About
Articles by Anand
-
City of Watchmakers Keeps Ticking with Next-Gen Network
City of Watchmakers Keeps Ticking with Next-Gen Network
By Anand Oswal
-
Cisco Enterprise Networking Business 2019 Year in Review
Cisco Enterprise Networking Business 2019 Year in Review
By Anand Oswal
Activity
-
A true leader or friend is a mirror that reflects not only your strengths but also your flaws back to you, giving you an honest reflection of…
A true leader or friend is a mirror that reflects not only your strengths but also your flaws back to you, giving you an honest reflection of…
Posted by Anand Oswal
-
This week NIST released its latest guidance to show government and private companies can and should move their systems to Zero Trust in order to…
This week NIST released its latest guidance to show government and private companies can and should move their systems to Zero Trust in order to…
Shared by Anand Oswal
-
🎉 Prosimo Wins Big at the CRN 2024 Tech Innovator Awards! 🏆 We're thrilled that Prosimo.io has been awarded the CRN 2024 Tech Innovator Award for…
🎉 Prosimo Wins Big at the CRN 2024 Tech Innovator Awards! 🏆 We're thrilled that Prosimo.io has been awarded the CRN 2024 Tech Innovator Award for…
Liked by Anand Oswal
Experience & Education
Patents
-
Enhanced unlicensed mobile access network architecture
Issued US US 8817696 B2
An Unlicensed Mobile Access (UMA) network architecture. In a specific embodiment, the network architecture includes a mobile station and an access point in communication with the mobile station. A UMA Controller (UNC) communicates with the access point. A Service GateWay (SGW) communicates with the UMA controller. The SGW includes functionality to route user-plane packets in the UMA. In a more specific embodiment, the functionality includes UNC user-plane functionality offloaded from the UNC to…
An Unlicensed Mobile Access (UMA) network architecture. In a specific embodiment, the network architecture includes a mobile station and an access point in communication with the mobile station. A UMA Controller (UNC) communicates with the access point. A Service GateWay (SGW) communicates with the UMA controller. The SGW includes functionality to route user-plane packets in the UMA. In a more specific embodiment, the functionality includes UNC user-plane functionality offloaded from the UNC to the SGW; Serving GPRS Support Node (SGSN) user-plane functionality; access-authentication functionality sufficient to enable the SGW to enable the SGW to bypass a legacy SGSN control plane; and/or Radio Network Controller (RNC) user-plane functionality sufficient to enable communications between the SGW and the RNC.
Other inventorsSee patent -
System and method for ensuring persistent communications between a client and an authentication server
Issued US US8555350
A system for facilitating persistent communications between entities in a network. In a specific embodiment, the system is adapted to facilitate fast reauthentication of a client performed by a server, such as an Authentication, Authorization, and Accounting (AAA) server, that is coupled to the client via a load balancer. The system includes a first message to be exchanged between the server and the client, wherein the first message includes a field identifying the server and/or the client. A…
A system for facilitating persistent communications between entities in a network. In a specific embodiment, the system is adapted to facilitate fast reauthentication of a client performed by a server, such as an Authentication, Authorization, and Accounting (AAA) server, that is coupled to the client via a load balancer. The system includes a first message to be exchanged between the server and the client, wherein the first message includes a field identifying the server and/or the client. A matching module communicates with or is otherwise incorporated within the load balancer. The matching module includes one or more routines for employing the field to selectively route the first message to the client and/or server. In a more specific embodiment, the server a fast reauthentication module adapted to append the field in the message. The field includes sub-realm information identifying the server.
