Method and system for network segmentation using safety integrity level (SIL)
Granted: March 4, 2025
Patent Number:
12244450
Embodiments relate to a method for enhancing and prioritizing operation technology (OT) control systems in a safety instrumented system (SIS) environment by incorporating safety levels. The method includes receiving network packets associated with OT systems by network interface. From network packets, OT systems associated with safety integrity level (SIL) values are identified. In response to identifying OT control systems associated with SIL values, determining priority levels from SIL…
Adaptive load balancing in a satellite network
Granted: March 4, 2025
Patent Number:
12245080
According to an embodiment, a node comprises one or more processors operable to execute instructions to cause the node to perform operations. The operations comprise determining a link quality associated with each satellite link of a plurality of satellite links and applying load balancing to the plurality of satellite links. The load balancing is based at least in part on the respective link quality associated with each satellite link. The load balancing comprises determining which of…
Directional audio pickup guided by face detection
Granted: March 4, 2025
Patent Number:
12245015
Presented herein are techniques to enhance the audio portion of a video conference. In one embodiment, a method includes determining, using a multi-microphone array, a direction of arrival of sound signals from a user, detecting, using an image from a camera, a face of the user, determining a position of the face of the user with respect to a position of the camera, and forming a spatial beam for the multi-microphone array based on the direction of arrival of sound signals from the user…
Automatic retraining of machine learning models to detect DDoS attacks
Granted: March 4, 2025
Patent Number:
12244640
In one embodiment, a device in a network receives an attack mitigation request regarding traffic in the network. The device causes an assessment of the traffic, in response to the attack mitigation request. The device determines that an attack detector associated with the attack mitigation request incorrectly assessed the traffic, based on the assessment of the traffic. The device causes an update to an attack detection model of the attack detector, in response to determining that the…
Algorithm to detect malicious emails impersonating brands
Granted: March 4, 2025
Patent Number:
12244562
Techniques for an email-security system to screen emails, extract information from the emails, analyze the information, assign probability scores to the emails, and classify the emails as likely fraudulent or not. The system may analyze emails for users and identify fraudulent emails by analyzing the contents of the emails. The system may evaluate the contents of the emails to determine probability score(s) which may further determine an overall probability score. The system may then…
Enforcement of inter-segment traffic policies by network fabric control plane
Granted: March 4, 2025
Patent Number:
12244560
This disclosure describes techniques to operate a control plane in a network fabric. The techniques include determining a stateless rule corresponding to communication between a first segment of the network fabric and a second segment of the network fabric. The techniques further include configuring the control plane to enforce the stateless rule.
Seamless device address rotation
Granted: March 4, 2025
Patent Number:
12244559
Techniques are provided that rotate a device address used to identify a wireless client device on a wireless network. The wireless client device and at least one network infrastructure component identify a plurality of device addresses associated with the wireless client device. In some embodiments, the plurality of device addresses are generated via a corresponding plurality of invocations of a stateful random number generator, such as a cryptographically secure pseudorandom number…
PIM proxy over EVPN fabric
Granted: March 4, 2025
Patent Number:
12244509
A system and associated methods provide solutions for reducing a volume of traffic through a multicast network attributed to repeated maintenance messages, which are required in order to maintain a multicast connection. The system configures provider edge devices to generate and send maintenance messages on behalf of members of a multicast group to establish and maintain the multicast connection and provides options for determining unknown locations of sources and/or subscribers, thereby…
IP-based forwarding of bridged and routed IP packets and unicast ARP
Granted: March 4, 2025
Patent Number:
12244496
Disclosed herein are methods of forwarding data over an IP network. The methods may include receiving a packet from a source host connected to the IP network, identifying the IP address of a destination host designated in the packet, determining the location on the IP network where the destination host designated by the packet is connected, without reference to the MAC address specified in the packet, by using location-identification information stored on the IP network, and forwarding…
Predictive system for optimizing API behaviors
Granted: March 4, 2025
Patent Number:
12244473
The disclosure relates to a system and method of optimizing one or more paths between an Application Programing Interface (API) gateway and one or more endpoints. Properties associated with each of a plurality of paths between at least one device and an API gateway are collected, and the properties associated with each of the plurality of paths are monitored to determine a current level of performance for each of the paths. Using gathered data, the API gateway can then analyze, using…
Channel selection for dynamic-frequency-selection channels using puncturing
Granted: March 4, 2025
