Pre-routing intrusion protection for cloud based virtual computing environments
US11297106B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Jul 8, 2019 |
| Grant date | Apr 5, 2022 |
| Priority date | — |
| Expiry date | Mar 28, 2040 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/0263
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Embodiments of the present invention provide a novel and non-obvious method, system and computer program product for pre-routing network security for cloud computing. In an embodiment of the invention, a pre-routing network security method for cloud computing includes receiving in a routing component, such as a load balancer, of a cloud computing environment that includes at least two different virtualized containers, a stream of packets targeting a destination network address and, before processing the stream of packets in the routing component, diverting the stream of packets to a packet inspector executing in one of the virtualized containers. Then, only a fraction of the packets of the diverted stream of packets are received in the routing component from the packet inspector, and, the fraction of the packets are then processed in the router such that the fraction of the packets are routed to the destination network address.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.