Patents by Inventor Sarah Adelaide Evans
Sarah Adelaide Evans has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11870755Abstract: Systems and methods provide for provisioning a dynamic intent-based firewall. A network controller can generate a master route table for network segments reachable from edge network devices managed by the controller. The controller can receive zone definition information mapping the network segments into zones and Zone-based Firewall (ZFW) policies to apply to traffic between a source and destination zone specified by each ZFW policy. The controller can evaluate a ZFW policy to determine first edge network devices that can reach first network segments mapped to the source zone specified by the ZFW policy, second edge network devices that can reach second network segments mapped to the destination zone specified by the ZFW policy, and routing information (from the route table) between the first network segments, the first and second edge network devices, and the second network segments. The controller can transmit the routing information to the edge network devices.Type: GrantFiled: October 26, 2021Date of Patent: January 9, 2024Assignee: Cisco Technology, Inc.Inventors: Vamsidhar Valluri, Saravanan Radhakrishnan, Anand Oswal, Vinay Prabhu, Sarah Adelaide Evans, Suraj Rangaswamy
-
Patent number: 11716250Abstract: Systems, methods, and computer-readable media for scaling a source network. A system may be configured to receive a network configuration for a source network, wherein the source network comprising a plurality of nodes, receive and a scale target for a scaled network, and identify, based on the scale target, one or more selected nodes in the plurality of nodes in the source network for implementing in the scaled network. The system may further be configured to reconfigure data plane parameters and control plane parameters for each node in the one or more selected nodes.Type: GrantFiled: January 20, 2022Date of Patent: August 1, 2023Assignee: Cisco Technology, Inc.Inventors: Jigar Dinesh Parekh, Vinay Prabhu, Sarah Adelaide Evans, Suraj Rangaswamy
-
Publication number: 20220377089Abstract: Systems and methods provide for synergistic domain name system DNS security updates for an enterprise network operating under a Software Defined Wide Area Network (SD-WAN). A system may be configured to collect positive and/or negative unified threat defense (UTD) results, deploy a rules-based model that, when a threat or clearance is detected across several SD-WAN edge network devices, triggers an update to a local security blacklist/whitelist, wherein the update comprises a signature, and push the update to other devices that have not yet seen the threat or clearance.Type: ApplicationFiled: August 5, 2022Publication date: November 24, 2022Inventors: Vamsidhar Valluri, Vinay Prabhu, Sarah Adelaide Evans, Suraj Rangaswamy
-
Patent number: 11411967Abstract: Systems and methods provide for synergistic domain name system DNS security updates for an enterprise network operating under a Software Defined Wide Area Network (SD-WAN). A system may be configured to collect positive and/or negative unified threat defense (UTD) results, deploy a rules-based model that, when a threat or clearance is detected across several SD-WAN edge network devices, triggers an update to a local security blacklist/whitelist, wherein the update comprises a signature, and push the update to other devices that have not yet seen the threat or clearance.Type: GrantFiled: September 11, 2019Date of Patent: August 9, 2022Assignee: CISCO TECHNOLOGY, INC.Inventors: Vamsidhar Valluri, Vinay Prabhu, Sarah Adelaide Evans, Suraj Rangaswamy
-
Publication number: 20220150119Abstract: Systems, methods, and computer-readable media for scaling a source network. A system may be configured to receive a network configuration for a source network, wherein the source network comprising a plurality of nodes, receive and a scale target for a scaled network, and identify, based on the scale target, one or more selected nodes in the plurality of nodes in the source network for implementing in the scaled network. The system may further be configured to reconfigure data plane parameters and control plane parameters for each node in the one or more selected nodes.Type: ApplicationFiled: January 20, 2022Publication date: May 12, 2022Inventors: Jigar Dinesh Parekh, Vinay Prabhu, Sarah Adelaide Evans, Suraj Rangaswamy
-
Publication number: 20220052984Abstract: Systems and methods provide for provisioning a dynamic intent-based firewall. A network controller can generate a master route table for network segments reachable from edge network devices managed by the controller. The controller can receive zone definition information mapping the network segments into zones and Zone-based Firewall (ZFW) policies to apply to traffic between a source and destination zone specified by each ZFW policy. The controller can evaluate a ZFW policy to determine first edge network devices that can reach first network segments mapped to the source zone specified by the ZFW policy, second edge network devices that can reach second network segments mapped to the destination zone specified by the ZFW policy, and routing information (from the route table) between the first network segments, the first and second edge network devices, and the second network segments. The controller can transmit the routing information to the edge network devices.Type: ApplicationFiled: October 26, 2021Publication date: February 17, 2022Inventors: Vamsidhar Valluri, Saravanan Radhakrishnan, Anand Oswal, Vinay Prabhu, Sarah Adelaide Evans, Suraj Rangaswamy
