System And Method For Virtual Interfaces And Advanced Smart Routing In A Global Virtual Network

Patent No. US11799687 (titled "System And Method For Virtual Interfaces And Advanced Smart Routing In A Global Virtual Network") was filed by Umbra Technologies Ltd on May 11, 2020.

’687 is related to the field of network optimization, specifically addressing the problem of inefficient routing and high latency in wide area networks (WANs) and over-the-top (OTT) internet connections. Traditional WAN optimization techniques often rely on point-to-point connections and struggle with unstable internet paths. VPNs offer encryption but lack control over traffic flow. The patent aims to provide a more robust and efficient solution for secure network optimization.

The underlying idea behind ’687 is to create a global virtual network (GVN) that intelligently routes traffic through a mesh of interconnected devices, leveraging multiple tunnels and virtual interfaces. Instead of relying on a single, potentially unreliable path, the system dynamically selects the best route based on real-time network conditions and historical performance data. This involves establishing multiple tunnels to different access points and using virtual interfaces to manage and optimize traffic flow across these tunnels.

The claims of ’687 focus on a system, method, and distributed network that utilizes virtual interfaces (VIFs) and multiple tunnels to optimize network traffic routing. Specifically, the independent claims cover determining routes to different network nodes in different geographic regions, building multiple tunnels to those nodes, establishing virtual interfaces associated with each region, connecting these VIFs sequentially to form a path, and then routing network traffic to the appropriate node based on the destination's geographic location.

In practice, the invention involves an endpoint device (EPD) that connects to access point servers (SRV_APs) through multiple tunnels. Each SRV_AP is located in a different geographic region. The EPD uses virtual interfaces to manage these tunnels and intelligently route traffic based on the destination IP address. The system continuously monitors network conditions and switches traffic between tunnels to maintain optimal performance. This dynamic routing ensures that traffic always takes the best available path, minimizing latency and packet loss.

The key differentiation from prior approaches lies in the use of virtual interfaces to abstract the complexity of managing multiple tunnels. Instead of applying routing policies to each individual tunnel, the policies are applied to the VIF, simplifying configuration and enabling faster switching between tunnels. Furthermore, the system's ability to dynamically adapt to changing network conditions and select the best route based on real-time data provides a more robust and efficient solution than traditional point-to-point WAN optimization techniques. The use of multiple tunnels in parallel, with the ability to duplicate streams during periods of high packet loss ( stormy weather mode ), further enhances reliability.

How does this patent fit in bigger picture?

Technical landscape at the time

In the mid-2010s when ’687 was filed, at a time when network optimization was typically implemented using dedicated hardware appliances or software-based VPNs, systems commonly relied on fixed point-to-point connections or tunnels with limited control over traffic routing, and when the automated construction of virtual interfaces for managing multiple network tunnels was a non-trivial task.

Novelty and Inventive Step

The claims were amended during prosecution. Arguments were presented by the applicant, but the examiner issued rejections under 35 U.S.C. 103 based on combinations of prior art. Claims 19-21 were later allowed. The prosecution record does describe the examiner's technical reasoning and specific claim changes that led to allowance.

Claims

This patent contains 20 claims, with independent claims numbered 1, 12, and 18. The independent claims are generally directed to a system, a method, and a distributed network, respectively, that involve routing network traffic through virtual interfaces associated with geographic regions. The dependent claims generally elaborate on and refine the elements and steps recited in the independent claims.

Key Claim Terms New

Definitions of key terms used in the patent claims.

Term (Source)	Support for Specification	Interpretation
First network node (Claim 1, Claim 12, Claim 18)	“A GVN is a combination of a hardware (HW) End Point Device (EPD) with installed software (SW), databases (DB) and other automated modules of the GVN system such as Neutral Application Programming Interface Mechanism (NAPIM), back channel manager, tunnel manager, and more features which connect the EPD to distributed infrastructure devices such as access point server (SRV_AP) and central server (SRV_CNTRL) within the GVN.”	A network node located in a first target geographic region of a distributed network.
Path of virtual interfaces (Claim 1, Claim 12, Claim 18)	“Logic and automation operate at the “second layer” of the GVN where the software of the GVN automatically monitors and controls the underlying routing and construct of virtual interfaces (VIF), multiple tunnels and binding of communication paths. The third and second layers of the GVN exist on top of the operational “first layer” of the GVN which interacts with the devices of the underlying Internet network.”	A sequence of connected virtual interfaces through which network traffic proceeds until the destination matches the target geographic region of one of the virtual interfaces.
Plurality of first tunnels (Claim 1, Claim 12, Claim 18)	“The GVN offers a service to provide secure, reliable, fast, stable, precise and focused concurrent connectivity over the top (OTT) of one or more regular Internet connections. These benefits are achieved through compression of data flow transiting multiple connections of wrapped, disguised and encrypted tunnels between the EPD and access point servers (SRV_AP) in close proximity to the EPD.”	Multiple tunnels providing connectivity between a first network node and a third network node, sharing one or more first routes.
Target geographic region (Claim 1, Claim 12, Claim 18)	“A Global Virtual Network (GVN) is a type of computer network over the top (OTT) of the internet providing global secure network optimization services utilizing a mesh of devices distributed around the world securely linked to each other by advanced tunnels, collaborating and communicating via Application Program Interface (API), Database (DB) replication, and other methods.”	A geographic area associated with a network node and a virtual interface within a distributed network.
Virtual interface (Claim 1, Claim 12, Claim 18)	“The GVN also allows for the automated construction of virtual interfaces (VIFs) and structures of VIFs acting as hook points for multiple tunnels. These VIFs allow for the shifting of time- and resource-intensive operations such as routing upstream to the VIF which were typically applied to tunnels.”	A logical point of access to one or more tunnels, performing operations associated with routes and tunnels.

Litigation Cases New

US Latest litigation cases involving this patent.

Case Number	Filing Date	Title
2:25-cv-00635	Jun 13, 2025	UMBRA Technologies Ltd. (UK) et al v. Palo Alto Networks, Inc.
2:25-cv-00329	Apr 2, 2025	UMBRA Technologies Ltd. UK et al v. Fortinet, Inc.
1:24-cv-01288	Nov 22, 2024	Umbra Technologies Ltd. (Uk) V. Juniper Networks, Inc.

Patent Family

File Wrapper

The dossier documents provide a comprehensive record of the patent's prosecution history - including filings, correspondence, and decisions made by patent offices - and are crucial for understanding the patent's legal journey and any challenges it may have faced during examination.

Get instant alerts for new documents

US11799687

UMBRA TECHNOLOGIES LTD

Application Number: US16872148
Filing Date: May 11, 2020
Status: Granted
Expiry Date: Apr 22, 2036
External Links: Slate, USPTO, Google Patents

IP Verse