Techniques are described that enable zero trust routing of cloud objects across cloud service providers in multi-cloud networks. The techniques enabling customers to create customized tags for cloud objects, where the tags are signed by trusted application(s) or a network management system. The techniques enable the tags to be stored in a cloud object and deleted. The techniques enable invalid tags to be ignored such that traffic may continue to flow using the previous, valid tag. The techniques prevent customers from tampering or replaying tag values, thus improving network security by preventing customers from gaining access to networks they should not have access to.
H04L 9/32 - Dispositions pour les communications secrètes ou protégéesProtocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
In one embodiment, a device associates available 5G functions with contextual information, wherein the contextual information maps each of the available 5G functions to a segment identifier of a security model topology for a segmented network within which that available 5G function is deployed. The device receives a request from a user equipment endpoint to communicate via the segmented network. The device selects a particular user plane function from among the available 5G functions for use by the user equipment endpoint based in part on the segment identifier of the security model topology mapped to the particular user plane function. The device causes the user equipment endpoint to communicate via the segmented network using the particular user plane function.
Techniques are described that enable tag normalization of network elements across cloud service providers in multi-cloud networks. The techniques enable customers to create and/or use tags for network elements (e.g., VPCs, VNETs, subnets, etc.), where tagging nomenclature may differ across cloud service providers, on-premises data centers, etc. The techniques enable the customers to tag their network objects across cloud service providers, and allow different tags to be normalized, or correlated, despite being associated with different nomenclature. The techniques allow network elements of multi-cloud networks to be interconnected on behalf of the user, thus improving network and customer efficiencies.
H04L 41/122 - Découverte ou gestion des topologies de réseau des topologies virtualisées, p. ex. les réseaux définis par logiciel [SDN] ou la virtualisation de la fonction réseau [NFV]
H04L 67/10 - Protocoles dans lesquels une application est distribuée parmi les nœuds du réseau
4.
ATTACK SURFACE TAGGING USING USER-CONFIGURED TAG SPECIFICATIONS
Techniques for automated attack surface target tagging using user-configured tag specifications are described. An attack surface management (ASM) system tags attack surface targets via use of user-configured tag specifications. The user-configured tag specifications can provide a tag and zero, one, or more conditions to be evaluated to determine whether the tag, and any optionally indicated associated tags, are to be associated with a target. The tag specification can be provided via straightforward graphical user interfaces or in a human-readable data serialization language.
The present disclosure describes an equalizer that uses an all-pass filter to delay a signal to a transconductor cell. According to an embodiment, the equalizer includes an input line, a first transconductor cell connected to the input line, a filter, and a second transconductor cell. The filter includes a first inverter connected to the input line, a second inverter connected to an output of the first inverter, and a third inverter connected to the input line and the output of the second inverter. The second transconductor cell is connected to the output of the second inverter.
Techniques for enabling streamlined and simplified management of connections across cloud service providers (CSPs). The techniques provide a new, decentralized multi-cloud mesh that integrates a cloud agent service within virtual points of presence (vPoPs) to provide agentless end-to-end monitoring of connection(s) for tenant accounts across CSPs. Users can configure test(s) that are executed by the vPoPs within the multi-cloud mesh, thereby reducing overhead of creating and maintain infrastructure. By integrating the cloud agent service into the vPoPs and deploying them within the multi-cloud mesh at the edges, the techniques enable test(s) to be performed between any network elements across CSPs and dramatically reduces infrastructure overhead, operational costs, and maintenance requirements.
H04L 43/20 - Dispositions pour la surveillance ou le test de réseaux de commutation de données le système de surveillance ou les éléments surveillés étant des entités virtualisées, abstraites ou définies par logiciel, p. ex. SDN ou NFV
Embodiments are disclosed for performing cache aware searching. In response to a search query, a first bucket and a second bucket in remote storage for processing the search query. A determination is made that a first file in the first bucket is present in a cache when the search query is received. In response to the search query, a search is performed using the first file based on the determination that the first file is present in the cache when the search query is received, and the search is performed using a second file from the second bucket once the second file is stored in the cache.
G06F 12/0875 - Adressage d’un niveau de mémoire dans lequel l’accès aux données ou aux blocs de données désirés nécessite des moyens d’adressage associatif, p. ex. mémoires cache avec mémoire cache dédiée, p. ex. instruction ou pile
G06F 3/06 - Entrée numérique à partir de, ou sortie numérique vers des supports d'enregistrement
G06F 12/0802 - Adressage d’un niveau de mémoire dans lequel l’accès aux données ou aux blocs de données désirés nécessite des moyens d’adressage associatif, p. ex. mémoires cache
G06F 12/0862 - Adressage d’un niveau de mémoire dans lequel l’accès aux données ou aux blocs de données désirés nécessite des moyens d’adressage associatif, p. ex. mémoires cache avec pré-lecture
G06F 12/0866 - Adressage d’un niveau de mémoire dans lequel l’accès aux données ou aux blocs de données désirés nécessite des moyens d’adressage associatif, p. ex. mémoires cache pour les systèmes de mémoire périphérique, p. ex. la mémoire cache de disque
G06F 12/0868 - Transfert de données entre une mémoire cache et d'autres sous-systèmes, p. ex. des dispositifs de stockage ou des systèmes hôtes
G06F 12/0871 - Affectation ou gestion d’espace de mémoire cache
G06F 12/0873 - Mappage de mémoire de mémoire cache vers des dispositifs ou des parties de dispositifs de stockage
G06F 16/14 - Détails de la recherche de fichiers basée sur les métadonnées des fichiers
G06F 16/172 - Mise en cache, pré-extraction ou accumulation de fichiers
G06F 16/951 - IndexationTechniques d’exploration du Web
G06F 16/957 - Optimisation de la navigation, p. ex. mise en cache ou distillation de contenus
Techniques and systems described herein relate to monitoring executions of computer instructions on computing devices based on learning and generating a control flow directed graph. The techniques and systems include receiving a report of a first anomaly based on real-time control flow graph diagram monitoring of an application at a first system and receiving a second report of a second anomaly from a second system. An exploit report may be generated by providing the first report and the second report to a machine learning model trained to output information related to an exploit based on input reports, and subsequently to provide the output information to a cloud-based reporting tool.
G06F 11/3604 - Analyse de logiciel pour vérifier les propriétés des programmes
G06F 21/51 - Contrôle des utilisateurs, des programmes ou des dispositifs de préservation de l’intégrité des plates-formes, p. ex. des processeurs, des micrologiciels ou des systèmes d’exploitation au stade du chargement de l’application, p. ex. en acceptant, en rejetant, en démarrant ou en inhibant un logiciel exécutable en fonction de l’intégrité ou de la fiabilité de la source
G06F 21/53 - Contrôle des utilisateurs, des programmes ou des dispositifs de préservation de l’intégrité des plates-formes, p. ex. des processeurs, des micrologiciels ou des systèmes d’exploitation au stade de l’exécution du programme, p. ex. intégrité de la pile, débordement de tampon ou prévention d'effacement involontaire de données par exécution dans un environnement restreint, p. ex. "boîte à sable" ou machine virtuelle sécurisée
G06F 21/54 - Contrôle des utilisateurs, des programmes ou des dispositifs de préservation de l’intégrité des plates-formes, p. ex. des processeurs, des micrologiciels ou des systèmes d’exploitation au stade de l’exécution du programme, p. ex. intégrité de la pile, débordement de tampon ou prévention d'effacement involontaire de données par ajout de routines ou d’objets de sécurité aux programmes
G06F 21/55 - Détection d’intrusion locale ou mise en œuvre de contre-mesures
G06F 21/57 - Certification ou préservation de plates-formes informatiques fiables, p. ex. démarrages ou arrêts sécurisés, suivis de version, contrôles de logiciel système, mises à jour sécurisées ou évaluation de vulnérabilité
The disclosure provides a computerized method including operations of obtaining training data comprising sample webpage images, wherein at least a portion of the sample webpage images include login screen components, training an autoencoder on the training data comprising the sample webpage images by iteratively performing a set of operations for each of the sample webpage images including, providing a first sample webpage image to the encoder resulting in a first sample latent representation, decoding the first sample latent representation by the decoder thereby producing a reconstructed version of a sample login component of the first sample webpage image, and comparing the reconstructed version of the sample login component of the first sample webpage image with an original version of the sample login component of the first sample webpage image resulting in computation of a loss.
This disclosure describes techniques for complying with a data sovereignty policy of data routed through a satellite network. An example method includes identifying data comprising a data sovereignty label indicating a first geographical region; determining that a coverage region of a satellite includes a first ground station in the first geographical region; determining that coverage region excludes a second ground station in a second geographical region; and based on determining that the coverage area includes the first ground station and excludes the second ground station, transmitting the data to the satellite.
H04W 12/37 - Gestion des politiques de sécurité pour des dispositifs mobiles ou pour le contrôle d’applications mobiles
H04W 40/20 - Sélection d'itinéraire ou de voie de communication, p. ex. routage basé sur l'énergie disponible ou le chemin le plus court sur la base de la position ou de la localisation géographique
11.
