Patents by Inventor Mario Baldi

Mario Baldi has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Publication number: 20190372906
    Abstract: In one example, a collection network node comprising a plurality of ingress ports obtains, at a first one of the plurality of ingress ports, a first copy of a packet of a packet flow comprising a plurality of packets. The collection network node determines whether the collection network node had previously obtained a copy of any of the plurality of packets of the packet flow. When it is determined that the collection network node had previously obtained a copy, the collection network node determines whether the collection network node had previously obtained a copy at the first one of the plurality of ingress ports or at a different one of the plurality of ingress ports. When it is determined that the collection network node had previously obtained a copy at a different one of the plurality of ingress ports, the collection network node refrains from forwarding the first copy.
    Type: Application
    Filed: August 8, 2018
    Publication date: December 5, 2019
    Inventors: Mario Baldi, Murty Kotha
  • Patent number: 10498618
    Abstract: A method for profiling network traffic. The method includes capturing, from the network traffic using a packet capturing device, a plurality of packets, identifying a first portion of the plurality of packets as a first flow based at least on a common Internet Protocol (IP) address assigned to each packet of the first flow by a network address translation (NAT) device, extracting, by a hardware processor separate from the NAT device and based on an NAT profile of the NAT device, a first data item from the first flow, wherein the first data item is inserted into the first flow by the NAT device for identifying a first host device coupled to the NAT device, and determining, by the hardware processor based on the first data item, that the first flow is generated by the first host device.
    Type: Grant
    Filed: October 29, 2018
    Date of Patent: December 3, 2019
    Assignee: Narus, Inc.
    Inventors: Mario Baldi, Yong Liao, Amedeo Sapio
  • Patent number: 10491529
    Abstract: In an example embodiment, a Software Defined Networking (SDN) application identifies a domain based on a destination address of a packet that is associated with a primary service. The domain corresponds to the primary service, and the primary service is configured to trigger one or more support flows from one or more ancillary services. The SDN application identifies the one or more support flows based on the domain, and generates one or more rules for distribution to one or more network elements that handle packets of the one or more support flows from the one or more ancillary services.
    Type: Grant
    Filed: June 30, 2017
    Date of Patent: November 26, 2019
    Assignee: Cisco Technology, Inc.
    Inventors: Mario Baldi, Han Hee Song, Antonio Nucci, Marco Mellia, Martino Trevisan, Idilio Drago
  • Patent number: 10419351
    Abstract: A method for classifying network traffic in a network. The method includes obtaining, from an application distribution source, an application distribution data set of comprising information associated with distributing an application from the pre-determined application distribution source, extracting, based on a pre-determined extraction criterion, a token from the application distribution data set of the application, obtaining, from the network traffic, a plurality of flows generated by the application, extracting, in response to detecting the token in a flow of the plurality of flows, context information associated with the token in the flow, and generating an identification rule of the application based on the token and the context information, wherein the identification rule describes one or more rule steps to locate the token in the flow, wherein the network traffic is classified using at least the identification rule.
    Type: Grant
    Filed: April 4, 2013
    Date of Patent: September 17, 2019
    Assignee: Narus, Inc.
    Inventors: Mario Baldi, Yong Liao, Stanislav Miskovic, Antonio Nucci
  • Patent number: 10332005
    Abstract: Embodiments of the invention provide a method, system, and computer readable medium for classifying network traffic based on application signatures generated during a training phase. The application signatures are generated based on tokens extracted from a training set that is generated by a particular application during the training phase. Accordingly, a new token extracted in real-time from current network data is compared to the application signatures to determine if the current network data is generated by the particular application.
    Type: Grant
    Filed: September 25, 2012
    Date of Patent: June 25, 2019
    Assignee: Narus, Inc.
