The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Jun. 21, 2022
Filed:
Oct. 25, 2019
Fortinet, Inc., Sunnyvale, CA (US);
Manuel Nedbal, Santa Clara, CA (US);
Ratinder Paul Singh Ahuja, Saratoga, CA (US);
Manoj Ahluwalia, San Jose, CA (US);
Jitendra Gaitonde, Cupertino, CA (US);
Rajiv Sreedhar, Sunnyvale, CA (US);
Ojas Milind Kale, Sunnyvale, CA (US);
Mark Raymond Lubeck, San Jose, CA (US);
Yuk Suen Cheng, Redwood City, CA (US);
Suresh Rajanna, San Jose, CA (US);
David Dvir Adler, San Jose, CA (US);
Gary Nool, San Carlos, CA (US);
Fortinet, Inc., Sunnyvale, CA (US);
Abstract
Systems, methods, and apparatuses enable one or more security microservices to optimize a security configuration of a networked environment by applying security policies to resource groups passively to determine whether network sets, resource groups, or security policies should be modified, prior to active enforcement. When security policies are applied passively, security actions that are performed in response to a violation of security policy do not impact network traffic. The one or more security microservices evaluate the results of the passive application of security policies to determine whether there is at least one recommended modification to network sets, resource groups, or security policies. When there is at least one recommended modification, the modification is applied. When there are no recommended modifications or the recommended modifications have been performed, the one or more security microservices initiate active enforcement of at least a subset of the security policies on the network traffic.