Example network devices, systems, and methods are disclosed. In an example, a network device includes memory configured to store information associated with one or more service level agreements (SLAs) for applications in a software-defined wide area network (SD-WAN) and an application-based multipath routing (AMR) module including processing circuitry. The AMR module is configured to identify, based on criteria, one or more of the applications for AMR, wherein each criterion of the criteria is associated with a corresponding property of an application. The AMR module is configured to determine a breach of one of the SLAs on each WAN link associated with a first application of the identified one or more applications. The AMR module is configured to apply, in response to determining the breach, AMR for the first application.

A system and a method are for routing data packets from or to at least one electronic control unit, referred to as outgoing packets or incoming packets respectively. The at least one electronic control unit is connected to a communications system via a first interface. The communications system is connected via a second interface to a modem suitable for transferring the outgoing packets and the incoming packets to or respectively from at least one telecommunications network through a plurality of access points. Each access point is secured or unsecured. The outgoing and incoming packets are processed according to the type of access point by which the packets are transferred to or from the at least one telecommunications network.

a computing system that receives and stores configuration information for the application in a data store. The configuration information comprises (1) identifiers for a plurality of cells of the application that include at least a primary cell and a secondary cell, (2) a defined state for each of the plurality of cells, (3) one or more dependencies for the application, and (4) a failover workflow defining actions to take in a failover event. The computing system receives an indication, from a customer, of a change in state of the primary cell or a request to initiate the failover event. The computing system updates, in the data store, the states for corresponding cells of the plurality of cells based on the failover workflow and updates, in the data store, the one or more dependencies for the application based on the failover workflow.

a computing system that receives and stores configuration information for the application in a data store. The configuration information comprises (1) identifiers for a plurality of cells of the application that include at least a primary cell and a secondary cell, (2) a defined state for each of the plurality of cells, (3) one or more dependencies for the application, and (4) a failover workflow defining actions to take in a failover event. The computing system receives an indication, from a customer, of a change in state of the primary cell or a request to initiate the failover event. The computing system updates, in the data store, the states for corresponding cells of the plurality of cells based on the failover workflow and updates, in the data store, the one or more dependencies for the application based on the failover workflow.

Techniques are disclosed relating to implementing inter-application communication in a peer-to-peer fashion via a lease-based central registry. The central registry is configured to maintain application-layer routing information and to perform load balancing of the inter-application communication. A first application of a plurality of applications may send a lease request identifying the second application to the central registry. The first application receives a lease response that identifies a specific instance of a second application within a plurality of computing nodes and includes a resource allocation defining one or more limits on inter-application communication that the first application is permitted to perform with the specific instance of the second application. Based at least in part on the lease response, the first application performs inter-application communication directly with the specific instance of the second application subject to the one or more limits without requiring routing of the inter-application communication by another entity.

Device group partitions and a settlement platform are provided. In some embodiments, device group partitions (e.g., partitions of devices based on associated device groups) are provided. In some embodiments, a settlement platform service is provided. In some embodiments, a settlement platform service is provided for partitioned devices. In some embodiments, collecting device generated service usage information for one or more devices in wireless communication on a wireless network; and aggregating the device generated service usage information for a settlement platform for the one or more devices in wireless communication on the wireless network is provided. In some embodiments, a settlement platform implements a service billing allocation and/or a service/transactional revenue share among one or more partners. In some embodiments, service usage information includes micro-CDRs, which are used for CDR mediation or reconciliation that provides for service usage accounting on any device activity that is desired. In some embodiments, each device activity that is desired to be associated with a billing event is assigned a micro-CDR transaction code, and a service processor of the device is programmed to account for that activity associated with that transaction code. In some embodiments, a service processor executing on a wireless communications device periodically reports (e.g., during each heartbeat or based on any other periodic, push, and/or pull communication technique(s)) micro-CDR usage measures to, for example, a service controller or some other network element for CDR mediation or reconciliation.

Device group partitions and a settlement platform are provided. In some embodiments, device group partitions (e.g., partitions of devices based on associated device groups) are provided. In some embodiments, a settlement platform service is provided. In some embodiments, a settlement platform service is provided for partitioned devices. In some embodiments, collecting device generated service usage information for one or more devices in wireless communication on a wireless network; and aggregating the device generated service usage information for a settlement platform for the one or more devices in wireless communication on the wireless network is provided. In some embodiments, a settlement platform implements a service billing allocation and/or a service/transactional revenue share among one or more partners. In some embodiments, service usage information includes micro-CDRs, which are used for CDR mediation or reconciliation that provides for service usage accounting on any device activity that is desired. In some embodiments, each device activity that is desired to be associated with a billing event is assigned a micro-CDR transaction code, and a service processor of the device is programmed to account for that activity associated with that transaction code. In some embodiments, a service processor executing on a wireless communications device periodically reports (e.g., during each heartbeat or based on any other periodic, push, and/or pull communication technique(s)) micro-CDR usage measures to, for example, a service controller or some other network element for CDR mediation or reconciliation.

The present invention relates to methods and apparatus for reducing delay while providing secure communications between nodes. An exemplary method embodiment includes a first node performing the steps of: identifying packets corresponding to a first communications session, the first communications session corresponding to a first application type; segmenting at least a first packet corresponding to the first communications session into at least a first packet portion and a second packet portion, the first packet including a first packet header and a first packet payload, the first packet portion including at least a portion of the first packet header, the second packet portion including at least a portion of the first packet payload; communicating, in encrypted form, the first packet portion from the first node to a security function node; and communicating, in unencrypted form, the second packet portion from the first node to the security function node.

A traffic classification method and apparatus, a training method and apparatus, a device and a medium are provided. An implementation is: performing a preprocessing operation on each characteristic of one or more characteristics of an object to be classified; and inputting the one or more characteristics of the object to be classified into a traffic classifier to determine a traffic type of the object to be classified. The preprocessing operation includes at least one of: setting, in response to determining that a characteristic value of the characteristic is invalid data, the characteristic value to a null value; converting, in response to determining that the characteristic is a non-numeric characteristic, the characteristic value of the characteristic to an integer value, and normalizing, in response to determining that the characteristic is a non-port characteristic, the characteristic value of the characteristic.

A traffic classification method and apparatus, a training method and apparatus, a device and a medium are provided. An implementation is: performing a preprocessing operation on each characteristic of one or more characteristics of an object to be classified; and inputting the one or more characteristics of the object to be classified into a traffic classifier to determine a traffic type of the object to be classified. The preprocessing operation includes at least one of: setting, in response to determining that a characteristic value of the characteristic is invalid data, the characteristic value to a null value; converting, in response to determining that the characteristic is a non-numeric characteristic, the characteristic value of the characteristic to an integer value, and normalizing, in response to determining that the characteristic is a non-port characteristic, the characteristic value of the characteristic.