    Inventors: Yong Liao, Mario Baldi, Stanislav Miskovic, Antonio Nucci, Qiang Xu
  • Patent number: 10263868
    Abstract: A method for applying a user-specific policy in a network. The method includes identifying a historical portion of network traffic of the network as associated with a user, analyzing, by a computer processor, the historical portion of network traffic to generate a fingerprint of the user, wherein the fingerprint represents characteristics of user activity in the network, identifying, by the computer processor, an ongoing portion of network traffic of the network as associated with the user, analyzing, by the computer processor and based on the fingerprint, the ongoing portion of network traffic to determine a match, wherein the match is determined at a time point within the ongoing portion of network traffic, and applying, in response to determining the match, the user-specific policy to the ongoing portion of network traffic subsequent to the time point.
    Type: Grant
    Filed: July 17, 2014
    Date of Patent: April 16, 2019
    Assignee: Narus, Inc.
    Inventors: Mario Baldi, Yong Liao, Stanislav Miskovic, Antonio Nucci, Han Hee Song
  • Patent number: 10250465
    Abstract: Presented herein are network traffic/flow monitoring techniques for identifying a primary/core domain that is representative of the service being accessed by a series/set of network flows, and grouping networking traffic flows that result from the user's accessing of the core domain. In one example, a plurality of core domains each corresponding to a primary web service configured to be directly accessed by network flows via one or more networks is identified. For each of the plurality of core domains, one or more models of traffic activity resulting from access to the corresponding primary web service by a network flow is generated. Based on the models of traffic activity, real-time network traffic flows are associated to a selected one of the core domains.
    Type: Grant
    Filed: August 26, 2016
    Date of Patent: April 2, 2019
    Assignee: Cisco Technology, Inc.
    Inventors: Mario Baldi, Han Hee Song
  • Patent number: 10237151
    Abstract: A method for profiling network traffic. The method includes capturing, from the network traffic using a packet capturing device, a plurality of packets, identifying a first portion of the plurality of packets as a first flow based at least on a common Internet Protocol (IP) address assigned to each packet of the first flow by a network address translation (NAT) device, extracting, by a hardware processor separate from the NAT device and based on an NAT profile of the NAT device, a first data item from the first flow, wherein the first data item is inserted into the first flow by the NAT device for identifying a first host device coupled to the NAT device, and determining, by the hardware processor based on the first data item, that the first flow is generated by the first host device.
    Type: Grant
    Filed: September 1, 2017
    Date of Patent: March 19, 2019
    Assignee: Narus, Inc.
    Inventors: Mario Baldi, Yong Liao, Amedeo Sapio
  • Publication number: 20190079869
    Abstract: In one embodiment, a device in a network receives one or more data units. The device calculates a hash value based on the one or more data units and using a hash function. Ranges of hash values generated by the hash function are assigned to different devices along the path such that any given hash value generated by the hash function is assigned to a predefined number of the devices along the path. The device determines whether the calculated hash value is within the range of hash values assigned to the device. The device stores data derived from the one or more data units, when the device determines that the calculated hash value is within the range of hash values assigned to to the device.
    Type: Application
    Filed: September 11, 2017
    Publication date: March 14, 2019
    Inventors: Mario Baldi, Amedeo Sapio, Fulvio Giovanni Ottavio Risso, Narendra Anand, Antonio Nucci
  • Publication number: 20190068468
    Abstract: A method for profiling network traffic. The method includes capturing, from the network traffic using a packet capturing device, a plurality of packets, identifying a first portion of the plurality of packets as a first flow based at least on a common Internet Protocol (IP) address assigned to each packet of the first flow by a network address translation (NAT) device, extracting, by a hardware processor separate from the NAT device and based on an NAT profile of the NAT device, a first data item from the first flow, wherein the first data item is inserted into the first flow by the NAT device for identifying a first host device coupled to the NAT device, and determining, by the hardware processor based on the first data item, that the first flow is generated by the first host device.
    Type: Application
    Filed: October 29, 2018
    Publication date: February 28, 2019
    Applicant: Narus, Inc.
