Patent · US Active

Firewall configured with dynamic membership sets representing machine attributes

US9621516B2 · kind B2 · utility

30Cited by

7References

18Claims

0Family size

Assignee

VMware LLC · US

Inventors

Debashis Basak · San Jose, US
Rohit Toshniwal · Santa Clara, US
Allwyn Sequeira · Saratoga, US

Key dates

Filing date	Jun 24, 2009
Grant date	Apr 11, 2017
Priority date	—
Expiry date	Aug 12, 2033

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/0263
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A method is provided to control the flow of packets within a system that includes one or more computer networks comprising: policy rules are provided that set forth attribute dependent conditions for communications among machines on the one or more networks; machine attributes and corresponding machine identifiers are obtained for respective machines on the networks; and policy rules are transformed to firewall rules that include machine identifiers of machines having attributes from among the obtained machine attributes that satisfy the attribute dependent policy rules.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.