Context-aware secure access service edge (SASE) engine

Assignee

• Cisco Technology, Inc. · US

Inventors

• Sebastian Jeuk · San Jose, US
• David Hanes · Lewisville, US
• Gonzalo Salgueiro · Raleigh, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L41/40
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Techniques for a context-aware secure access service edge (SASE) engine for generating security profile(s) associated with endpoint device(s) accessing the network and using the security profile(s) to evaluate a traffic flow from the endpoint device(s). The SASE engine may execute on an edge device of a computing resource network and may be configured to maintain a security profile database including an endpoint security profile mapping. Endpoint device(s) accessing the network may share endpoint, application, and/or user specific information with the SASE engine so that the SASE engine may generate a security profile specific to the endpoint, application, and/or user. Additionally, an enterprise network, associated with endpoint device(s) accessing the network, may provide default SASE security profile templates to the SASE engine. Further, a feedback loop may be established between the SASE engine and the endpoint device(s), enabling the SASE engine with the ability to autonomously and dynamically update security profiles.