VALIDATION OF PRIVACY REQUESTS FOR MUTUAL ACCESS POINT (AP) AND CLIENT DEVICE PROTECTION
Validation of privacy requests for mutual Access Point (AP) and client device protection may be provided. A first computing device may accept association with a second computing device. Then the first computing device may receive frame anonymization parameters associated with a parameter rotation from the second computing device. Next, the first computing device may determine to one of: i) accept the parameter rotation based on the frame anonymization parameters; and ii) reject the parameter rotation based on the frame anonymization parameters.
In one embodiment, a method includes obtaining a standard pattern for use in testing an optical transmitter, and modifying the standard pattern to create a modified pattern. The modified pattern is provided to the optical transmitter. The method also includes testing the optical transmitter, wherein testing the optical transmitter include implementing the modified pattern and obtaining at least one measurement after implementing the modified pattern.
H04B 10/079 - Dispositions pour la surveillance ou le test de systèmes de transmissionDispositions pour la mesure des défauts de systèmes de transmission utilisant un signal en service utilisant des mesures du signal de données
H04B 10/077 - Dispositions pour la surveillance ou le test de systèmes de transmissionDispositions pour la mesure des défauts de systèmes de transmission utilisant un signal en service utilisant un signal de surveillance ou un signal supplémentaire
13.
INFORMATION DELIVERY FOR COORDINATED SPATIAL REUSE
Techniques and apparatus for providing information to an AR within a wireless network are described. An example technique includes sending a first frame to a first wireless device, the first frame comprising a first control field indicating a first one or more parameters of the first frame, at least one parameter of the first one or more parameters is associated with a transmit power of the AR. Receiving a second frame from the first wireless device, the second frame is carried in a physical layer RPDll and comprises a second control field indicating a second one or more parameters of the first frame, at least one parameter of the second one or more parameters is associated with a pathloss determined based on the at least one parameter and a RSSI measured by the first wireless device. Extracting the pathloss reported in the second frame.
Techniques and apparatus for managing at least one client stations (STAs) within a wireless network are described. An example technique includes receiving a request from, or anticipating a request by, the at least on STA for an expansion of bandwidth resources. A determination is made regarding constraints and the feasibility of the expansion of bandwidth resources based on target parameters. In response to the determination, expanding bandwidth resources of at least one access point of the one or more access points within the wireless network.
Optimized wireless configuration and regulatory compliance for vehicles may be provided. A path and a schedule of a vehicle may be received. Then regulatory wireless requirements associated with the path may be received. Next, a profile indicating wireless system configurations for a wireless system associated with the vehicle based on the path, the schedule, and the regulatory wireless requirements may be created. The wireless system may then be configured based on the profile.
Techniques are described that enable zero-trust routing between network elements and across cloud service providers in multi-cloud network. The techniques enable customers to create and/or use tags for network elements (e.g., VPCs, VNETs, subnets, etc.). Tags from different cloud service providers with different tag semantics and/or nomenclature may be correlated (e.g., normalized), as well as verified. The techniques may use normalized and/or verified tags in order to identify the routes between network elements. The techniques allow network elements of multi-cloud networks to be interconnected on behalf of the user, as well as allow only relevant routes to be distributed to network elements (e.g., the routes between network elements that are interconnected), thus improving network and customer efficiencies.
Automatically changing Access Point (AP) system configurations for Power over Ethernet (PoE) adaptation and Radio Frequency (RF) power improvement on band edge channels, particularly for Wireless Local Area Networks (WLAN) may be provided. A PoE budget for an AP may be determined. Then, an evaluation of inputs associated with the AP may be performed. The evaluation may include determining an entity input from an entity associated with the AP, determining a client input from a client interfacing with the AP, and/or determining a device input from the AP. Next, a configuration of the AP may be determined based on the PoE budget and the entity input, the client input, and/or the device input. The operation of the AP may be altered based on the configuration.
H04W 52/34 - Gestion du TPC, c.-à-d. partage de la quantité limitée de puissance entre les utilisateurs ou les canaux ou encore les types de données, p. ex. charge des cellules
H04W 52/36 - Commande de puissance d'émission [TPC Transmission power control] utilisant les limitations de la quantité totale de puissance d'émission disponible avec une plage ou un ensemble discrets de valeurs, p. ex. incrément, variation graduelle ou décalages
The method disclosed herein manages and generates enterprise-policy compliant guest credentials for connectivity to one or more enterprise networks. The method may include receiving a request from a guest user device to connect to a first network provided by an enterprise. The method may further comprise determining that the guest user device is authorized to access the first network when the access by the guest user is subject to a movement and roaming policy. A first credential may be provisioned for the guest user to access the first network that is consistent with the movement and roaming policy. Prior to receiving a second request to connect to a second network of the enterprise from the guest user device, provisioning a second credential, consistent with the movement and roaming policy, to the guest user.
H04W 4/50 - Fourniture de services ou reconfiguration de services
H04W 4/60 - Services basés sur un abonnement qui utilisent des serveurs d’applications ou de supports d’enregistrement, p. ex. boîtes à outils d’application SIM
H04W 12/082 - Sécurité d'accès utilisant la révocation d’autorisation
H04W 12/30 - Sécurité des dispositifs mobilesSécurité des applications mobiles
H04W 12/43 - Dispositions de sécurité utilisant des modules d’identité utilisant des modules partagés d’identité, p. ex. partage de SIM
H04W 12/45 - Dispositions de sécurité utilisant des modules d’identité utilisant des modules multiples d’identité
H04W 84/12 - Réseaux locaux sans fil [WLAN Wireless Local Area Network]
19.
LOW LATENCY LOW OVERHEAD ESTIMATION OF PATHLOSS TO NEIGHBORING ACCESS POINTS
A method to optimize roaming of a wireless client in a wireless local area network includes receiving, at a serving access point (AP), a value indicative of transmit power for at least one neighbor AP, and sending the value indicative of transmit power for the at least one neighbor AP from the serving AP to a wireless client that is associated with the serving AP. The wireless client may then calculate a pathloss between the at least one neighbor AP and the wireless client based on the value indicative of transmit power for the at least one neighbor AP less a downlink RSSI of a Clear to Send (CTS) message received from the at least one neighbor AP, and then estimate an uplink RSSI at the at least one neighbor AP based on a value indicative of transmit power for the wireless client less the pathloss.
H04W 72/044 - Affectation de ressources sans fil sur la base du type de ressources affectées
H04W 74/0816 - Accès non planifié, p. ex. ALOHA utilisant une détection de porteuse, p. ex. accès multiple par détection de porteuse [CSMA] avec évitement de collision
20.
OPTIMIZING ANONYMIZED PARAMETERS DISTRIBUTION IN MULTI-LINK OPERATION
Techniques and apparatus for improving distribution of anonymized parameters in multi-link operation (MLO) are described. An example technique includes determining a respective set of anonymized parameters for each link of a plurality of links for a plurality of epochs. The plurality of links are established between the AP MLD and a station (STA) MLD. The technique also includes determining, based on the sets of anonymized parameters, that a plurality of anonymized parameter collisions are expected to occur on at least a first link and a second link of the plurality of links during one or more epochs of the plurality of epochs. A frame including an indication of the plurality of anonymized parameter collisions on the first link and the second link is generated. The frame is transmitted to the STA MLD.
Disclosed herein are systems, methods, and computer-readable media for minimizing pre-roaming resource reservations. In one aspect, it is determined that a client device connected to a first Access Point (AP) will roam, based on the determination, generating a list of APs that are roam candidates supportive of one or more resources needed by the client device, issuing a reservation request to the roam candidates, where the reservation request includes a timeout feature that persists the reservation at each AP on the list of APs for a set period of time, determining that a second AP within the list of APs will honor the reservation request, and automatically withdrawing the reservation request when the timeout feature has expired and the client device has not connected to the second AP, where the withdrawal of the reservation request frees up the one or more resources associated with the reservation request at each AP on the list of APs.
Embodiments of the present disclosure include techniques for secure capabilities sharing for wireless networks. A station (STA) encodes a limited access uniform resource locator (URL) into a management frame. The limited access URL provides access to a plurality of capability elements of the STA. The operation by the STA further comprises transmitting the management frame to an access point (AP) when attempting to associate with the AP. The AP negotiates parameters with the STA based on retrieving the plurality of capability elements using the limited access URL.
Described herein is a network device that assesses privacy. The device includes one or more memories and one or more processors communicatively coupled to the one or more memories. The one or more processors, individually or collectively, perform an operation that includes determining usage statistics of a wireless medium for a group of user devices, determining that a first usage statistic of the usage statistics for a first user device of the group of user devices differs from a usage statistic of the usage statistics for other user devices of the group of user devices, and based on determining that the first usage statistic differs from the usage statistic for the other user devices, adjusting a transmission characteristic of the first user device such that the first usage statistics are brought closer to the usage statistics for the other user devices.