    Inventors: Mario Baldi, Yong Liao, Amedeo Sapio
  • Publication number: 20190007327
    Abstract: In an example embodiment, a Software Defined Networking (SDN) application identifies a domain based on a destination address of a packet that is associated with a primary service. The domain corresponds to the primary service, and the primary service is configured to trigger one or more support flows from one or more ancillary services. The SDN application identifies the one or more support flows based on the domain, and generates one or more rules for distribution to one or more network elements that handle packets of the one or more support flows from the one or more ancillary services.
    Type: Application
    Filed: June 30, 2017
    Publication date: January 3, 2019
    Inventors: Mario Baldi, Han Hee Song, Antonio Nucci, Marco Mellia, Martino Trevisan, Idilio Drago
  • Patent number: 10116538
    Abstract: A method for profiling network traffic. The method includes capturing, from the network traffic using a packet capturing device, a plurality of packets, identifying a first portion of the plurality of packets as a first flow based at least on a common Internet Protocol (IP) address assigned to each packet of the first flow by a network address translation (NAT) device, extracting, by a hardware processor separate from the NAT device and based on an NAT profile of the NAT device, a first data item from the first flow, wherein the first data item is inserted into the first flow by the NAT device for identifying a first host device coupled to the NAT device, and determining, by the hardware processor based on the first data item, that the first flow is generated by the first host device.
    Type: Grant
    Filed: September 1, 2017
    Date of Patent: October 30, 2018
    Assignee: Narus, Inc.
    Inventors: Mario Baldi, Yong Liao, Amedeo Sapio
  • Patent number: 10078743
    Abstract: A method for using a user device. The method includes obtaining, during a fingerprint learning phase, a historical portion of user activity data associated with user activity of a user using the user device, analyzing, by a computer processor of the user device, the historical portion to generate a fingerprint of the user, wherein the fingerprint represents characteristics of the user activity, obtaining, during a fingerprint matching phase subsequent to the fingerprint learning phase, an ongoing portion of the user activity data, analyzing, by the computer processor and based on the fingerprint, the ongoing portion to determine a match, wherein the match is determined at a time point within the fingerprint matching phase, and unlocking, by the computer processor and in response to determining the match, a locked data item for access, therein the locked data item is stored on the user device.
    Type: Grant
    Filed: August 13, 2014
    Date of Patent: September 18, 2018
    Assignee: Narus, Inc.
    Inventors: Mario Baldi, Antonio Nucci
  • Patent number: 9917783
    Abstract: A method for profiling network traffic of a network. The method includes capturing packets based at least on a common source IP address shared by each of the packets, where said each packet is assigned a source timestamp by a source of said each packet and further assigned a capture timestamp by a packet capturing device, identifying a first portion of the packets as a first flow and a second portion of the packets as a second flow, extracting a first monotonic timestamp-pair (MTSP) sequence and a second MTSP sequence from the first flow and the second flow, respectively, comparing the first MTSP sequence and the second MTSP sequence to generate a result, and determining, based on the result, whether the first flow and the second flow are generated by a single host of the network.
    Type: Grant
    Filed: January 9, 2017
    Date of Patent: March 13, 2018
    Assignee: Narus, Inc.
    Inventors: Mario Baldi, Yi-Chao Chen, Yong Liao, Lili Qiu, Sung-Ju Lee
  • Publication number: 20180062950
    Abstract: Presented herein are network traffic/flow monitoring techniques for identifying a primary/core domain that is representative of the service being accessed by a series/set of network flows, and grouping networking traffic flows that result from the user's accessing of the core domain. In one example, a plurality of core domains each corresponding to a primary web service configured to be directly accessed by network flows via one or more networks is identified. For each of the plurality of core domains, one or more models of traffic activity resulting from access to the corresponding primary web service by a network flow is generated. Based on the models of traffic activity, real-time network traffic flows are associated to a selected one of the core domains.
