Patent · US Active

Network security policy enforcement using application session information and object attributes

US8214875B2 · kind B2 · utility

7Cited by

23References

43Claims

0Family size

Assignee

VMware LLC · US

Inventors

Pramod John · Hayward, US
Ai-Lan Chang · Fremont, US
Daniel J. Lassig · Castro Valley, US
Rendell K. Fong · San Jose, US
Emmanuel W. Jee · San Jose, US

Key dates

Filing date	May 24, 2006
Grant date	Jul 3, 2012
Priority date	—
Expiry date	Oct 23, 2029

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2101/663
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A packet traversing on the computer network is received; session information is generated from the packet with the session information including a client network address and a server network address; the packet is associated with at least one object attribute from the directory by using the session information; and a security policy defined for the network environment is enforced by using the session information and the object attribute(s) to determine whether the packet violates the security policy.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.