Systems and methods for automatically rendering and deploying network security policies

Assignee

• Salesforce, Inc. · US

Inventors

• Gianstefano Monni · Dublin, IE
• Jose Lejin P J · Survanagiri, IN
• Megha Dixit · Hyderabad, IN
• Prabhat Singh · Bengaluru, IN
• Praveenkumar Sowpati · Kanchinakote, IN
• Darragh Connaughton
• Dheeraj Kakkar · Kanchinakote, IN
• Aditya Suresh Kumar · Santa Clara, US
• Varun Kulkarni Somashekhar · Fremont, US
• Vamshi Karnati · San Francisco, US
• Arthur Jones · Bend, US
• Ashwin Shroff · San Jose, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/101
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Methods, systems, and devices for data processing in a computing system are described. The computing system may receive a notification of an update to network security objects hosted in diverse substrates within the computing system. The computing system may retrieve a network security policy for a service instance impacted by the update. The computing system may update the network security policy for the service instance according to a network security configuration of the hosting substrate. The computing system may translate the updated network security policy into access control lists (ACLs) for network entities managing communications between service instances within the computing system. The computing system may store the ACLs in respective data repositories that are accessible to the network entities. The computing system may transmit a notification that the ACLs are available for deployment, thereby causing the network entities to retrieve the ACLs from the respective data repositories.