Automatic encryption for cloud-native workloads
Granted: January 7, 2025
Patent Number:
12192186
Techniques for routing service mesh traffic based on whether the traffic is encrypted or unencrypted are described herein. The techniques may include receiving, from a first node of a cloud-based network, traffic that is to be sent to a second node of the cloud-based network and determining whether the traffic is encrypted or unencrypted. If it is determined that the traffic is encrypted, the traffic may be sent to the second node via a service mesh of the cloud-based platform.…
Internet access indication in private LTE networks and neutral host networks
Granted: January 7, 2025
Patent Number:
12193109
A Radio Access Network (RAN) element provides an internet indication to a User Equipment (UE) to enable the UE to quickly obtain internet access. The RAN element determines that the RAN element is connected to at least one gateway that provides public internet access, and broadcasts an internet indication. The RAN element determines that the UE has requested public internet access via the RAN element and provides the UE with public internet access.
Network slice support of respective transport protocols
Granted: January 7, 2025
Patent Number:
12193078
Techniques are described herein for network slice support of respective transport protocols. In one example, a session management function obtains, from a user equipment, a request for a network slice identifier in a network that includes a plurality of network slices each configured to support a respective transport protocol. In response to the request, the session management function identifies a first transport protocol of the respective transport protocols by which the user equipment…
Wireless dynamic file exchange
Granted: January 7, 2025
Patent Number:
12192889
Wireless dynamic file exchange is provided by, in response to a triggering network condition occurring, initiating an exchange of a parameter file including non-layer two content via a 802.11 message, such as a Generic Advertisement Service (GAS) message between an access point (AP) and a station (STA) connected to the AP; and in response to determining that the exchange was unsuccessful, terminating a connection between the AP and the STA. The parameter file may be sent over several…
Identifying rogue wireless devices using MAC address rotation techniques
Granted: January 7, 2025
Patent Number:
12192770
A method is provided that is performed in a wireless network to detect a rogue wireless device. The method comprises detecting a suspect wireless device in the wireless network based on messages transmitted by the suspect wireless device using a first Media Access Control (MAC) address that is also used by a valid wireless device in the wireless network. When a suspect wireless device is detected, the method next includes sending to the valid wireless device in the wireless network a…
Systems and methods for providing dynamic quantum cloud security through entangled particle distribution
Granted: January 7, 2025
Patent Number:
12192344
Disclosed is a method of establishing secure communications between nodes in a cloud environment. The method includes receiving a log-in of a first user, receiving a log-in of a second user and presenting to the first user one or more options to use a secure inter-user communication security service leveraging quantum teleportation in order to communication with the second user, wherein the secure inter-user communication security service optionally uses a quantum EPR processor (QEP).…
Method to eliminate clock synchronization from undesired clock sources
Granted: January 7, 2025
Patent Number:
12192316
In one embodiment, methods for monitoring devices within a network by a controller are described. The method may include receiving a first request from a first device to authenticate a role of the first device as a grandmaster in a precision time protocol (PTP). Additionally, the method may include granting the first request designating the role of the first device as the grandmaster. The method may further include receiving a second request from a second device to authenticate that a…
Proactive indication of network session disruption
Granted: January 7, 2025
Patent Number:
12192288
Techniques are described for providing a proactive indication of a disruption of a network session. In one example, a network session is established between a first endpoint and a second endpoint based on a connection-oriented protocol. One or more network attributes associated with the network session are stored in a persistent storage. The one or more network attributes may be obtained from the persistent storage when the network session is disrupted. A proactive indication that the…
Opentelemetry security systems and methods
Granted: January 7, 2025
Patent Number:
12192224
According to some embodiments, a method includes detecting a start of an OpenTelemetry span by an application and determining security information related to the start of the OpenTelemetry span. The method further includes monitoring the application for one or more application behaviors during execution of the OpenTelemetry span. The method further includes detecting an end of the OpenTelemetry span by the application, and in response, calculate a security score for the OpenTelemetry…
Secure access service edge function with configured metric collection intelligence
Granted: January 7, 2025
Patent Number:
12192192
In one embodiment, a method herein comprises: receiving, at a device, a registration request from a telemetry exporter that transmits telemetry data; generating, by the device, a telemetry configuration file for the telemetry exporter, the telemetry configuration file defining a policy for transmission of telemetry data from the telemetry exporter and an authentication token for the telemetry exporter; sharing, by the device, the policy with a security enforcer; and sending, by the…
