公开(公告)号：US20250023846A1

公开(公告)日：2025-01-16

申请号：US18787943

申请日：2024-07-29

Applicant: Palantir Technologies Inc.

Inventor： William Hickman ,  Charissa Plattner ,  Kevin Simons

IPC: H04L9/40

Abstract: A system for managing firewall rules between different services. In certain instances, the method includes receiving a discovery graph comprising a plurality of services and at least one application programming interface (API) dependency, wherein the plurality of services comprises a first service and a second service. In some instances, the method further includes determining whether the second service is permitted to receive an initial communication from the first service based upon the at least one API dependency included in the discovery graph. And, in response to determining the second service is permitted to receive the initial communication from the first service, the method can include establishing a first rule for a firewall between the first service and the second service, the first rule allowing the second service to receive the initial communication from the first service.

公开(公告)号：US12081523B1

公开(公告)日：2024-09-03

申请号：US17592890

申请日：2022-02-04

Applicant: Palantir Technologies Inc.

Inventor： William Hickman ,  Charissa Plattner ,  Kevin Simons

IPC: H04L9/40

CPC classification number: H04L63/0263 ,  H04L63/20

Abstract: A system for managing firewall rules between different services. In certain instances, the method includes receiving a discovery graph comprising a plurality of services and at least one application programming interface (API) dependency, wherein the plurality of services comprises a first service and a second service. In some instances, the method further includes determining whether the second service is permitted to receive an initial communication from the first service based upon the at least one API dependency included in the discovery graph. And, in response to determining the second service is permitted to receive the initial communication from the first service, the method can include establishing a first rule for a firewall between the first service and the second service, the first rule allowing the second service to receive the initial communication from the first service.