Other inventorsSee patent -
Decoupling radio resource management from an access gateway
Issued US 8391153
Abstract: Particular embodiments provide an access gateway that facilitates communication between a plurality of access technologies. The access gateway facilitates data communication with an access terminal through a bearer path. A radio resource manager is configured to provide radio resource management functions for the communications. The radio resource manager is decoupled from the bearer path and provides control of radio transmission characteristics for the bearer path to the gateway…
Abstract: Particular embodiments provide an access gateway that facilitates communication between a plurality of access technologies. The access gateway facilitates data communication with an access terminal through a bearer path. A radio resource manager is configured to provide radio resource management functions for the communications. The radio resource manager is decoupled from the bearer path and provides control of radio transmission characteristics for the bearer path to the gateway. Because the radio resource manager is not in the bearer path, the access gateway may be access technology agnostic. Thus, the access gateway does not need to have access-specific modules based on the radio technology for each bearer path.
Other inventors -
System and method for implementing fast reauthentication
Issued US 8356171
A system for efficiently reauthenticating a client of a network. In a specific embodiment, the system includes an authentication server and a Security GateWay (SGW) in communication with the client. The SGW includes reauthentication information associated with the client. In a more specific embodiment, the authentication server includes an Authentication, Authorization, and Accounting (AAA) server. The SGW further includes one or more routines for employing the reauthentication information to…
A system for efficiently reauthenticating a client of a network. In a specific embodiment, the system includes an authentication server and a Security GateWay (SGW) in communication with the client. The SGW includes reauthentication information associated with the client. In a more specific embodiment, the authentication server includes an Authentication, Authorization, and Accounting (AAA) server. The SGW further includes one or more routines for employing the reauthentication information to reauthenticate the client. The AAA server performs initial authentication of the client to enable client access to the network, which yields the reauthentication information. The reauthentication information includes one or more keys and/or counters, such as an authorization key, an encryption key, and a master key, which is/are predetermined by the AAA server.
Other inventorsSee patent -
System and method employing strategic communications between a network controller and a security gateway
Issued US 8,315,246
A system for enhancing functionality of a network. In a specific embodiment, the system employs strategic communications between a network controller and a security gateway. The strategic communications occur via a feedback communications channel between the network controller and the security gateway. The feedback communications channel facilitates transferring security information, such as International Mobile Subscriber Identity (IMSI) and other information, between the network controller…
A system for enhancing functionality of a network. In a specific embodiment, the system employs strategic communications between a network controller and a security gateway. The strategic communications occur via a feedback communications channel between the network controller and the security gateway. The feedback communications channel facilitates transferring security information, such as International Mobile Subscriber Identity (IMSI) and other information, between the network controller and the security gateway. The security information may facilitate enabling the SGW to make intelligent decisions as to how to treat a client communications session. In the specific embodiment, the feedback communications channel includes an intervening Authentication, Authorization, and Accounting (AAA) server that is coupled between the UMA and the network controller.
Other inventors -
Blacklisting of unlicensed mobile access (UMA) users via AAA
Issued US 8,064,882
In one embodiment, while being connected to the network, a security issue may be detected and associated with the device. The device may be placed on a blacklist for the security issue. The blacklist is a list that is used to deny service for the device when it attempts to connect. Thus, the device is disconnected from the network. Identification information for the device is added to the blacklist at the authentication server. If the device attempts to reconnect to the network, the request is…
In one embodiment, while being connected to the network, a security issue may be detected and associated with the device. The device may be placed on a blacklist for the security issue. The blacklist is a list that is used to deny service for the device when it attempts to connect. Thus, the device is disconnected from the network. Identification information for the device is added to the blacklist at the authentication server. If the device attempts to reconnect to the network, the request is received at the authentication server. The authentication server can then check the blacklist and deny the request for access to the network if the identification information is on the blacklist. This denial is determined without sending the request to the HLR. Accordingly, the HLR is protected in that requests from a device that may be considered a security issue are not sent to the HLR.
