Providing zero trust network security without modification of network infrastructure
US12348513B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Mar 8, 2024 |
| Grant date | Jul 1, 2025 |
| Priority date | — |
| Expiry date | Mar 8, 2044 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/166
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Zero trust network security is provided without modifying the underlying network infrastructure. A first entity at a first node in a network environment obtains an entity identifier and host certificate from a second entity installed on a second node. A determination is made as to whether the host certificate is valid based on a firewall policy and an intermediate certificate that was issued to the first entity. A determination is also made as to whether the entity identifier is valid based on a known infrastructure of the network environment. If the host certificate and entity identifier are valid, communications between the first and second entities can be allowed, while communications are blocked if at least one of the host certificate and the entity identifier is not valid.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.