System and method for implementing network security policies on a common network infrastructure

Assignee

• HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P. · US

Inventors

• Brian Jemes · Troy, US
• John Brawn · San Jose, US
• Joseph Garcia · San Jose, US
• Michael Milligan · Palo Alto, US
• John Pape · Fort Collins, US
• Jeff Hansell · Fremont, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L2101/604
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

A secure network is provided which includes a plurality of network bubbles having a plurality of bubble partitions. Each bubble partition has at least one network device configured to transmit and receive data. All the network devices that belong to or correspond to a particular network bubble have the same network security policy. The secure network also includes a plurality of network control points, which has one or more network control point devices having at least one interface. Each bubble partition is connected to at least one network control point. The network control point is used to provide a connection between at least two network devices. Each network control point device is configured to enforce the network security policy of all the network bubbles that are connected to it. During the transmission of data from one network device to another network device, one or more network control points are traversed.