Patent · US Active

Reuse of groups in security policy

US12015591B2 · kind B2 · utility

0Cited by

70References

18Claims

0Family size

Assignee

VMware LLC · US

Inventors

Kavya Kambi Ravi · Santa Clara, US
Radha Popuri · Santa Clara, US
Sunitha Krishna · Palo Alto, US
Margaret Petrus · San Jose, US
Yiwei Zhang · Zhejiang, CN

Key dates

Filing date	Dec 6, 2021
Grant date	Jun 18, 2024
Priority date	—
Expiry date	Dec 7, 2042

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/20
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Some embodiments provide a method for modifying a firewall rule of a security policy implemented in a network. The method identifies a set of compute machines to be added to a match condition for the firewall rule. The match condition is expressed using one or more groups of compute machines. The method selects a set of groups for the identified set of compute machines from a plurality of existing groups of compute machines based on a user-specified threshold indicating tolerance for inclusion of compute machines that are not in the identified set of compute machines in the selected groups. The method uses the selected set of groups for the match condition of the firewall rule.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.