Security, access and the way organizations communicate with their employees, contractors and customers is evolving faster than ever, and as the world is becoming more hybrid, security policies, monitoring and control must become collaborative and interoperable. The techniques described herein provide meaningful correlation and analytics of data coming from multiple sources in the network, access, security and identity, thereby improving troubleshooting, optimizations, threat forensics and analysis, as well as enabling network administrators more control over network policies.
In an embodiment, a method includes transmitting an initiation request from a first electronic device to a second electronic device, the initiation request being associated with a notification that the first electronic device is capable of early detection of duplicate security associations (SAs), receiving an initiation request from the second electronic device at the first electronic device, the initiation request being associated with a capability notification that the second electronic device is capable of early detection of duplicate SAs, determining a possibility of duplicate SAs by the first electronic device, transmitting responses configured to prevent duplicate SAs from the first electronic device to the second electronic device, receiving responses at the first electronic device from the second electronic device, wherein the responses indicate no duplicate SAs created by the second electronic device, and establishing a non-duplicate SA for the first and second electronic devices.
Unified mechanisms for multi-link (ML) operating modes and operating parameters updates may be provided. Updating operating modes and operating parameters can include establishing, by a non-access point (AP) ML device (MLD), a connection with an AP MLD, wherein the establishing comprises establishing one or more links between the non-AP MLD and the AP MLD. The non-AP MLD can determine a non-AP MLD update comprising any one of: (i) disabling one or more operating modes for any of the one or more links, (ii) enabling one or more operating modes for any of the one or more links, (iii) updating one or more operating parameters for any of the one or more links, or (iv) any combination of (i)-(iii). The non-AP MLD sends over a link of the one or more links, a frame to the AP MLD, the frame comprising an element indicating the non-AP MLD update.
H04W 76/15 - Établissement de connexions à liens multiples sans fil
H04B 7/06 - Systèmes de diversitéSystèmes à plusieurs antennes, c.-à-d. émission ou réception utilisant plusieurs antennes utilisant plusieurs antennes indépendantes espacées à la station d'émission
H04W 74/06 - Accès planifié utilisant une invitation à émettre
27.
COORDINATED RESTRICTED TARGET WAKE TIME SCHEDULE WITH JITTER
Techniques and apparatus for scheduling coordinated restricted target wake times (Co-RTWTs) with jitter are described. An example technique includes determining a schedule of service periods allocated to at least one of (i) one or more access point (AR) devices or (ii) one or more aggregated flows associated with the one or more AR devices. A first service period allocated to a first AR device for exchanging first traffic is determined based on the schedule of service periods. Upon determining, in the first service period, that a second AR device has second traffic that satisfies a predetermined condition, a portion of the first service period is allocated to the second AR device for communicating the second traffic.
H04W 28/16 - Gestion centrale des ressourcesNégociation de ressources ou de paramètres de communication, p. ex. négociation de la bande passante ou de la qualité de service [QoS Quality of Service]
Systems and methods are described for implementing programmatic input/output (I/O) routing to datasets with user-defined partitions while providing unhandled data protection. As disclosed herein, a user may define a dataset as including one or more partitions, each partition including criteria for storing data objects written to the partitioned dataset in the individual partitions. Data objects written to the dataset can then be evaluated according to the criteria, and routed to an appropriate partition. To provide unhandled data protection, a dataset definition can include a default partition to which data objects are routed when the data object fails to satisfy the criteria of any of the set of user-defined partitions identified in the specification. Processing I/O operations according to a user-defined partitioning schema can enable data objects to be arranged according to any partitioning schema without tethering the partitioning to a particular underlying storage system.
Techniques, which may be embodied herein as systems, computing devices, methods, algorithms, software, code, computer readable media, or the like, are described herein for generating heatmap visualizations. A heatmap visualization can be a graphical representation of data where the coordinates of a cell in the visualization can be a key that describes a group of data represented by the cell. The colors of a heatmap may indicate information about the data represented by the cell (e.g., the amount of data in the cell). These cells can be rendered by calculating a per-pixel metric rate for each dataset in the heatmap visualization and mapping a dataset's rate onto pixels within the visualization that correspond to the dataset. After this mapping, the maximum rate within the visualization can be used to determine the visualization's colors and the cells can be rendered by coloring each pixel (e.g. pixel row) in its corresponding color.
Techniques are provided for video encoding. A method includes dividing a video frame into a plurality of areas, and generating a plurality of hash tables to be used for block matching in predictive coding of the video frame. At least one hash table of the plurality of hash tables is assigned for use for a corresponding area of the plurality of areas. The method further includes performing predictive coding of the video frame using the plurality of hash tables.
H04N 7/12 - Systèmes dans lesquels le signal de télévision est transmis par un canal ou une pluralité de canaux parallèles, la bande passante de chaque canal étant inférieure à la largeur de bande du signal de télévision
H04N 19/159 - Type de prédiction, p. ex. prédiction intra-trame, inter-trame ou de trame bidirectionnelle
H04N 19/172 - Procédés ou dispositions pour le codage, le décodage, la compression ou la décompression de signaux vidéo numériques utilisant le codage adaptatif caractérisés par l’unité de codage, c.-à-d. la partie structurelle ou sémantique du signal vidéo étant l’objet ou le sujet du codage adaptatif l’unité étant une zone de l'image, p. ex. un objet la zone étant une image, une trame ou un champ
H04N 19/51 - Estimation ou compensation du mouvement
H04N 19/85 - Procédés ou dispositions pour le codage, le décodage, la compression ou la décompression de signaux vidéo numériques utilisant le pré-traitement ou le post-traitement spécialement adaptés pour la compression vidéo
In some implementations, sequences of time series values determined from machine data are obtained. Each sequence corresponds to a respective time series. A plurality of predictive models is generated for a first time series from the sequences of time series values. Each predictive model is to generate predicted values associated with the first time series using values of a second time series. For each of the plurality of predictive models, an error is determined between the corresponding predicted values and values associated with the first time series. A predictive model is selected for anomaly detection based on the determined error of the predictive model. Transmission is caused of an indication of an anomaly detected using the selected predictive model.
G08B 6/00 - Systèmes de signalisation tactile, p. ex. systèmes d'appel de personnes
B06B 1/06 - Procédés ou appareils pour produire des vibrations mécaniques de fréquence infrasonore, sonore ou ultrasonore utilisant l'énergie électrique fonctionnant par effet piézo-électrique ou par électrostriction
G06F 3/01 - Dispositions d'entrée ou dispositions d'entrée et de sortie combinées pour l'interaction entre l'utilisateur et le calculateur
Provided are systems and methods for concurrent summarization of indexed data. In some embodiments, two or more summary processes can be executed concurrently (e.g., in parallel) by an indexer to generate summaries for respective subsets of indexed data (e.g., partitions or buckets of indexed data) managed by the indexer.
Optimized wireless configuration and regulatory compliance for vehicles may be provided. A path and a schedule of a vehicle may be received. Then regulatory wireless requirements associated with the path may be received. Next, a profile indicating wireless system configurations for a wireless system associated with the vehicle based on the path, the schedule, and the regulatory wireless requirements may be created. The wireless system may then be configured based on the profile.
H04W 4/42 - Services spécialement adaptés à des environnements, à des situations ou à des fins spécifiques pour les véhicules, p. ex. communication véhicule-piétons pour les véhicules de transport collectif, p. ex. les autobus, les trains ou les aéronefs
G01C 21/20 - Instruments pour effectuer des calculs de navigation
H04W 4/80 - Services utilisant la communication de courte portée, p. ex. la communication en champ proche, l'identification par radiofréquence ou la communication à faible consommation d’énergie
H04W 64/00 - Localisation d'utilisateurs ou de terminaux pour la gestion du réseau, p. ex. gestion de la mobilité
34.
INFORMATION DELIVERY FOR COORDINATED SPATIAL REUSE
Techniques and apparatus for providing information to an AP within a wireless network are described. An example technique includes sending a first frame to a first wireless device, the first frame comprising a first control field indicating a first one or more parameters of the first frame, at least one parameter of the first one or more parameters is associated with a transmit power of the AP. Receiving a second frame from the first wireless device, the second frame is carried in a physical layer PPDU and comprises a second control field indicating a second one or more parameters of the first frame, at least one parameter of the second one or more parameters is associated with a pathloss determined based on the at least one parameter and a RSSI measured by the first wireless device. Extracting the pathloss reported in the second frame.
H04W 52/24 - Commande de puissance d'émission [TPC Transmission power control] le TPC étant effectué selon des paramètres spécifiques utilisant le rapport signal sur parasite [SIR Signal to Interference Ratio] ou d'autres paramètres de trajet sans fil
Dynamic channel assignment for 6 GHz radios may be provided. Whether an access point in a network is classified as low power indoor only (LPI only), standard power optional (SP optional), or standard power mandatory (SP mandatory) is determined. The total number of access points in the network and the number of access points classified as SP optional or SP mandatory is determined. If the number of SP optional and SP mandatory access points is more than a determined proportion of the total number of access points, for SP optional and SP mandatory access points, channels having a frequency below a determined power spectral frequency are cut off.
