IDiyas

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 11178187 B1

PDFFull Text
Date of Patent:
Nov. 16, 2021

Filed:

Jun. 11, 2020

Identifying and providing network application security policies governing connections to and from hosts in a network

Applicant:

Zscaler, Inc., San Jose, CA (US);

Inventors:

Peter Smith, Acton, MA (US);

Aparna Ayikkara, Brookline, NH (US);

Omar Baba, Winchester, MA (US);

Daniel Einspanjer, Salem, NH (US);

Anthony Gelsomini, Westwood, MA (US);

Thomas C. Hickman, Hollis, NH (US);

Peter Kahn, Southborough, MA (US);

Thomas Evan Keiser, Jr., Boston, MA (US);

Andriy Kochura, North Andover, MA (US);

Nikitha Koppu, Shrewsbury, MA (US);

Scott Laplante, Bedford, NH (US);

Xing Li, Burlington, MA (US);

Raymond Brian Liu, Lexington, MA (US);

Sean Lutner, Norfolk, MA (US);

Michael J. Melson, Arlington, MA (US);

Peter Nahas, Watertown, MA (US);

John O'Neil, Watertown, MA (US);

Herman Parfenov, Andover, MA (US);

Joseph Riopel, Worcester, MA (US);

Suji Suresh, Westford, MA (US);

Harry Sverdlove, North Reading, MA (US);

Assignee:

Zscaler, Inc., San Jose, CA (US);

Attorneys:

Clements Bernard Baratta

Lawrence A. Baratta, Jr.

Primary Examiner:

Frantz B Jean

Int. Cl.
CPC ...
H04L 29/06 (2006.01); H04W 12/08 (2021.01); H04L 12/24 (2006.01); H04L 29/08 (2006.01);
U.S. Cl.
CPC ...
H04L 63/20 (2013.01); H04L 41/0893 (2013.01); H04L 63/0227 (2013.01); H04L 67/10 (2013.01); H04W 12/08 (2013.01);
Abstract

A computer system automatically generates a proposal for network application security policies to be applied on a telecommunications network. The system provides output representing the proposed network application security policies to a user. The user provides input either approving or disapproving of the network application security policies. If the user approves, then the system applies the of the proposed microsegmentation. This process may be repeated for a plurality of hosts and subsets thereof within the same network, and may be repeated over time to modify one or more existing network application security policies. The network application security policies govern inbound and outbound connections to the hosts in the network.

Find Patent Forward Citations

Loading…