Patent · US Active

Endpoint-assisted access control for network security devices

US11711342B2 · kind B2 · utility

0Cited by

4References

20Claims

0Family size

Assignee

Cisco Technology, Inc. · US

Inventors

Andrew E. Ossipov · Richardson, US
Aaron T. Woland · Waxhaw, US

Key dates

Filing date	Jan 17, 2020
Grant date	Jul 25, 2023
Priority date	—
Expiry date	Jul 16, 2040

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/20
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A network security device has at least one Fully Qualified Domain Name (FQDN) access policy that permits traffic to flow to at least one resource associated with at least one FQDN. The network security device receives, from a managed endpoint device, a packet directed to the at least one resource associated with the at least one FQDN. The network security device obtains DNS information associated with the managed endpoint device and, based on the domain name system (DNS) information, substitutes a network address of the at least one resource into the at least one FQDN access policy to open a traffic flow to the at least one resource associated with the at least one FQDN. The network security device then provides the packet to the at least one resource associated with the at least one FQDN.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.