中科微点-全球专利检索

  1. Login
  2. Sign Up

Search Results

2 records (took 0.025 seconds)

    CLOUD WORKLOAD IMPORT INTO SD-WAN POLICY
    1.
    发明申请
    CLOUD WORKLOAD IMPORT INTO SD-WAN POLICY 有权

    公开(公告)号:US20250030743A1

    公开(公告)日:2025-01-23

    申请号:US18356937

    申请日:2023-07-21

    Applicant: Cisco Technology, Inc.

    Inventor: Balaji Sundararajan Kannan Kumar Madhu Somu Ramakumara Kariyappa Kushal A Patel Vishnuprasad Raghavan Deepthi Tammireddy

    IPC: H04L9/40 H04L43/062

    Abstract: Methods and systems are described herein for dynamically applying a security policy based on one or more tag attributes. The method comprises receiving, at a network controller, information about an instance of a cloud workload instantiated at a cloud provider. The cloud workload is associated with a tag attribute. The method further comprises querying the cloud provider for at least one IP address associated with the tag attribute and learning the at least one IP address associated with the tag attribute, including the IP address for the instance of the cloud workload. The method further comprises associating a security policy with the at least one IP address associated with the tag attribute and propagating the security policy to at least one edge router for implementation.

    DYNAMIC SECURITY FOR FABRIC NETWORKS
    2.
    发明公开
    DYNAMIC SECURITY FOR FABRIC NETWORKS 审中-公开

    公开(公告)号:US20240303336A1

    公开(公告)日:2024-09-12

    申请号:US18180807

    申请日:2023-03-08

    Applicant: Cisco Technology, Inc.

    Inventor: Deepthi Tammireddy Shilpa Avinash Sodani Vishnuprasad Raghavan Hongqing Li

    IPC: G06F21/56 G06F21/55 H04L9/40

    CPC classification number: G06F21/566 G06F21/552 H04L63/1408 H04L63/20

    Abstract: A method of protecting networks may include detecting a compromised computing device associated with a security event generated by a unified security policy from a plurality of sites within a network. A context of the compromised computing device may be extracted. The context may be propagated to a controller. The method may further include fetching from an identity services engine (ISE), user identity associated with the compromised computing device, and provisioning the controller with a dynamic list and a data policy matching the dynamic list. The method may also include advertising the dynamic list and the data policy to at least one of the plurality of sites.

Patent Agency Ranking