-
Patent number: 11252030Abstract: Systems, methods, and computer-readable media for scaling a source network. A system may be configured to receive a network configuration for a source network, wherein the source network comprising a plurality of nodes, receive and a scale target for a scaled network, and identify, based on the scale target, one or more selected nodes in the plurality of nodes in the source network for implementing in the scaled network. The system may further be configured to reconfigure data plane parameters and control plane parameters for each node in the one or more selected nodes.Type: GrantFiled: October 2, 2019Date of Patent: February 15, 2022Assignee: CISCO TECHNOLOGY, INC.Inventors: Jigar Dinesh Parekh, Vinay Prabhu, Sarah Adelaide Evans, Suraj Rangaswamy
-
Patent number: 11228500Abstract: Systems, methods, and computer-readable media for designing network performance and configuration include determining one or more use cases for a network to be provisioned, based on at least one or more business verticals related to a customer of the network. A data plane scale is determined from the use cases and an initial data plane scale generated using a linear regression on one or more data plane parameters. The data plane parameters include a platform type, feature set, packet size, or software version of the network. A control plane scale is determined from the use cases and an initial control plane scale generated using a linear regression on one or more control plane parameters of the network. The control plane parameters include a platform type, feature set, or software version of the network. The network is provisioned for the data plane scale and the control plane scale.Type: GrantFiled: May 29, 2019Date of Patent: January 18, 2022Assignee: CISCO TECHNOLOGY, INC.Inventors: Vinay Prabhu, Sarah Adelaide Evans, Jigar Dinesh Parekh, Suraj Rangaswamy, Parth Sanjiv Doshi, Pranav Narasimmaraj, Ashish Shendure
-
Patent number: 11201854Abstract: Systems and methods provide for provisioning a dynamic intent-based firewall. A network controller can generate a master route table for network segments reachable from edge network devices managed by the controller. The controller can receive zone definition information mapping the network segments into zones and Zone-based Firewall (ZFW) policies to apply to traffic between a source and destination zone specified by each ZFW policy. The controller can evaluate a ZFW policy to determine first edge network devices that can reach first network segments mapped to the source zone specified by the ZFW policy, second edge network devices that can reach second network segments mapped to the destination zone specified by the ZFW policy, and routing information (from the route table) between the first network segments, the first and second edge network devices, and the second network segments. The controller can transmit the routing information to the edge network devices.Type: GrantFiled: June 6, 2019Date of Patent: December 14, 2021Assignee: CISCO TECHNOLOGY, INC.Inventors: Vamsidhar Valluri, Saravanan Radhakrishnan, Anand Oswal, Vinay Prabhu, Sarah Adelaide Evans, Suraj Rangaswamy
-
Publication number: 20210105185Abstract: Systems, methods, and computer-readable media for scaling a source network. A system may be configured to receive a network configuration for a source network, wherein the source network comprising a plurality of nodes, receive and a scale target for a scaled network, and identify, based on the scale target, one or more selected nodes in the plurality of nodes in the source network for implementing in the scaled network. The system may further be configured to reconfigure data plane parameters and control plane parameters for each node in the one or more selected nodes.Type: ApplicationFiled: October 2, 2019Publication date: April 8, 2021Inventors: Jigar Dinesh Parekh, Vinay Prabhu, Sarah Adelaide Evans, Suraj Rangaswamy
-
Publication number: 20210037091Abstract: The present disclosure is directed to a peer node discovery process whereby a network management node can discover peers of inaccessible nodes that have lost connectivity to the network management node over the control plane and receive health report of the inaccessible nodes via the discovered peers. In one example, a method includes detecting a loss of connectivity to a network node; based on a type of the network node, performing one of a first process or a second process to obtain a health report of the network node, the first process and the second process including identification of at least one corresponding peer node from which the health report of the network node is to be received; and analyzing the health report to determine root cause of the loss of connectivity.Type: ApplicationFiled: July 30, 2019Publication date: February 4, 2021Inventors: Vinay Prabhu, Sarah Adelaide Evans, Jigar Dinesh Parekh, Suraj Rangaswamy
-