    Type: Application
    Filed: August 26, 2016
    Publication date: March 1, 2018
    Inventors: Mario Baldi, Han Hee Song
  • Publication number: 20180013645
    Abstract: A method for profiling network traffic. The method includes capturing, from the network traffic using a packet capturing device, a plurality of packets, identifying a first portion of the plurality of packets as a first flow based at least on a common Internet Protocol (IP) address assigned to each packet of the first flow by a network address translation (NAT) device, extracting, by a hardware processor separate from the NAT device and based on an NAT profile of the NAT device, a first data item from the first flow, wherein the first data item is inserted into the first flow by the NAT device for identifying a first host device coupled to the NAT device, and determining, by the hardware processor based on the first data item, that the first flow is generated by the first host device.
    Type: Application
    Filed: September 1, 2017
    Publication date: January 11, 2018
    Applicant: Narus, Inc.
    Inventors: Mario Baldi, Yong Liao, Amedeo Sapio
  • Publication number: 20180013646
    Abstract: A method for profiling network traffic. The method includes capturing, from the network traffic using a packet capturing device, a plurality of packets, identifying a first portion of the plurality of packets as a first flow based at least on a common Internet Protocol (IP) address assigned to each packet of the first flow by a network address translation (NAT) device, extracting, by a hardware processor separate from the NAT device and based on an NAT profile of the NAT device, a first data item from the first flow, wherein the first data item is inserted into the first flow by the NAT device for identifying a first host device coupled to the NAT device, and determining, by the hardware processor based on the first data item, that the first flow is generated by the first host device.
    Type: Application
    Filed: September 1, 2017
    Publication date: January 11, 2018
    Applicant: Narus, Inc.
    Inventors: Mario Baldi, Yong Liao, Amedeo Sapio
  • Patent number: 9769038
    Abstract: A method for profiling network traffic. The method includes capturing, from the network traffic using a packet capturing device, a plurality of packets, identifying a first portion of the plurality of packets as a first flow based at least on a common Internet Protocol (IP) address assigned to each packet of the first flow by a network address translation (NAT) device, extracting, by a hardware processor separate from the NAT device and based on an NAT profile of the NAT device, a first data item from the first flow, wherein the first data item is inserted into the first flow by the NAT device for identifying a first host device coupled to the NAT device, and determining, by the hardware processor based on the first data item, that the first flow is generated by the first host device.
    Type: Grant
    Filed: June 3, 2014
    Date of Patent: September 19, 2017
    Assignee: Narus, Inc.
    Inventors: Mario Baldi, Yong Liao, Amedeo Sapio
  • Publication number: 20170118129
    Abstract: A method for profiling network traffic of a network. The method includes capturing packets based at least on a common source IP address shared by each of the packets, where said each packet is assigned a source timestamp by a source of said each packet and further assigned a capture timestamp by a packet capturing device, identifying a first portion of the packets as a first flow and a second portion of the packets as a second flow, extracting a first monotonic timestamp-pair (MTSP) sequence and a second MTSP sequence from the first flow and the second flow, respectively, comparing the first MTSP sequence and the second MTSP sequence to generate a result, and determining, based on the result, whether the first flow and the second flow are generated by a single host of the network.
    Type: Application
    Filed: January 9, 2017
    Publication date: April 27, 2017
    Applicant: Narus, Inc.
    Inventors: Mario Baldi, Yi-Chao Chen, Yong Liao, Lili Qiu, Sung-Ju Lee
  • Patent number: 9602331
    Abstract: Providing a shared interface among a plurality of compute units is disclosed. A plurality of compute units is determined and a shared interface for the plurality of compute units is provided, wherein incoming traffic is received by any of the plurality of compute units. Also, the packet is received at the shared interface for a plurality of compute units. The packet is encapsulated using a first header, wherein the first header specifies one of the plurality of compute units, and wherein the one of the plurality of compute units is selected independent of an interface address associated with the shared interface.
    Type: Grant
    Filed: October 31, 2012
    Date of Patent: March 21, 2017
    Assignee: Cisco Technology, Inc.
    Inventors: Marco Di Benedetto, Mario Baldi, Vijay Chander, Alessandro Salvatori