Patent · US Active

Isolated network stack to manage security for virtual machines

US10938837B2 · kind B2 · utility

9Cited by

43References

20Claims

0Family size

Assignee

Nicira, Inc. · US

Inventor

Vasantha Kumar · Viralimalai, IN

Key dates

Filing date	Jan 31, 2017
Grant date	Mar 2, 2021
Priority date	—
Expiry date	Jul 18, 2037

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/20
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Some embodiments provide a novel method for monitoring network requests from a machine. The method captures the network request at various layers of a protocol stack. At a first layer of a protocol stack, the method tags a packet related to the network request with a tag value, maps the tag value to a set of tuples associated with the packet, and sends a first set of data related to the packet to a security engine. At a second layer of the network stack, the method determines whether the packet has been modified through the network stack, and sends an updated second set of data to the security engine when the packet has been modified.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.