Patent · US Active

Scalable security policy architecture with segregated forwarding and security plane and hierarchical classes

US11336694B2 · kind B2 · utility

0Cited by

1References

20Claims

0Family size

Assignee

Cisco Technology, Inc. · US

Inventors

Gautam Venkataramanan · Sunnyvale, US
Umamaheswararao Karyampudi · Fremont, US
Murukanandam Panchalingam · Dublin, US
Ajay Modi · San Jose, US
Maurizio Portolani · Milpitas, US

Key dates

Filing date	Aug 5, 2019
Grant date	May 17, 2022
Priority date	—
Expiry date	Jun 29, 2040

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/20
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Techniques for hierarchical security policies are disclosed. A first network configuration is received, where the first network configuration includes a plurality of subnets and a plurality of security zones. An updated network configuration is generated based on the first network configuration by generating, for a first security zone of the plurality of security zones, a first master class, and generating, for each respective subnet of the plurality of subnets, a respective bridge domain. For each respective bridge domain, a respective local endpoint group (EPG) corresponding to the first security zone is created, and the first master class is assigned to the respective local EPG. Finally, one or more contracts are generated for the first master class based on the first network configuration.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.