Distributed software defined networking
First Claim
Patent Images
1. A system for processing data packets in a mobile data wireless network, the system comprising:
- a programmable network device hosting a plurality of first network applications and located at a wireless edge of the mobile data wireless network;
a programmable cloud device hosting a plurality of second network applications and located in a core of the mobile data wireless network;
wherein at least one of the plurality of first network applications in the programmable network device and at least one of the plurality of second network applications in the programmable cloud device are in secure communication with each other to form a distributed application;
the programmable network device is powered by a sandboxing operating system which facilitates deployment of the plurality of first network applications independent of hardware vendor associated with the programmable network device, and facilitates hot upgrade of the plurality of first network applications with substantially no interruption to operation of the programmable network device;
wherein the programmable network device verifies authenticity and integrity of upgrades to the plurality of first network applications and the programmable cloud device verifies the authenticity and integrity of upgrades to the plurality of second network applications and wherein the verification is based on unique security keys associated with each of the plurality of first and second network applications;
wherein the programmable network device and the programmable cloud device form unified capabilities using a plurality of application programming interfaces (APIs) wherein the APIs accessible to each of the plurality of the first network applications and the plurality of second network applications are determined based on a respective access level associated with each of the plurality of first and second network applications;
an application repository storing distributed applications which have been tested and certified for installation in the programmable network device and programmable cloud device; and
an application management portal coupled to the programmable network device, the programmable cloud device and the application repository, wherein the application management portal presents a user interface to manage provisioning, usage and de-provisioning of the distributed applications on the programmable network device and the programmable cloud device.
4 Assignments
0 Petitions
Accused Products
Abstract
The Distributed Software Defined Network (dSDN) disclosed herein is an end-to-end architecture that enables secure and flexible programmability across a network with full lifecycle management of services and infrastructure applications (fxDeviceApp). The dSDN also harmonizes application deployment across the network independent of the hardware vendor. As a result, the dSDN simplifies the network deployment lifecycle from concept to design to implementation to decommissioning.
132 Citations
21 Claims
-
1. A system for processing data packets in a mobile data wireless network, the system comprising:
-
a programmable network device hosting a plurality of first network applications and located at a wireless edge of the mobile data wireless network; a programmable cloud device hosting a plurality of second network applications and located in a core of the mobile data wireless network; wherein at least one of the plurality of first network applications in the programmable network device and at least one of the plurality of second network applications in the programmable cloud device are in secure communication with each other to form a distributed application; the programmable network device is powered by a sandboxing operating system which facilitates deployment of the plurality of first network applications independent of hardware vendor associated with the programmable network device, and facilitates hot upgrade of the plurality of first network applications with substantially no interruption to operation of the programmable network device; wherein the programmable network device verifies authenticity and integrity of upgrades to the plurality of first network applications and the programmable cloud device verifies the authenticity and integrity of upgrades to the plurality of second network applications and wherein the verification is based on unique security keys associated with each of the plurality of first and second network applications; wherein the programmable network device and the programmable cloud device form unified capabilities using a plurality of application programming interfaces (APIs) wherein the APIs accessible to each of the plurality of the first network applications and the plurality of second network applications are determined based on a respective access level associated with each of the plurality of first and second network applications; an application repository storing distributed applications which have been tested and certified for installation in the programmable network device and programmable cloud device; and an application management portal coupled to the programmable network device, the programmable cloud device and the application repository, wherein the application management portal presents a user interface to manage provisioning, usage and de-provisioning of the distributed applications on the programmable network device and the programmable cloud device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A system for processing data packets in a mobile data wireless network, the system comprising:
-
a programmable network device processing data flows, hosting at least one of a plurality of first network applications and located at a wireless edge of the mobile data wireless network; a programmable cloud device having a plurality of virtual machines wherein at least one of the virtual machines hosts at least one of a plurality of second network applications and wherein the programmable cloud device is located in a core of the mobile data wireless network; wherein the at least one of the plurality of first network applications and the at least one of the plurality of second network applications are in secure communication to form a distributed application; the programmable network device is powered by a sandboxing operating system which facilitates deployment of the plurality of first network applications independent of hardware vendor associated with the programmable network device, and facilitates hot upgrade of the plurality of first network applications with substantially no interruption to operation of the programmable network device; wherein the programmable network device verifies authenticity and integrity of upgrades to the plurality of first network applications and the programmable cloud device verifies the authenticity and integrity of upgrades to the plurality of second network applications and wherein the verification is based on unique security keys associated with each of the plurality of first and second network applications; wherein the programmable network device and the programmable cloud device form unified capabilities using a plurality of application programming interfaces (APIs) wherein the APIs accessible to each of the plurality of the first network applications and the plurality of second network applications are determined based on a respective access level associated with each of the plurality of first and second network applications; an application repository storing distributed applications which have been tested and certified for installation in the programmable network device and programmable cloud device; and an application management portal coupled to the programmable network device, the programmable cloud device and the application repository, wherein the application management portal presents a user interface to manage provisioning, usage and de-provisioning of the distributed applications on the programmable network device and programmable cloud device.