Dynamic firewall discovery on a service plane in a SDWAN architecture
Granted: January 7, 2025
Patent Number:
12192179
The present disclosure is directed to systems and methods for dynamic firewall discovery on a service plane. The method includes the steps of identifying a source data packet for transmission from a source machine at a source site to a destination machine at a destination site, wherein the source data packet corresponds to a request for connection between the source machine and the destination machine over a WAN, inspecting the source data packet at a first firewall associated with the…
Congestion notification reporting for a responsive network
Granted: January 7, 2025
Patent Number:
12192104
Techniques for identifying network congestion and adapting network performance to relieve the network congestion are described. As described, a network element such as a switch reports network congestion indicators such as link level control frames to a network controller. The network controller uses the network congestion indicators reported from the network elements to identify congestion points, data traffic, and data flows experiencing congestion at a network level. The network…
Centralized path computation for information-centric networking
Granted: January 7, 2025
Patent Number:
12192100
This disclosure describes techniques for implementing centralized path computation for routing in hybrid information-centric networking protocols implemented as a virtual network overlay. A method includes receiving an interest packet header from a forwarding router node of a network overlay. The method further includes determining an interest path of the interest packet and one or more destination router nodes of the network overlay. The method further includes computing one or more…
Performance tracing for mobile network environments
Granted: January 7, 2025
Patent Number:
12192096
Provided herein are techniques to facilitate multi-level performance tracing for a mobile network environment. In one instance, a method may include obtaining, by a mobile network, a trigger from an enterprise to initiate an underlay-level trace for a wireless device of the enterprise, wherein the trigger includes a correlation identifier that correlates the underlay-level trace with an enterprise-level trace for the wireless device and providing the underlay-level trace for a session of…
Pairing disaggregated network elements
Granted: January 7, 2025
Patent Number:
12192090
Techniques are described herein for pairing disaggregated network elements. In one example, a pairing manager obtains an indication to prioritize high availability when pairing disaggregated network elements. The disaggregated network elements include first disaggregated network elements and second disaggregated network elements. The pairing manager obtains, from one or more of the disaggregated network elements, topology information of the disaggregated network elements. Based on the…
System and method of assigning reputation scores to hosts
Granted: January 7, 2025
Patent Number:
12192078
A method provides for receiving network traffic from a host having a host IP address and operating in a data center, and analyzing a malware tracker for IP addresses of hosts having been infected by a malware to yield an analysis. When the analysis indicates that the host IP address has been used to communicate with an external host infected by the malware to yield an indication, the method includes assigning a reputation score, based on the indication, to the host. The method can…
Methods for implementing time-travelling networks using extensions to graph databases
Granted: January 7, 2025
Patent Number:
12192062
Methods are presented herein for a reduced state machine that describes nodes and relationship dynamics representing real network elements (networking devices and software processes) in a computer/data network, and abstracted logical items. Logical states of networking features of the network elements are reflected in the graph, while configuration data is stored for completeness. A method called a “Versioner Algorithm” is provided to record the temporal history of a node and its…
Software defined access fabric without subnet restriction to a virtual network
Granted: January 7, 2025
Patent Number:
12192057
Systems, methods, and computer-readable storage media are provided for provisioning a common subnet across a number of subscribers and their respective virtual networks using dynamically generated network policies that provide isolation between the subscribers. The dynamic generation of the network policies is performed when a host (e.g. client) is detected (via a switch) as the host joins the computing network via virtual networks. This ability to configure a common subnet for all the…
Digital models for testing and diagnosing network issues
Granted: December 31, 2024
Patent Number:
12184505
A network management station is configured to test a computer network through digital model personas. The network management station obtains network behavior data corresponding to user(s) of the computer network and generates digital model(s) based on the network behavior. The network management station deploys a first digital model persona based on a first digital model among the generated digital models. The first digital model persona operates at a first network location to test the…
User lifecycle journey and asset data based bot skill selection
Granted: December 31, 2024
Patent Number:
12184516
A method is provided that is performed by a computer-implemented user support bot. The method includes obtaining from a user a support request related to software and/or hardware used, or to be used, by the user; obtaining user lifecycle journey information that tracks deployment, adoption and/or use by the user of the software and/or hardware; determining a user intent for the support request based on the user lifecycle journey information when there is ambiguity as to the user intent…
