Patent · US Active

Intercepting network traffic routed by virtual switches for selective security processing

US10666617B2 · kind B2 · utility

2Cited by

0References

21Claims

0Family size

Assignee

ShieldX Networks, Inc. · US

Inventors

Ratinder Paul Singh Ahuja · Daly City, US
Manuel Nedbal · Santa Clara, US

Key dates

Filing date	Dec 31, 2016
Grant date	May 26, 2020
Priority date	—
Expiry date	Mar 20, 2037

Classification

Technology area (CPC H)Electricity
CPC primaryH04L12/4641
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Systems, methods, and apparatuses enable an interface microservice to intercept and filter network traffic generated by virtual machines (VMs) and routed by a virtual switch (vSwitch). A vSwitch receiving network packets from the VMs is configured to route network packets to the interface microservice via a generated VLAN trunk. The interface microservice can retrieve and apply stored packet filters to the network packets intercepted by the microservice. If an intercepted network packet matches any of the applied packet filters, the interface microservice can perform various security operations, send the network packets to another microservice for security processing, or perform any other operations. For network packets which do not match a packet filter, the interface microservice forwards the packets to the originally intended destination.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.