-
-
19. A system for processing data packets in a mobile data wireless network, the system comprising:
-
a programmable network device processing data flows, hosting at least one of a plurality of first network applications and located at a wireless edge of the mobile data wireless network; a programmable cloud device partitioned into a plurality of zones, wherein at least one of the plurality of zones hosts at least one of a plurality of second network applications and wherein the programmable cloud device is located in a core of the mobile data wireless network; wherein the at least one of the plurality of first network applications and the at least one of the plurality of second network applications are in secure communication to form a distributed application; the programmable network device is powered by a sandboxing operating system which facilitates deployment of the plurality of first network applications independent of hardware vendor associated with the programmable network device, and facilitates hot upgrade of the plurality of first network applications with substantially no interruption to operation of the programmable network device; wherein the programmable network device verifies authenticity and integrity of upgrades to the plurality of first network applications and the programmable cloud device verifies the authenticity and integrity of upgrades to the plurality of second network applications and wherein the verification is based on unique security keys associated with each of the plurality of first and second network applications; wherein the programmable network device and the programmable cloud device form unified capabilities using a plurality of application programming interfaces (APIs) wherein the APIs accessible to each of the plurality of the first network applications and the plurality of second network applications are determined based on a respective access level associated with each of the plurality of first and second network applications; an application repository storing distributed applications which have been tested and certified for installation in the programmable network device and programmable cloud device; and an application management portal coupled to the programmable network device, the programmable cloud device and the application repository, wherein the application management portal presents a user interface to manage provisioning, usage and de-provisioning of the distributed applications on the programmable network device and the programmable cloud device.
-
-
20. A method of processing data packets in a mobile data wireless network, the method comprising:
-
establishing secure communications between distributed applications comprising at least one of a plurality of first network applications hosted by a programmable network device located at a wireless edge of the mobile data wireless network and at least one of a plurality of second network applications hosted by a programmable cloud device located in a core of the mobile data wireless network; powering the programmable network device by a sandboxing operating system; facilitating by the sandboxing operating systems, deployment of the plurality of first network applications independent of hardware vendor associated with the programmable network device; facilitating by the sandboxing operating system, hot upgrade of the plurality of first network applications with substantially no interruption to operation of the programmable network device; verifying the authenticity and integrity of upgrades to the plurality of first network applications by the programmable network device and verifying the authenticity and integrity of the plurality of second network applications by the programmable cloud device, wherein the verifications are based on unique security keys associated with each one of the plurality of first and second network applications; forming unified capabilities by the programmable network device and programmable cloud device using a plurality of application programming interfaces (APIs) wherein the APIs accessible to each of the plurality of first network applications and the plurality of second network applications are determined based on a respective access level associated with each of the plurality of first and second network applications; storing the distributed applications in an application repository, wherein the distributed applications have been tested and certified for installation in the programmable network device and the programmable cloud device; and presenting a user-interface of an application management portal to manage provisioning, usage and de-provisioning of the distributed applications on the programmable network device and programmable cloud device, wherein the application management portal is coupled to the programmable network device, the programmable cloud device and the application repository.
-
-
21. A system for processing data packets in a mobile data wireless network, the system comprising:
-
a plurality of programmable network devices hosting a plurality of first network applications and located at a wireless edge of the mobile data wireless network; a plurality of programmable cloud devices hosting a plurality of second network applications and located in a core of the mobile data wireless network; wherein at least one of the plurality of first network applications in at least one of the plurality of programmable network devices and at least one of the plurality of second network applications in at least one of the plurality of programmable cloud devices are in secure communication with each other to form a distributed applications; wherein the plurality of programmable network devices are each powered by a sandboxing operating system which facilitates deployment of the plurality of first network applications independent of hardware vendors associated with the plurality of programmable network devices, and facilitates hot upgrade of the plurality of first network applications with substantially no interruption to operation of the plurality of programmable network devices; wherein the plurality of programmable network devices verify authenticity and integrity of upgrades to the plurality of first network applications and the plurality of programmable cloud devices verify authenticity and integrity of upgrades to the plurality of second network applications and wherein the verification is based on unique security keys associated with each of the plurality of first and second network applications; wherein the plurality of programmable network devices and the plurality of programmable cloud devices form unified capabilities using a plurality of application programming interfaces (APIs) wherein the APIs accessible to each of the plurality of the first network applications and the plurality of second network applications are determined based on a respective access level associated with each of the plurality of first and second network applications; an application repository storing distributed applications which have been tested and certified for installation in the plurality of programmable network devices and the plurality of programmable cloud devices; and an application management portal coupled to the plurality of programmable network devices, the plurality of programmable cloud devices and the application repository, wherein the application management portal presents a user interface to manage provisioning, usage and de-provisioning of the distributed applications on the plurality of programmable network devices and the plurality of programmable cloud devices.
-
Specification