Unified mechanisms for multi-link (ML) operating modes and operating parameters updates may be provided. Updating operating modes and operating parameters can include establishing, by a non-access point (AP) ML device (MLD), a connection with an AP MLD, wherein the establishing comprises establishing one or more links between the non-AP MLD and the AP MLD. The non-AP MLD can determine a non-AP MLD update comprising any one of: (i) disabling one or more operating modes for any of the one or more links, (ii) enabling one or more operating modes for any of the one or more links, (iii) updating one or more operating parameters for any of the one or more links, or (iv) any combination of (i)-(iii). The non-AP MLD sends over a link of the one or more links, a frame to the AP MLD, the frame comprising an element indicating the non-AP MLD update.
Neighbor Report (NR) enhancement for roaming may be provided. A neighbor Access Point (AP) of a reporting AP may be determined. Whether the neighbor AP belongs to a same Seamless Mobility Domain (SMD) as the reporting AP may be determined. The SMD may include a plurality of AP Multi-Link Devices (MLDs). Each of the plurality of AP MLD may include one or more APs. Same SMD information may be include in an NR element. The same SMD information may include whether the neighbor AP MLD belongs to the same SMD as the reporting AP MLD. The NR element may be provided to a station.
A system and method are provided for generating a pairwise transient key security association (PTKSA) by: providing a first media access control (MAC) address that is shared by multiple access points (APs), the first MAC address corresponding to an infrastructure comprising the multiple APs, and each AP of the multiple APs having a respective AP MAC address; providing a second MAC address to a station (STA); and establishing a secure link between the STA and the infrastructure using the first MAC address and the second MAC address to derive a pairwise transit key (PTK) for the secure link, wherein the secure link is between the STA and the multiple APs.
Broadcast energy and spectrum consumption optimization may be provided. It may be determined, by a computing device for each of a plurality of client devices, a corresponding plurality of respective minimum Modulation and Coding Schemes (MCSs) needed to reach each of the respective plurality of client devices from the computing device at a predetermined power level. Next, an optimal MCS from the plurality of respective minimum MCSs may be used to reach a first group of the plurality of client devices via broadcast. Then unicast may be used to reach a second group of the plurality of client devices wherein the optimal MCS is selected to minimize the total amount of airtime used for the broadcast and the unicast.
H04L 1/00 - Dispositions pour détecter ou empêcher les erreurs dans l'information reçue
H04W 52/34 - Gestion du TPC, c.-à-d. partage de la quantité limitée de puissance entre les utilisateurs ou les canaux ou encore les types de données, p. ex. charge des cellules
H04W 72/54 - Critères d’affectation ou de planification des ressources sans fil sur la base de critères de qualité
40.
APPLICATION-CENTRIC WEB PROTOCOL-BASED DATA STORAGE
A method of managing data storage processes may include, at a processing device, computing a hypertext transmission protocol version 3 (HTTP/3) header of a first message received at a network interface controller (NIC) device into a non-volatile memory express (NVMe) message, transmitting the NVMe message to a device associated with the processing device, and with the NVMe message, transmitting data directly between a NIC and the data storage device.
In one aspect, a method for penetration testing for optimization of network security policies is disclosed. The method includes determining, by a security management service, that one or more cybersecurity threats successfully penetrated a security service protecting a pseudo-target in a penetration testing environment, analyzing, by the security management service, the one or more cybersecurity threats that successfully penetrated the security service to characterize the one or more cybersecurity threats, and generating, by the security management service, an update of a policy used by the security service that would prevent the one or more cybersecurity threats from penetrating the security service based on the analysis of the one or cybersecurity threats.
H04L 41/16 - Dispositions pour la maintenance, l’administration ou la gestion des réseaux de commutation de données, p. ex. des réseaux de commutation de paquets en utilisant l'apprentissage automatique ou l'intelligence artificielle
In one embodiment, the disclosure relates to an electro-optical device that includes an optical gain chip that includes; a gain material, the gain material having a gain region, the optical gain chip that includes: N gain chip waveguides; a photonic integrated circuit (PIC) that includes a plurality of layers and a plurality of components, wherein the PIC defines M sections; N external laser cavities; P PIC waveguides; and B distributed Bragg reflector (DBR) rings, wherein each of the N external laser cavities is defined by one of the P PIC waveguides and one of the B DBR rings; and N laser cavities, wherein each laser cavity of the N laser cavities comprises one of the N external laser cavities and one of the N gain chip waveguides.
An advanced optical device featuring a substrate with a receiver photonic integrated circuit (PIC) and a transimpedance amplifier (TIA) is disclosed. The PIC is mechanically coupled to the substrate, while the TIA is mounted to the substrate and electrically connected to the PIC. One configuration includes a receiver die flip-chip bonded to a TIA die using copper pillar bumps, optimizing space with the PIC having a smaller footprint than the TIA. A fiber array is precisely aligned and attached to the PIC using epoxy bonding, aided by alignment marks indicating spot-size converters (SSCs). The PIC incudes multiple photodetectors and waveguides, enhancing light guidance and conversion. The manufacturing process involves a chip-on-wafer technique, forming a dam for epoxy application, and precise alignment of fiducials to the fiber array. The method also includes molding, forming through-mold vias, and redistributing electrical connections, ensuring efficient signal processing and integration without wire bonding.
The present disclosure provides techniques for establishing and managing subscription-based telemetry in wireless networks. An access point (AR) receives a discovery frame from a client device requesting information on subscribable data sources, transmits a discovery response frame identifying one or more data sources supported by the first AR, each data source being associated with one or more subscription types, receives a subscription request frame from the client device, the subscription request frame identifying one or more selected data sources, each selected data source being associated with a respective selected subscription type, transmits an acknowledgement frame to the client device, the acknowledgement frame comprising an approval of the subscription request frame and a subscription identifier assigned to the client device, and sends data from the selected data sources to the client device based on the respective selected subscription types.
Techniques for enhancing measurement protocols to monitor bit errors in network traffic. The techniques target a sender device and reflector device exchanging test packets to detect bit errors in forward and/or reverse paths using data encoded in extra padding TLVs of the test packets. The sender device may generate a test packet, add an extra padding TLV, and encode the extra padding TLV with data of a configurable size and/or pattern. The sender device may send the test packet to the reflector device, and the reflector device may analyze the data in the extra padding TLV to detect bit errors and potentially a count of bit errors detected. In some instances, the reflector device may reset the data in the extra padding TLV, add a padding bit error count TLV, and send a reply test packet back to the sender device to detect bit errors in the reverse path.
Techniques are described for providing a ML data analytics application including guided ML workflows that facilitate the end-to-end training and use of various types of ML models, where such guided workflows may also be referred to as ML “experiments.” For example, the ML data analytics application may enable users to create experiments related to prediction of numeric fields (for example, using linear regression techniques), predicting categorical fields (for example, using logistic regression), detecting numerical outliers (for example, using various distribution statistics), detecting categorical outliers (for example, using probabilistic statistics), forecasting time series data, and clustering numeric events (for example, using k-means, density-based spatial clustering of applications with noise (DBSCAN), spectral clustering, or other techniques), among other possible uses of various types of ML models to analyze data.
In part, in one embodiment the disclosure relates to a laser that includes a laser cavity; an optical gain chip that includes a gain material, the gain material having a gain region, the optical gain chip includes a first waveguide, the first waveguide defines a first section of the laser cavity; an external laser cavity includes a second waveguide, the second waveguide is optically coupled to the first waveguide, the second waveguide defines a second section of the laser cavity; and a DBR ring optically coupled to the second waveguide, the DBR ring includes a loop waveguide optically coupled to the second waveguide and one or more DBR disposed along one or more sections of the loop waveguide, the laser cavity includes the first section of the laser cavity and the external laser cavity; and a PIC that includes the second waveguide and the DBR ring.
A tunable laser comprising at least two gain chips configured to generate light and a wavelength selection circuit. The wavelength selection circuit comprising a first waveguide coupled to a first gain chip of the at least two gain chips, a second waveguide coupled to a second gain chip of the at least two gain chips, a first wavelength selective photonic ring resonator optically coupled to the first waveguide, a second wavelength selective photonic ring resonator optically coupled to second waveguide, a third waveguide optically coupled to the first wavelength selective photonic ring resonator and the second wavelength selective photonic ring resonator; and a control circuit. The control circuit is configured to apply a first current to the first gain chip to bias the first gain chip, tune the first wavelength selective photonic ring resonator to a target wavelength, and tune the second wavelength selective ring resonator off-resonance.
Techniques and apparatus for managing at least one client stations (STAs) within a wireless network are described. An example technique includes receiving a request from, or anticipating a request by, the at least on STA for an expansion of bandwidth resources. A determination is made regarding constraints and the feasibility of the expansion of bandwidth resources based on target parameters. In response to the determination, expanding bandwidth resources of at least one access point of the one or more access points within the wireless network.