Other inventorsSee patent -
P-GANC offload of URR discovery messages to a security gateway
Issued US 8,018,948
In one embodiment, a security gateway receives an IPSec Initiation (IPSec INIT) request from a client. The security gateway may communicate with a AAA server to authenticate the client. After authentication, the security gateway intercepts a URR Discovery request from the client. The security gateway determines registration information for a response to the registration request. The registration information may be information on where the client can locate a D-GANC. A response is generated…
In one embodiment, a security gateway receives an IPSec Initiation (IPSec INIT) request from a client. The security gateway may communicate with a AAA server to authenticate the client. After authentication, the security gateway intercepts a URR Discovery request from the client. The security gateway determines registration information for a response to the registration request. The registration information may be information on where the client can locate a D-GANC. A response is generated using the determined information and sent to the client. The response to the discovery request is performed without communicating with a P-GANC. Accordingly, a security gateway is used to authenticate the client and also to respond to the discovery request. This does not require that a P-GANC function be deployed in a network. Thus, cost and processing power may be saved.
Other inventorsSee patent -
System and method for access authentication in a mobile wireless network
Issued US 7715562
Abstract: A system and method is provided for authenticating access in a mobile wireless network. The system and method comprise exchanging an extensible authentication protocol (EAP) packet with an access terminal over a high rate packet data radio link and a signaling interface through a radio access network, encapsulating the EAP packet in an authentication authorization and accounting (AAA) packet, and sending the AAA packet to an authentication server for authentication.
Other inventors -
System and method for server farm resource allocation
Issued US 7,640,023
Techniques and systems for server farm load balancing and resource allocation are disclosed. In one embodiment, a method of load balancing can include: arranging servers into service groups; receiving an access request with information related to a differentiation between the service groups; selecting one of the service groups based on a mapping comparison to the information; and selecting one of the servers within the selected service group based on a hardware utilization comparison. The…
Techniques and systems for server farm load balancing and resource allocation are disclosed. In one embodiment, a method of load balancing can include: arranging servers into service groups; receiving an access request with information related to a differentiation between the service groups; selecting one of the service groups based on a mapping comparison to the information; and selecting one of the servers within the selected service group based on a hardware utilization comparison. The servers can include GPRS (General Packet Radio Service) Gateway Support Node (GGSN) or Remote Authentication Dial In User Service (RADIUS) servers, for example. The information can include an Access Point Name (APN) or Calling Station ID, for example.
Other inventorsSee patent -
ROUTING OF CALLS TO CORE NETWORK BASED ON THE LOCATION OF THE FEMTO CELL
Issued US 12564034
A femto gateway maintains information about the location of femto cells and areas served by mobile switching centers. The gateway maintains a mapping so that it selects a desired mobile switching center (MSC) and SGSN that is likely to be used if the user equipment leaves the coverage area of the femto cell and enters a macro cell or vice versa.
Other inventorsSee patent -
Local routing of voice calls by a femto gateway
Issued US 12563898
A femto gateway (GW) can be used to connect a user through a femto cell to a mobile switching center (MSC), and then to other users. A single gateway can serve a number of femto cells, which can serve a campus or a community. If all calls within such a campus or community have go to a MSC for switching, considerable core network resources can be utilized.
As disclosed here, a femto GW can enable local routing of voice calls at the femto gateway (GW), thereby reducing the amount of costly…A femto gateway (GW) can be used to connect a user through a femto cell to a mobile switching center (MSC), and then to other users. A single gateway can serve a number of femto cells, which can serve a campus or a community. If all calls within such a campus or community have go to a MSC for switching, considerable core network resources can be utilized.