Patent Number:
12244412
An access point in a wireless network communicates wirelessly with one or more client devices over a channel that includes a plurality of subchannels. Radar is detected on a first subchannel of the plurality of subchannels. It is determined to puncture the first subchannel, based on the detecting the radar on the first subchannel and based on one or more puncturing factors. The first subchannel is punctured, the puncturing comprising muting one or more subcarriers on the first…
Intent-based chaos level creation to variably test environments
Granted: March 4, 2025
Patent Number:
12242370
A method includes receiving, at a chaos level engine, initial input parameters. The method may further include, with the chaos level engine, determining scaled input parameters based on the initial input parameters. The scaled input parameters define how the initial input parameters effect a computing environment to be tested. The method may further include, with the chaos level engine determining a chaos level for performing a chaos experiment on the computing environment based on the…
Identifying execution environments for deploying network functions
Granted: February 25, 2025
Patent Number:
12236229
This disclosure describes techniques and mechanisms for using a domain-specific language (DSL) to express and compile serverless network functions, and optimizing the deployment location for the serverless network functions on network devices. In some examples, the serverless network functions may be expressed entirely in the DSL (e.g., via a text-based editor, a graphics-based editor, etc.), where the DSL is a computer language specialized to a particular domain, such as a network…
Heat sink with adaptive curvature to mitigate thermal runaway for a circuit component
Granted: February 25, 2025
Patent Number:
12238856
A heat sink component includes a cold plate including a first surface configured to engage a circuit component and a second surface opposing the first surface, and a plurality of fins extending transversely from the second surface of the cold plate. The first surface includes a non-planar surface portion and a planar surface portion surrounding the non-planar surface portion. The non-planar surface portion of the cold plate provides an adaptive contour to complement a surface of a…
Load-balancer for saturated wireless
Granted: February 25, 2025
Patent Number:
12238578
Load balancing for saturated wireless may be provided. A computing device may determine that an Access Point (AP) has reached a saturation point. A first Service Device (SD) having a first SD coverage area that overlaps an AP coverage area associated with the AP may be identified. Then a license to operate within a frequency spectrum segment for the first SD coverage area may be obtained. A plurality of user devices may be moved from the AP to the first SD. The first SD may then service…
Packet-switching quantum key distribution
Granted: February 25, 2025
Patent Number:
12238208
A network element in a quantum network receives a hybrid frame including a classical header and a quantum payload. The network element processes the classical header for a length of time and generates a new classical header. The network element drops a portion of the quantum payload based on the length of time spent processing the classical header and updates the hybrid frame to include the new classical header and the quantum payload without the dropped portion.
Systems and methods for generating contextual labels
Granted: February 25, 2025
Patent Number:
12238099
In one embodiment, an apparatus includes one or more processors and one or more computer-readable non-transitory storage media coupled to the one or more processors. The one or more computer-readable non-transitory storage media include instructions that, when executed by the one or more processors, cause the apparatus to perform operations including receiving a user credential from a remote access client within a network and communicating the user credential to an authentication,…
Upstream approach for secure cryptography key distribution and management for multi-site data centers
Granted: February 25, 2025
Patent Number:
12238079
A Software-Defined Networking (SDN)-based “upstream” approach is a controller-based solution that provides secure key distribution and management for multi-site data centers. The approach uses an SDN Multi-Site Controller (MSC) that acts as an intermediary between SDN controllers at sites in a multi-site data center and manages the distribution of keys to sites. The approach is not dependent upon any particular routing protocol, such as the Border Gateway Protocol (BGP), and is well…
Identifying unmanaged cloud resources with endpoint and network logs
Granted: February 25, 2025
Patent Number:
12238014
Techniques and mechanisms for identifying unmanaged cloud resources with endpoint and network logs and attributing the identified cloud resources to an entity of an enterprise that owns the cloud resources. The process collects data from sources, e.g., endpoint and network logs, with respect to traffic in a computer network and based at least in part on the data, extracts relationships related to the traffic. The process applies rules to the relationships to extract destinations in the…
Self-healing SD-WAN controllers and networks
Granted: February 25, 2025
Patent Number:
12238006
Systems and methods are provided for re-balancing and healing of an SD-WAN in an unbalanced state and/or experiencing one or more failure states. In response to a request to connect to a new controller resulting from OMP load shedding from a first controller, the system can identify other controllers capable of handling the load requirements of the edge router. The system can incorporate the controller group preference of the edge router and select a second controller based on the…