Publication number: 20200382381Abstract: Systems, methods, and computer-readable media for designing network performance and configuration include determining one or more use cases for a network to be provisioned, based on at least one or more business verticals related to a customer of the network. A data plane scale is determined from the use cases and an initial data plane scale generated using a linear regression on one or more data plane parameters. The data plane parameters include a platform type, feature set, packet size, or software version of the network. A control plane scale is determined from the use cases and an initial control plane scale generated using a linear regression on one or more control plane parameters of the network. The control plane parameters include a platform type, feature set, or software version of the network. The network is provisioned for the data plane scale and the control plane scale.Type: ApplicationFiled: May 29, 2019Publication date: December 3, 2020Inventors: Vinay Prabhu, Sarah Adelaide Evans, Jigar Dinesh Parekh, Suraj Rangaswamy, Parth Sanjiv Doshi, Pranav Narasimmaraj, Ashish Shendure
-
Patent number: 10721165Abstract: A method may include receiving monitor data via the control plane from at least one device of a set of devices in the SDN. The method may further include generating a data model based on a set of SDN parameters and the monitor data. The method may also include determining a change for at least one device of the set of devices in the SDN based on the data model. The method may include generating a policy, based on the change for at least one device of the set of devices in the SDN. The method may further include sending the policy via the control plane to the set of devices in the SDN.Type: GrantFiled: June 30, 2018Date of Patent: July 21, 2020Assignee: CISCO TECHNOLOGY, INC.Inventors: Sarah Adelaide Evans, Vinay Prabhu, Sandeep Bajaj
-
Publication number: 20200177606Abstract: Systems and methods provide for synergistic domain name system DNS security updates for an enterprise network operating under a Software Defined Wide Area Network (SD-WAN). A system may be configured to collect positive and/or negative unified threat defense (UTD) results, deploy a rules-based model that, when a threat or clearance is detected across several SD-WAN edge network devices, triggers an update to a local security blacklist/whitelist, wherein the update comprises a signature, and push the update to other devices that have not yet seen the threat or clearance.Type: ApplicationFiled: September 11, 2019Publication date: June 4, 2020Inventors: Vamsidhar Valluri, Vinay Prabhu, Sarah Adelaide Evans, Suraj Rangaswamy
-
Publication number: 20200177550Abstract: Systems and methods provide for provisioning a dynamic intent-based firewall. A network controller can generate a master route table for network segments reachable from edge network devices managed by the controller. The controller can receive zone definition information mapping the network segments into zones and Zone-based Firewall (ZFW) policies to apply to traffic between a source and destination zone specified by each ZFW policy. The controller can evaluate a ZFW policy to determine first edge network devices that can reach first network segments mapped to the source zone specified by the ZFW policy, second edge network devices that can reach second network segments mapped to the destination zone specified by the ZFW policy, and routing information (from the route table) between the first network segments, the first and second edge network devices, and the second network segments. The controller can transmit the routing information to the edge network devices.Type: ApplicationFiled: June 6, 2019Publication date: June 4, 2020Inventors: Vamsidhar Valluri, Saravanan Radhakrishnan, Anand Oswal, Vinay Prabhu, Sarah Adelaide Evans, Suraj Rangaswamy
-
Publication number: 20190036816Abstract: A method may include receiving monitor data via the control plane from at least one device of a set of devices in the SDN. The method may further include generating a data model based on a set of SDN parameters and the monitor data. The method may also include determining a change for at least one device of the set of devices in the SDN based on the data model. The method may include generating a policy, based on the change for at least one device of the set of devices in the SDN. The method may further include sending the policy via the control plane to the set of devices in the SDN.Type: ApplicationFiled: June 30, 2018Publication date: January 31, 2019Inventors: Sarah Adelaide Evans, Vinay Prabhu, Sandeep Bajaj
-
Publication number: 20190036780Abstract: A method may include generating a set of instructions for a set of devices in a software-defined network (SDN) to monitor a set of characteristics. The method may further include sending the set of instructions to the set of devices in the SDN via a control plane. The method may also include receiving monitor data via the control plane from at least one device of the set of devices in the SDN. The method may include receiving an input signal to generate a data model in view of a set of input parameters. The method may further include generating the data model based on the set of input parameters and the monitor data. The method may include causing an action pertaining to the SDN in view of the data model.Type: ApplicationFiled: June 26, 2018Publication date: January 31, 2019Inventors: Sarah Adelaide Evans, Vinay Prabhu, Sandeep Bajaj