Patent · US Active

Domain-based security policies

US8539545B2 · kind B2 · utility

24Cited by

3References

22Claims

0Family size

Assignee

Juniper Networks, Inc. · US

Inventors

Anoop V. Kartha · Sunnyvale, US
Kamil Imtiaz · San Jose, US
Ahzam Ali · Bengaluru, IN
Amarnath B. Satyan · Kanchinakote, IN
Firdousi Farozan Zackariya · Santa Clara, US
Nadeem Khan · Faisalabad, PK
Sanjay Agarwal · Nashua, US

Key dates

Filing date	Jul 22, 2010
Grant date	Sep 17, 2013
Priority date	—
Expiry date	Aug 24, 2031

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/02
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

An example network system includes a plurality of endpoint computing resources, a business policy graph of a network that includes a set of the plurality of endpoint computing resources configured as a security domain, a set of policy enforcement points (“PEPs”) configured to enforce network policies, and a network management module (“NMM”). The NMM is configured to receive an indication of a set of network policies to apply to the security domain, automatically determine a subset of PEPs of the set of PEPs are required to enforce the set of network policies based on physical network topology information readable by the NMM that includes information about the location of the endpoint computing resources and the set of PEPs within the network, and apply the network policies to the subset of PEPs in order to enforce the network policies against the set of endpoint computing resources of the security domain.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.