Patent · US Active

Network privilege manager for a dynamically programmable computer network

US10116696B2 · kind B2 · utility

2Cited by

0References

25Claims

0Family size

Assignee

SRI International · US

Inventors

Phillip A. Porras · Menlo Park, US
Kenneth C. Nitz · Redwood City, US

Key dates

Filing date	Jul 2, 2014
Grant date	Oct 30, 2018
Priority date	—
Expiry date	Apr 25, 2035

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/126
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A network security policy may be implemented at network switches as a set of active packet disposition directives. In a dynamically programmable network, the network switches can be dynamically reprogrammed with new packet disposition directives. An event auditor passively monitors network traffic and provides network activity data indicative of network flows to a network privilege manager. The network privilege manager determines a current network context based on the network activity data. In response to the current network context, the network privilege manager selects a security policy and generates one or more flow policy directives in accordance with the selected policy.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.