Techniques and apparatus for scheduling coordinated restricted target wake times (Co-RTWTs) with jitter are described. An example technique includes determining a schedule of service periods allocated to at least one of (i) one or more access point (AP) devices or (ii) one or more aggregated flows associated with the one or more AP devices. A first service period allocated to a first AP device for exchanging first traffic is determined based on the schedule of service periods. Upon determining, in the first service period, that a second AP device has second traffic that satisfies a predetermined condition, a portion of the first service period is allocated to the second AP device for communicating the second traffic.
Improved granularity of Coordination Groups (CGs) using sectorization may be provided. A plurality of sectors around a plurality of Access Points (APs) may be determined. Then, for each of the plurality of APs, it may be determined which sector client devices associated with each of the plurality of APs are in. Next, each of the plurality of APs may be caused to transmit to client devices in a first one of the plurality of sectors.
A system and method of securing and virtualizing firmware trusted platform modules (TPMs) for virtualizing a hardware security module (HSM) for a host within a network fabric is provided. The system and method include operably coupling a set of components associated with a host comprising a data processing unit (DPU) secure vault and a firmware trusted platform module (TPM). The firmware TPM is configured as a virtual firmware TPM. The DPU secure vault secures the virtual firmware TPM into one or more virtual firmware TPMs based on one or more partitions configured with the DPU secure vault. A virtual TPM manager communicatively coupled to the DPU secure vault manages one or more virtual TPMs for hosting a set of Virtual Machines (VMs) or Containers.
G06F 21/57 - Certification ou préservation de plates-formes informatiques fiables, p. ex. démarrages ou arrêts sécurisés, suivis de version, contrôles de logiciel système, mises à jour sécurisées ou évaluation de vulnérabilité
G06F 21/72 - Protection de composants spécifiques internes ou périphériques, où la protection d'un composant mène à la protection de tout le calculateur pour assurer la sécurité du calcul ou du traitement de l’information dans les circuits de cryptographie
53.
Dynamic Per-Link Proxying of Traffic Between Interconnects of Devices in a Fabric
Devices, networks, systems, methods, and processes for dynamically proxying traffic between interconnects of devices in a fabric are described herein. A communication network may include multiple switches, including gateway switches and non-gateway switches. Each switch can run a proxy agent for each port of the switch and for each link on each port. The switch may proxy data traffic within the communication network by utilizing the proxy agent. A non-gateway switch can send a connection request to a gateway switch to connect to an external cloud controller. The gateway switch may proxy the connection request to the external cloud controller and receive a session cookie. The non-gateway switch can establish a logical connection with the external cloud controller based on the session cookie.
Devices, networks, systems, methods, and processes for packet forwarding and routing are described herein. A network device may be connected to a host device. The network device can identify an interface associated with the host device and determine an operational status of the interface. The network device can determine a host route and assign an encapsulation index associated with the host route. The network device may generate an update message based on the operational status and the encapsulation index. The network device can transmit the update message to one or more other network devices. The network device can also update one or more routing or forwarding tables to include routing information associated with the host device. The other network devices can extract the routing information from the update message and may utilize the routing information to route or forward one or more data packets addressed to the host device.
A system for managing addresses for a device includes at least one processor; and a computer-readable storage medium storing instructions which, when executed by the at least one processor, cause the at least one processor to be configured to: receive, at a network component of a network, data regarding a device; perform analysis of the device based on the data; based on the analysis, trigger a request to an address management system for the network; reprovision, based on the request, a subscription profile for the device with a selected Internet Protocol (IP) address to be used by the device; deregister the device from the network; reconnect the device to the network; and assign and transmit the selected IP address to the device.
Systems and methods for assigning scores to objects based on evaluating triggering conditions applied to datasets produced by search queries in data aggregation and analysis systems. An example method includes causing display of a user interface for generating a correlation search comprising a search query, a triggering condition to be applied to a dataset produced by the search query, and one or more actions to be performed when the dataset produced by the search query satisfies the triggering condition. The action(s) may include modifying a score assigned to an object to which the dataset produced by the search query pertains. The example method also includes receiving, via the user interface, user input identifying the one or more actions to be performed when the dataset produced by the search query satisfies the triggering condition, and causing generation of the correlation search based on the user input.
G06F 16/2457 - Traitement des requêtes avec adaptation aux besoins de l’utilisateur
G06F 16/215 - Amélioration de la qualité des donnéesNettoyage des données, p. ex. déduplication, suppression des entrées non valides ou correction des erreurs typographiques
G06F 16/22 - IndexationStructures de données à cet effetStructures de stockage
Embodiments include generating data models that may give semantic meaning for unstructured or structured data that may include data generated and/or received by search engines, including a time series engine. A method includes generating a data model for data stored in a repository. Generating the data model includes generating an initial query string, executing the initial query string on the data, generating an initial result set based on the initial query string being executed on the data, determining one or more candidate fields from one or results of the initial result set, generating a candidate data model based on the one or more candidate fields, iteratively modifying the candidate data model until the candidate data model models the data, and using the candidate data model as the data model.
G06F 16/2457 - Traitement des requêtes avec adaptation aux besoins de l’utilisateur
G06F 16/248 - Présentation des résultats de requêtes
G06F 16/27 - Réplication, distribution ou synchronisation de données entre bases de données ou dans un système de bases de données distribuéesArchitectures de systèmes de bases de données distribuées à cet effet
G06F 16/9535 - Adaptation de la recherche basée sur les profils des utilisateurs et la personnalisation
The device includes an interface configured to enable network communications, a memory, and one or more processors coupled to the interface and the memory, and configured to: receive a message, process the message using forward error correction, in response to a predetermined condition, bypass at least some iterative calculations that are performed by the forward error correction, and output a processed message. The predetermined condition may be that all coefficients of a syndrome representative of the message are zero or that degree of a value in the iterative calculations is lower than a maximum number of errors correctable by the forward error correction. A latency resulting from the processing of the message using the forward error correction is proportional to a number of errors in the message.
H03M 13/15 - Codes cycliques, c.-à-d. décalages cycliques de mots de code produisant d'autres mots de code, p. ex. codes définis par un générateur polynomial, codes de Bose-Chaudhuri-Hocquenghen [BCH]
G06F 11/10 - Détection ou correction d'erreur par introduction de redondance dans la représentation des données, p. ex. en utilisant des codes de contrôle en ajoutant des chiffres binaires ou des symboles particuliers aux données exprimées suivant un code, p. ex. contrôle de parité, exclusion des 9 ou des 11
G06F 11/14 - Détection ou correction d'erreur dans les données par redondance dans les opérations, p. ex. en utilisant différentes séquences d'opérations aboutissant au même résultat
H03M 13/05 - Détection d'erreurs ou correction d'erreurs transmises par redondance dans la représentation des données, c.-à-d. mots de code contenant plus de chiffres que les mots source utilisant un codage par blocs, c.-à-d. un nombre prédéterminé de bits de contrôle ajouté à un nombre prédéterminé de bits d'information
60.
Computing performance analysis for spans in a microservices-based architecture
A method of computing a workload performed by a group of related spans within a microservices-based application executing in a distributed computing environment comprises aggregating a plurality of ingested spans associated with one or more applications executing in the distributed computing environment into a plurality of traces. The method also comprises retrieving a set of traces from the plurality of traces in response to a query and tracking an execution time of each respective group of related spans in the set of traces, wherein the tracking an execution time is performed for a plurality of groups. Further, the method comprises tracking a cumulative execution time for the plurality of groups and computing a workload ratio associated with each respective group of related spans using an execution time associated with a respective group and the cumulative execution time for the plurality of groups.
Systems and methods are described for improving data availability and/or resiliency of indexers of a data intake and query system. A data intake and query system can index and search large amounts of data using one or more indexers. An indexer can store a copy of the data it is processing, the results of processing the data, or a copy of the data that the indexer is assigned to search, in the shared storage system. In the event an indexer fails or is otherwise unable to search data that it has been assigned to search, a cluster master can assign one or more second indexers to search the data. The one or more second indexers can download the data from the shared storage system.
Techniques for speech bandwidth extension and denoising. The techniques integrate data-driven artificial intelligence (AI) models specifically trained to be robust to myriad of distortions. The system is capable of producing high-fidelity wideband speech from real-life narrowband inputs. The output is consistently preferred by listeners over the narrowband input, as well as over denoising alone.
G10L 21/0232 - Traitement dans le domaine fréquentiel
G10L 25/18 - Techniques d'analyse de la parole ou de la voix qui ne se limitent pas à un seul des groupes caractérisées par le type de paramètres extraits les paramètres extraits étant l’information spectrale de chaque sous-bande
G10L 25/30 - Techniques d'analyse de la parole ou de la voix qui ne se limitent pas à un seul des groupes caractérisées par la technique d’analyse utilisant des réseaux neuronaux
63.