As disclosed here, a femto GW can enable local routing of voice calls at the femto gateway (GW), thereby reducing the amount of costly switching of calls required at the MSC, and reducing core network traffic. Local routing can also lead to better quality of service and more innovative service plans can be provided to subscribers; for example, there can be zero cost of calls within a closed subscriber group (CSG) or in a particular region. By not reserving costly bearer towards the MSC from the femto GW or adding the overhead of switching at the MSC for these local calls, one can provide cheaper push-to-talk/local exchange functionality.Other inventorsSee patent -
Enhanced unlicensed mobile access network architecture
Issued US US 11/439,010
-
Dynamic acceleration of prioritized mobile application traffic
Filed US 982309
In one embodiment, a method for the prioritized transmission of messages includes monitoring
a network link of a mobile device to determine performance characteristics of the network
link, establishing a network association between the mobile device and a routing network
node, receiving a connection request from an application that is directed to a connection
between the mobile device and a destination server, determining a relative priority of the
connection, mapping the…In one embodiment, a method for the prioritized transmission of messages includes monitoring
a network link of a mobile device to determine performance characteristics of the network
link, establishing a network association between the mobile device and a routing network
node, receiving a connection request from an application that is directed to a connection
between the mobile device and a destination server, determining a relative priority of the
connection, mapping the connection to a stream of the network association that is associated
with the relative priority of the connection and identifies the destination server, and
transmitting messages for the stream to the routing network node interlaced with messages of
other streams of the network association based on the performance characteristics of the
network link and the relative priority associated with the stream in comparison to relative
priorities associated with the other streams of the network association.Other inventors -
Network driven mobile application acceleration in wireless networks
Filed US 983933
Abstract
In one embodiment, a method comprises obtaining, by a client device via a wireless data
link with a wireless access point, information from a network device within a data network
reachable via the wireless access point, the information describing network conditions associated
with a service provided to the client device via the data network; and the client device optimizing
5 a transmission control protocol (TCP) communication, via the wireless data link, for…Abstract
In one embodiment, a method comprises obtaining, by a client device via a wireless data
link with a wireless access point, information from a network device within a data network
reachable via the wireless access point, the information describing network conditions associated
with a service provided to the client device via the data network; and the client device optimizing
5 a transmission control protocol (TCP) communication, via the wireless data link, for
optimization of the service provided by the client device.
Other inventors -
Location aware conferencing system and method
US 9,020,109
Languages
-
English, German
-
Recommendations received
7 people have recommended Anand
Join now to viewMore activity by Anand
-
⭐ I am thrilled to announce that Prisma Cloud by Palo Alto Networks AI-SPM is now generally available! Organizations facing challenges in managing…
⭐ I am thrilled to announce that Prisma Cloud by Palo Alto Networks AI-SPM is now generally available! Organizations facing challenges in managing…
Liked by Anand Oswal
-
Proud to share that our Strata by Palo Alto Networks team has been recognized with the 2024 CRN-Media Tech Innovator Awards in the Network Security -…
Proud to share that our Strata by Palo Alto Networks team has been recognized with the 2024 CRN-Media Tech Innovator Awards in the Network Security -…
Shared by Anand Oswal
-
After an enriching tenure at Zscaler where I spearheaded the design and development of the Zscaler App to App Micro-segmentation Service, I am…
After an enriching tenure at Zscaler where I spearheaded the design and development of the Zscaler App to App Micro-segmentation Service, I am…
Liked by Anand Oswal
-
When it comes to protecting businesses’ use of AI, I look at it in three broad use cases: 1. How are we using AI to secure our customers’…
When it comes to protecting businesses’ use of AI, I look at it in three broad use cases: 1. How are we using AI to secure our customers’…
Shared by Anand Oswal
-
Thrilled to share I am starting a new position at Microsoft. In this new role, my team and I get to help customers adopt AI Copilots & Dynamics 365…
Thrilled to share I am starting a new position at Microsoft. In this new role, my team and I get to help customers adopt AI Copilots & Dynamics 365…
Liked by Anand Oswal
-
As my summer at Palo Alto Networks comes to an end, I want to take a second to thank everyone who made my time there incredibly special. My team…
As my summer at Palo Alto Networks comes to an end, I want to take a second to thank everyone who made my time there incredibly special. My team…
Liked by Anand Oswal
-
Culture is a behavior when no one is watching you. #saturdaythoughts
Culture is a behavior when no one is watching you. #saturdaythoughts
Posted by Anand Oswal
Other similar profiles
Explore collaborative articles
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
Explore MoreOthers named Anand Oswal
-
Anand Oswal
-
Anand Oswal
Senior Manager Human Resource & Administration
-
Anand Oswal
sr manager qa and env at Asian Paints
-
Anand Oswal
.
13 others named Anand Oswal are on LinkedIn
See others named Anand Oswal