method performed by a hypervisor includes the steps of obtaining a request from a first virtual machine to perform one or more of encrypting and decrypting of a communication between the first virtual machine and a second virtual machine; determining when the first and second virtual machines execute on a same host as the hypervisor; and in response to the first and second virtual machines executing on the same host: processing the communication without performing the one or more of encrypting and decrypting of the communication, wherein the hypervisor initiates an encryption of further communications between the first virtual machine and the second virtual machine in response to at least one of the first virtual machine and the second virtual machine being moved from the same host.Type: GrantFiled: March 31, 2020Date of Patent: August 17, 2021Assignee: Alcatel LucentInventors: Igor Faynberg, Hui-Lan Lu
-
Publication number: 20210185090Abstract: A remote attestation system for a computer network includes an attestation operations subsystem configured to manage attestation procedures for the remote attestation system, and an attestation server pool including a plurality of attestation servers. The plurality of attestation servers is configured to perform attestation of at least one host in a data center. The system further includes an attestation state database configured to store a state of attestation of the at least one host, an attestation policy database configured to store at least one operator policy of the computer network, and an end-user service portal configured to provide access to the remote attestation system by users of the computer network.Type: ApplicationFiled: February 5, 2021Publication date: June 17, 2021Inventors: STEVEN J. GOERINGER, IGOR FAYNBERG, DONALD E.A. CLARKE
-
Patent number: 10951657Abstract: A remote attestation system for a computer network includes an attestation operations subsystem configured to manage attestation procedures for the remote attestation system, and an attestation server pool including a plurality of attestation servers. The plurality of attestation servers is configured to perform attestation of at least one host in a data center. The system further includes an attestation state database configured to store a state of attestation of the at least one host, an attestation policy database configured to store at least one operator policy of the computer network, and an end-user service portal configured to provide access to the remote attestation system by users of the computer network.Type: GrantFiled: January 25, 2018Date of Patent: March 16, 2021Assignee: Cable Television Laboratories, Inc.Inventors: Igor Faynberg, Donald Clarke, Steven John Goeringer
-
Publication number: 20200287873Abstract: Improved virtualized application performance is provided through disabling of unnecessary functions, such as unnecessary encryption and decryption operations. An example method performed by a hypervisor includes the steps of obtaining a request from a first virtual machine to perform one or more of encrypting and decrypting of a communication between the first virtual machine and a second virtual machine; determining when the first and second virtual machines execute on a same host as the hypervisor; and in response to the first and second virtual machines executing on the same host: processing the communication without performing the one or more of encrypting and decrypting of the communication, wherein the hypervisor initiates an encryption of further communications between the first virtual machine and the second virtual machine in response to at least one of the first virtual machine and the second virtual machine being moved from the same host.Type: ApplicationFiled: March 31, 2020Publication date: September 10, 2020Inventors: Igor Faynberg, Hui-Lan Lu
-
Patent number: 10645064Abstract: Improved virtualized application performance is provided through disabling of unnecessary functions, such as unnecessary encryption and decryption operations. An example method performed by a hypervisor includes the steps of obtaining a request to one or more of encrypt and decrypt a communication between a first virtual machine and a second virtual machine; determining if the first and second virtual machines execute on a same host as the hypervisor (e.g., by evaluating a context of the communication); and processing the communication without encrypting or decrypting the communication if the first and second virtual machines execute on the same host. Lawful Interception is performed by forwarding an unencrypted version of the communication to an authorized agency.Type: GrantFiled: April 23, 2015Date of Patent: May 5, 2020Assignee: Alcatel LucentInventors: Igor Faynberg, Hui-Lan Lu
-
Publication number: 20200097315Abstract: Methods, systems, and devices for enabling public key infrastructure (PKI) in the generic could environment and the network function virtualization (NFV) environment. A host device may receive, from an orchestrator of a computer network environment, an indication of a workload to be executed by a virtual machine (VM) hosted on the host device, where the indication includes an identifier of the workload. The VM may transmit a request for a certificate to a hardware security module associated with the host device including the identifier of the workload. After transmitting the request for the certificate, the VM may receive the requested certificate from the HSM. In some cases, the VM may determine a private key associated with the workload and include the private key within the request for the certificate. Additionally or alternatively, the HSM may determine the private key. Here, the HSM may include the private key within the certificate.Type: ApplicationFiled: September 19, 2019Publication date: March 26, 2020Inventors: IGOR FAYNBERG, STEVEN J. GOERINGER
-
Publication number: 20200004572Abstract: A virtual network system for a computer network is provided. The system includes a first host executing a virtual network function manager. The system also includes a second host executing a management virtual machine. The management virtual machine is in communication with the virtual network function manager and with one or more virtual network function component instantiations. The management virtual machine is programmed to route messages between the one or more virtual network function component instantiations and the virtual network function manager.Type: ApplicationFiled: June 28, 2019Publication date: January 2, 2020Inventors: Igor Faynberg, Donald E. A. Clarke, Steven J. Goeringer