FAULT MANAGED POWER METHOD FOR AC POWERING SYSTEMS
Techniques for alternating current (AC) powering methods deployed at a power transmitter and a power receiver for line fault detection. AC power is applied to a pair of lines at a power transmitter to transmit the AC power to a power receiver. An occurrence of a predetermined characteristic of an AC voltage waveform or an AC current waveform is detected. The AC power is disconnected from the pair of lines upon detecting occurrence of the predetermined characteristic. Fault detection is performed during a safety check time window upon disconnecting the AC power from the pair of lines. The AC power is reconnected to the pair of lines when a fault is not detected from the fault detection during the safety check time window, and the AC power is maintained disconnected from the pair of lines when a fault is detected during the safety check time window.
A method includes determining a 2D DEM for a physical environment, determining a viewshed for an access point in the physical environment using the DEM, and identifying, at the end terminal, at least one obstacle that is visible from the access point. For each point in space within the physical environment that is on a same side of the at least one obstacle as the access point: a respective first RSSI is determined, the respective first RSSI being associated with a direct LOS ray from the access point to a point in the space. A respective second RSSI for each of the at least one obstacle is determined to yield at least one second RSSI. A respective RF power based on the respective first RSSI and the at least one second RSSI is also determined, the respective RF power being used for generating a 3D heatmap for the physical environment.
G01S 5/02 - Localisation par coordination de plusieurs déterminations de direction ou de ligne de positionLocalisation par coordination de plusieurs déterminations de distance utilisant les ondes radioélectriques
Auto collection processing includes detecting an auto collection operator in a set of query instructions. The set of query instructions include a multimode field operator that executes on elements in a single field of a single event based on a collection type of the single field. Auto collection processing includes processing an event of the events according to the set of query instructions. Processing the event includes executing, by auto collection instructions, a first and second collection type field check on a field to determine whether the collection type of the field is a first collection type or a second collection type, respectively. Processing the event further includes processing, by second data mode instructions identified by the multimode field operator and based on the collection type being the second collection type, values to generate a query result. Auto collection processing further includes outputting the query result.
Techniques for delegated peer-to-peer scheduling are provided. A first peer-to-peer device determines one or more wireless channels allocated, by an access point, for peer-to-peer communication, and receives a request indicating a set of transmission characteristics from a second peer-to-peer device that uses the first peer-to-peer device as a communications proxy. The first peer-to-peer device schedules wireless resources of the one or more wireless channels to a plurality of peer-to-peer devices based at least in part on the set of transmission characteristics, and performs peer-to-peer communications with the second peer-to-peer device in accordance with the scheduled wireless resources.
Techniques for sounding for wireless communication are disclosed. These techniques include initiating staggered sounding between a plurality of wireless access points (APs) and a plurality of wireless stations (STAs), including transmitting, from each AP of the plurality of APs, a sounding trigger to a respective one or more of the plurality of STAs, where the sounding triggers are transmitted by the respective APs at staggered times. The techniques further include receiving sounding matrix data at the plurality of APs from the plurality of STA. The techniques further include modifying wireless transmission between at least one of the APs and at least one of the STAs based on the sounding matrix data.
A system and method are provided for determining, in a wireless network, true coverage holes and avoiding false positives. Between the use equipment (UEs) and the access points (APs), received signal strength indicator (RSSI) values are obtained for both the uplink (UL) path and downlink (DL) path. The UL RSSI and DL RSSI values are compared to a threshold (e.g., −80 dB), and a true coverage hole is identified when the UL RSSI and DL RSSI values are less than the threshold. False positive are identified when the UL RSSI values are less than the threshold, but the and DL RSSI values are not. The true coverage holes are mitigated by increasing the AP transmit power or by changing the locations and/or number of APs.
Devices and methods provide Media Access Control (MAC) address randomization support for multi-link devices. A multi-link client device transmits an Identifiable Random Media Access Control (IRM) address of the multi-link client device to a network device. The multi-link client device generates one or more wireless frames indicating the IRM address as a physical address. The IRM address in each wireless frame identifies at least one station of the multi-link client device. The multi-link client device transmits the wireless frame(s) to the network device. The network device receives and stores a first IRM address of the multi-link client device. The network device receives at least one wireless frame indicating a second IRM address as a physical address. The network device recognizes at least one station of the multi-link client device based on a match of the second IRM address with the first IRM address.
Techniques for improved networking are provided. An indication that a mobile device is in a region of a physical space is received, and current exogenous data is determined for the physical space. Positioning technique accuracy is predicted for each respective positioning technique of a plurality of positioning techniques by processing the identifier of the region and the current exogenous data as input to a machine learning model. A first positioning technique of the plurality of positioning techniques is selected based on the predicted positioning technique accuracies.
Techniques described herein can generate customized, user-based security response recommendations for users of security system(s), such as for security analysts tasked with performing responses to computing security threats. A user-based response recommendation engine can generate the user-based security response recommendations based on incident data associated with security incidents and based on historical user response data. Furthermore, user role inference techniques can optionally be used in conjunction with the user-based response recommendation engine.
Techniques for enabling streamlined and simplified management of connections across cloud service providers (CSPs). The teclmiques provide a new, decentralized, multi-tenanted multi-cloud mesh that utilizes cloud-specific integrations, such as cloud infrastructure templates (e.g., AWS cloud formation templates, Azure Resource Manager Templates, etc.) and virtual points of presence (vPoPs) to provide on-demand or dynamic generation and management of connections. The cloud infrastructure templates may automatically configure network elements in a cloud account of a user to enable the network elements to connect to the vPoPs within the multi-cloud mesh. The vPoPs are deployed within the multi-cloud mesh (e.g., within VPCs of different CSPs), are lightweight, multi-tenanted, and can be set up a new region hi minutes. The technique provides automated discovery and configuration of connections betw een network elements and the multi-cloud mesh, across CSPs. and management of the connections on behalf of the user.
H04L 41/0895 - Configuration de réseaux ou d’éléments virtualisés, p. ex. fonction réseau virtualisée ou des éléments du protocole OpenFlow
H04L 41/122 - Découverte ou gestion des topologies de réseau des topologies virtualisées, p. ex. les réseaux définis par logiciel [SDN] ou la virtualisation de la fonction réseau [NFV]
H04L 41/40 - Dispositions pour la maintenance, l’administration ou la gestion des réseaux de commutation de données, p. ex. des réseaux de commutation de paquets en utilisant la virtualisation des fonctions réseau ou ressources, p. ex. entités SDN ou NFV
73.
REPORTING BUFFER STATUS REPORT (BSR) INFORMATION IN A MULTI-STATION (STA) BLOCK ACKNOWLEDGEMENT (BA)
Reporting Buffer Status Report (BSR) information in Multi-Station (STA) Block Acknowledgement (BA) may be provided. A computing device may receive a Buffer Status Report Poll (BSRP) trigger frame. Next, a Multi-Station (STA) Block Acknowledgement (BA) frame may be created. The Multi-STA BA frame may comprise Buffer Status Report (BSR) information. Then, in response to receiving the BSRP trigger frame, the Multi-STA BA frame may be transmitted.
Disclosed is technology that provides an easier and more convenient method for onboarding network devices by allowing the use of user input (e.g., voice commands) to input network device and network controller configurations. The technology can receive user input and determine the intent of the user from the user input. The technology can then execute the necessary configurations and choose the appropriate controller that will provision the device onboarding configurations. Thereafter, the technology can register the device with the controller and configure the network accordingly.
In one embodiment, a method for SD-WAN tunnel resiliency in high scale networks includes maintaining a plurality of pools of resources reserved for network tunnels where the plurality of pools having a primary pool, a first backup pool for network tunnels assigned a first priority, and a second backup pool for network tunnels assigned a second priority and determining, by the process, that the primary pool contains insufficient resources to form a new network tunnel. The method further includes determining, in response to the primary pool containing insufficient resources, a priority assigned to the new network tunnel and forming, when the priority assigned to the new network tunnel meets a particular criterion, the new network tunnel by using resources from either the first backup pool or the second backup pool based on the priority assigned to the new network tunnel and whether the first backup pool or the second backup pool contain sufficient resources to form the new network tunnel.
Systems and methods for automated adaptive learning framework for large language models are provided. A method includes receiving one or more input parameters, including at least one of a user query, an automated response, or a validated response. The automated response is based on a prompt. The method further includes providing the one or more input parameters and an input analysis prompt to a first large language model, and receiving an analysis report from the first large language model. Furthermore, the method includes providing the one or more input parameters and the analysis report to one of the first large language model or a second large language model, and receiving a learned memory from one of the first large language model or the second large language model. The method also includes generating an updated prompt through memory injection of the learned memory into the prompt.
Techniques for enhancing measurement protocols to monitor bit errors in network traffic. The techniques target a sender device and reflector device exchanging test packets to detect bit errors in forward and/or reverse paths using data encoded in extra padding TLVs of the test packets. The sender device may generate a test packet, add an extra padding TLV, and encode the extra padding TLV with data of a configurable size and/or pattern. The sender device may send the test packet to the reflector device, and the reflector device may analyze the data in the extra padding TLV to detect bit errors and potentially a count of bit errors detected. In some instances, the reflector device may reset the data in the extra padding TLV, add a padding bit error count TLV, and send a reply test packet back to the sender device to detect bit errors in the reverse path.
A method is described that involves a method for application performance in a cross-domain network using multi-controller coordination. The method includes receiving a request at a first controller from an application within an enterprise network, wherein the request seeks to monitor a network path. The first controller identifies one or more additional controllers within the enterprise network capable of monitoring the network path. These additional controllers include a first one within the same domain as the first controller (first domain) and a second one within a different domain (second domain). A token, encompassing authentication details and monitoring requirements linked to the request, is sent to the second additional controller from the first domain. Subsequently, direct communication is established with a resource of the second controller, allowing monitoring of the request and its associated operation.
H04L 43/08 - Surveillance ou test en fonction de métriques spécifiques, p. ex. la qualité du service [QoS], la consommation d’énergie ou les paramètres environnementaux
Backscatter Device (BKD) onboarding may be provided. BKD onboarding may begin with an AP receiving an identifier associated with a BKD. The AP may determine to onboard the BKD and transmit to the BKD an onboarding excitation signal to request data from a memory bank of the BKD. The AP may then receive a response to the onboarding excitation signal from the BKD. The AP may verify the BKD is valid based on the identifier and the response. Finally, the AP may onboard the BKD based on verifying the BKD is valid.
Examples described herein are directed to tracking location by a positioning service. For instance, a method includes: receiving distance measurements from a first anchor device; determining a trust value associated with a path between the first anchor device and a second anchor device based on the distance measurements, wherein the trust value corresponds to whether the path is obstructed; determining a first measurement interval to measure a distance from the first anchor device to the second anchor device based on a single-sided measurement and a second measurement interval to measure the distance from the first anchor device to the second anchor device based on a double-sided measurement; and sending an anchor configuration to the first anchor device including the first measurement interval for the single-sided measurement and the second measurement interval for the double-sided measurement of the second anchor device.
According to one or more embodiments of the disclosure, an example process herein may comprise: identifying a power budget threshold to maintain existing mesh backhaul links in a mesh tree; determining an estimated power budget among potential mesh backhaul links in the mesh tree; performing a channel evaluation of each candidate channel available to establish a backhaul link in the mesh tree; and reconfiguring the mesh tree, in response to a modified power budget for the mesh tree, wherein reconfiguring is based on the estimated power budget and the channel evaluation.
H04W 52/36 - Commande de puissance d'émission [TPC Transmission power control] utilisant les limitations de la quantité totale de puissance d'émission disponible avec une plage ou un ensemble discrets de valeurs, p. ex. incrément, variation graduelle ou décalages
Techniques are described for enabling a cloud-based data intake and query system, and applications designed to interface with a data intake and query system, to use a combination of a message queuing service, an on-demand code execution service, and optionally other services and computing resources provided by a cloud provider network to orchestrate execution of a security intelligence management service in a scalable fashion. The code used to access and process data from individual external services is implemented as independently deployable packages that can be executed by an on-demand code execution service. The execution of such functions can be triggered using a message queueing service, such that the orchestration of functions used to access any number of external services can be managed by a security intelligence management service without the need to provision dedicated computing resources for the entire service.
G06F 21/57 - Certification ou préservation de plates-formes informatiques fiables, p. ex. démarrages ou arrêts sécurisés, suivis de version, contrôles de logiciel système, mises à jour sécurisées ou évaluation de vulnérabilité
G06F 9/50 - Allocation de ressources, p. ex. de l'unité centrale de traitement [UCT]
G06F 21/62 - Protection de l’accès à des données via une plate-forme, p. ex. par clés ou règles de contrôle de l’accès
Increased channel availability may be provided. A computing device may receive radio channel information comprising a radio channel to operate within and an incumbent indication indicating whether an incumbent is using the radio channel. Next, power to operate a radio at may be determined based on the incumbent indication. When the incumbent indication indicates an incumbent is present on the radio channel, determining the power to operate the radio based on the incumbent indication comprises: i) determining a first power level for subcarriers in the radio channel that are non-overlapping with a portion of the radio channel used by the incumbent; and ii) determining a second power level for subcarriers in the radio channel that are overlapping with the portion of the radio channel used by the incumbent wherein the first power level is greater than the second power level. The radio may then be operated at the determined power.
H04W 52/26 - Commande de puissance d'émission [TPC Transmission power control] le TPC étant effectué selon des paramètres spécifiques utilisant le débit de transmission ou la qualité de service [QoS Quality of Service]
H04L 5/00 - Dispositions destinées à permettre l'usage multiple de la voie de transmission
84.
Smart Utilization of Data Center Illumination Devices
Devices, systems, methods, and processes for operating illumination devices on network devices are described herein. Illumination devices, such as light-emitting diodes, on network devices can provide useful status information when being observed by a technician. However, these illumination devices are often not being looked at in large data centers. As such, energy is often wasted on powering these illumination devices. In order to avoid this wasted power usage and increase sustainability, various embodiments described herein turn off illumination devices, such as network indicator lights and overhead lights, as a default state and illuminates them in response to a specific need. This need can be in response to a work order as well as to illuminate a path form an access point of the server room to the target network device that requires work by the network technician. Dynamically engaging illumination devices associated with network devices can reduce overall power usage.
H05B 47/115 - Commande de la source lumineuse en réponse à des paramètres détectés en détectant la présence ou le mouvement d'objets ou d'êtres vivants
85.
MANAGING CONGESTION NOTIFICATIONS FOR LOW LATENCY, LOW LOSS, AND SCALABLE THROUGHPUT (L4S) DATA FLOWS
Devices and methods for managing congestion notifications for Low Latency, Low Loss, and Scalable throughput (L4S) data flows are provided. A device receives a downstream data flow including multiple downstream data packets and identifies one or more downstream L4S data packets therefrom. The device stores the downstream L4S data packet(s) in a queue and detects a congestion in downstream based on the queue. The device transmits, at a lower protocol layer, an indication of the congestion to a wireless device that is a destination of the downstream L4S data packet(s). The wireless device marks at least one downstream L4S data packet with a congestion indicator based on the indication of the congestion. Such congestion indication provides a fast congestion notification associated with the L4S data flows to facilitate a fast response to the congestion and a reduction of congestion-related packet drops at the device.
H04L 47/12 - Prévention de la congestionRécupération de la congestion
H04L 47/193 - Commande de fluxCommande de la congestion au niveau des couches au-dessus de la couche réseau au niveau de la couche de transport, p. ex. liée à TCP
H04L 47/2441 - Trafic caractérisé par des attributs spécifiques, p. ex. la priorité ou QoS en s'appuyant sur la classification des flux, p. ex. en utilisant des services intégrés [IntServ]
H04L 47/26 - Commande de fluxCommande de la congestion utilisant un retour explicite à la source, p. ex. paquets de signalisation de congestion
H04L 47/30 - Commande de fluxCommande de la congestion en combinaison avec des informations sur l'occupation de mémoires tampon à chaque extrémité ou aux nœuds de transit
H04L 47/31 - Commande de fluxCommande de la congestion par marquage de paquets, p. ex. en utilisant des bits d'éligibilité de rejet [DE]
86.
LOW LATENCY, LOW LOSS, AND SCALABLE THROUGHPUT CONGESTION SIGNALING FROM LOWER PROTOCOL LAYER TO HIGHER PROTOCOL LAYER OF NETWORK STACK
Devices, networks, systems, methods, and processes for congestion signaling in a communication network are provided herein. The congestion signaling may be performed from a lower protocol layer circuit of a network device of the communication network to a higher protocol layer circuit of the network device. The lower protocol layer circuit may maintain a Low Latency, Low Loss, and Scalable throughput (L4S) data queue. The L4S data queue may buffer one or more L4S data packets of at least one L4S data flow for transmission. The lower protocol layer circuit may further detect a congestion in the L4S data queue and transmit, to the higher protocol layer circuit, a congestion signal configured to indicate the detected congestion. The transmission of the congestion signal may enable the higher protocol layer circuit to mark one or more subsequent L4S data packets of the L4S data flow to indicate the congestion.
H04L 47/12 - Prévention de la congestionRécupération de la congestion
H04L 47/193 - Commande de fluxCommande de la congestion au niveau des couches au-dessus de la couche réseau au niveau de la couche de transport, p. ex. liée à TCP
H04L 47/2441 - Trafic caractérisé par des attributs spécifiques, p. ex. la priorité ou QoS en s'appuyant sur la classification des flux, p. ex. en utilisant des services intégrés [IntServ]
H04L 47/26 - Commande de fluxCommande de la congestion utilisant un retour explicite à la source, p. ex. paquets de signalisation de congestion
H04L 47/30 - Commande de fluxCommande de la congestion en combinaison avec des informations sur l'occupation de mémoires tampon à chaque extrémité ou aux nœuds de transit
H04L 47/31 - Commande de fluxCommande de la congestion par marquage de paquets, p. ex. en utilisant des bits d'éligibilité de rejet [DE]
87.
COORDINATED DISTRIBUTED RESOURCE UNITS FOR RATE AND RELIABILITY SUPPORT
The present disclosure provides techniques for distributed resource unit (RU) coordination. A first access point (AR) determines a plurality of first RU within a frequency channel for use in transmitting data to a client device, where the frequency channel is located within a frequency band and has a defined bandwidth. The first AR coordinates with a second AR to distribute the plurality of first RUs across the frequency channel, where the coordination avoids frequency overlap between the plurality of first RUs assigned to the first AR and a plurality of second RUs assigned to the second AR. The first AR transmits the data to the client device using the plurality of first RUs.
Techniques, which may be embodied herein as systems, computing devices, methods, algorithms, software, code, computer readable media, or the like, are described herein for generating heatmap visualizations. A heatmap visualization can be a graphical representation of data where the coordinates of a cell in the visualization can be a key that describes a group of data represented by the cell. The colors of a heatmap may indicate information about the data represented by the cell (e.g., the amount of data in the cell). These cells can be rendered by calculating a per-pixel metric rate for each dataset in the heatmap visualization and mapping a dataset's rate onto pixels within the visualization that correspond to the dataset. After this mapping, the maximum rate within the visualization can be used to determine the visualization's colors and the cells can be rendered by coloring each pixel (e.g. pixel row) in its corresponding color.
In one embodiment, the disclosure relates to a method of adjusting a current steering multiplexer. The method includes providing a first subDAC comprising a first current mode output; providing a second subDAC comprising a second current mode output; and providing a current mode multiplexer. The method may also include clocking the current mode multiplexer using a first clock signal having a first frequency; clocking the first subDAC using a second clock signal having a second frequency; clocking the second subDAC using the second clock signal, wherein the second frequency is twice the first frequency; and combining currents from the first current mode output and the second current mode output.
Techniques are provided for instantiating an authentication session with a user based on one or more authentication methods. In one embodiment, a method includes receiving, by an authentication intermediator, a login identifier for a user and requesting, by the authentication intermediator, one or more authentication methods associated with the login identifier from a centralized authentication server, wherein the one or more authentication methods are configured to authenticate the user to a system or a device via the centralized authentication server, and wherein the centralized authentication server is separate from the system or the device. The method further includes obtaining, by the authentication intermediator, the one or more authentication methods from the centralized authentication server based on the login identifier and instantiating, by the authentication intermediator, an authentication session with the user based on the one or more authentication methods.
Mimicking user traffic through components of a network to facilitate network and data testing is provided. A PCAP file for a captured data stream is generated. A test request may include testing data contained in the PCAP file via a standalone Direct Internet Access (DIA) single router or via a network-wide site-to-site environment. The data contained in the PCAP file may be routed from a PCAP replay client to the PCAP replay server both at a single router or may be routed to the PCAP replay server at a second router via a virtual private network (VPN). After the data contained in the PCAP file is routed to the PCAP replay server, the data contained in the PCAP file is routed from the PCAP replay server back to the PCAP replay client for bidirectional ping-pong interaction. A report of the processing of the PCAP file may be generated.
H04L 43/20 - Dispositions pour la surveillance ou le test de réseaux de commutation de données le système de surveillance ou les éléments surveillés étant des entités virtualisées, abstraites ou définies par logiciel, p. ex. SDN ou NFV
92.
COORDINATED DISTRIBUTED RESOURCE UNITS FOR RATE AND RELIABILITY SUPPORT
The present disclosure provides techniques for distributed resource unit (RU) coordination. A first access point (AP) determines a plurality of first RU within a frequency channel for use in transmitting data to a client device, where the frequency channel is located within a frequency band and has a defined bandwidth. The first AP coordinates with a second AP to distribute the plurality of first RUs across the frequency channel, where the coordination avoids frequency overlap between the plurality of first RUs assigned to the first AP and a plurality of second RUs assigned to the second AP. The first AP transmits the data to the client device using the plurality of first RUs.
Described herein is a technique to update an edge device deployed in a secure computing network. A repository connected to a public network stores build contents configured to update software installed on the edge device; the public network is inaccessible to devices within the secure computing environment. A second device connected to the public network acquires the build contents in a signed lockbox file. An edge device management service generates a lockbox file containing the build contents and a trusted signer outside the secure computing network signs the lockbox file. The second device connects to secure computing network and establishes communications with the edge device. The edge device verifies the signed lockbox file provided by the second device. Upon verification, the edge device extracts the contents of the signed lockbox file and updates the software installed on the edge device.
The present disclosure is directed to network traffic management and load balancing at a cloud-based secure access service accessible to remotely connected user devices. In one example, a cloud-based secure service system includes a network controller configured to receive network traffic from one or more user devices remotely connected to the controller; parse the network traffic into flow data and contextual information associated with the network traffic; determine that the network traffic is to be serviced by a target firewall service at the cloud-based secure service system based on the flow data and the contextual information; and direct the network traffic to the target firewall service to be serviced.
H04L 47/2441 - Trafic caractérisé par des attributs spécifiques, p. ex. la priorité ou QoS en s'appuyant sur la classification des flux, p. ex. en utilisant des services intégrés [IntServ]
Techniques and systems for enhancing transmit opportunity (TXOP) sharing for multi-access point coordination (MAPC) are described. An example technique includes obtaining, for each access point (AP) of a plurality of APs in a MAPC group, historical mobility information of client stations (STAs) associated with the AP. A number of the client STAs associated with each AP that satisfies a mobility criteria is determined based on the historical mobility information. A determination of whether to enable TXOP sharing is made for each AP and an indication of the determination is transmitted to the AP. Another technique includes estimating traffic demand for a first set of client STAs associated with an AP. A second set of client STAs to make available for TXOP sharing is determined. Signal strength information associated with a communication link between each client STA in the second set and the AP is transmitted.
Systems and techniques for performing transmit power control for facilitating multi-band make-before-break (MBB) roaming are described. An example technique includes identifying a first access point communicating on a first band within a first cell. A second access point communicating on a second band within a second cell neighboring the first cell is identified. A target overlap between the first band and the second band is created.
H04W 52/22 - Commande de puissance d'émission [TPC Transmission power control] le TPC étant effectué selon des paramètres spécifiques tenant compte des informations ou des instructions antérieures
H04W 52/36 - Commande de puissance d'émission [TPC Transmission power control] utilisant les limitations de la quantité totale de puissance d'émission disponible avec une plage ou un ensemble discrets de valeurs, p. ex. incrément, variation graduelle ou décalages
H04W 72/54 - Critères d’affectation ou de planification des ressources sans fil sur la base de critères de qualité
97.
PROACTIVE CONVERGENCE OF ENDPOINT REACHABILITY IN DATA CENTERS
This disclosure describes techniques and mechanisms to enable proactive convergence of endpoints in a network corresponding to virtual machine mobility scenarios. The techniques may be used individually or together to reduce convergence times and improve network security. The techniques may include proactively exchanging IP-MAC binding information between an old location and a new location of a virtual machine; (2) utilizing a route reflector and a convergence efficient flood order to update the location of the virtual machine at the old location to point to the new location; (3) proactively poisoning the route to the virtual machine at the old location; and (4) utilizing an orchestrator to proactively notify leaf(s) of reachability information of the virtual machine prior to or during migration of the virtual machine.
A Baseband Management Controller (BMC) operably coupled to a storage controller of a storage unit to determine based on a detected output, a first type of slot coupled to the BMC for emulating when attaching the storage unit of a first type, or a second type of slot for emulating when attaching the storage unit of a second type. Reading a use configuration option associated with configuring logic of the BMC for attaching either the storage unit of the first type or for attaching the storage unit of the second type. Determining whether to directly attach the storage unit of the first type based on a logic of the BMC to a processor or to indirectly attach the storage unit of a second type based on the logic of the BMC to the processor for advertising of at least one slot to be emulated as a U.2 slot.
Embodiments provide techniques for emitting structured and dynamic fields from an accelerated data model. The method comprises evaluating a query to search a data model, wherein the data model is defined by a set of events and at least one structured field from fields associated with the set of events. A summarization table is associated with the data model and comprises a plurality of entries comprising reference values, wherein a respective summarization table entry comprises: the at least one structured field; a respective field value; and a reference value. The method further comprises accessing the set of events from the field searchable data store using the reference values in the summarization table and annotating the set of events with the at least one structured field and with at least one dynamic field from the fields associated with the set of events.
Techniques for signaling, to a network controller, a connection state of a proxy for use by the network controller to correlate proxied-connections with application pairs for traffic optimization. In some examples, the techniques may include receiving, at a controller of a network, control plane information associated with a proxy that manages a proxied flow through the network. Based on the control plane information, the controller may determine that application traffic is flowing across the proxied flow between a first application and a second application. In this way, based at least in part on a policy associated with at least one of the first application or the second application, the controller may reconfigure a network element of the network for optimizing the application traffic flowing across the proxied flow.
H04L 47/2475 - Trafic caractérisé par des attributs spécifiques, p. ex. la priorité ou QoS pour la prise en charge des trafics caractérisés par le type d'applications
H04L 67/564 - Amélioration de la commande des applications basée sur des données interceptées des applications