18815417. ROLE-BASED ACCESS CONTROL AUTOGENERATION IN A CLOUD NATIVE SOFTWARE-DEFINED NETWORK ARCHITECTURE (Juniper Networks, Inc.)
Contents
ROLE-BASED ACCESS CONTROL AUTOGENERATION IN A CLOUD NATIVE SOFTWARE-DEFINED NETWORK ARCHITECTURE
Organization Name
Inventor(s)
Prasad Miriyala of San Jose CA (US)
Sajeesh Mathew of Saratoga CA (US)
Akhilesh Pathodia of San Jose CA (US)
Tashi Garg of San Jose CA (US)
ROLE-BASED ACCESS CONTROL AUTOGENERATION IN A CLOUD NATIVE SOFTWARE-DEFINED NETWORK ARCHITECTURE
This abstract first appeared for US patent application 18815417 titled 'ROLE-BASED ACCESS CONTROL AUTOGENERATION IN A CLOUD NATIVE SOFTWARE-DEFINED NETWORK ARCHITECTURE
Original Abstract Submitted
A network controller for a software-defined networking (SDN) architecture system may receive a request to generate an access control policy for a role in a container orchestration system, where the request specifies a plurality of functions. The network controller may execute the plurality of functions and may log execution of the plurality of functions in an audit log. The network controller may parse the audit log to determine a plurality of resources of the container orchestration system accessed from executing the plurality of functions and, for each resource of the plurality of resources, a respective one or more types of operations performed on the respective resource. The network controller may create, based at least in part on the parsed audit log, the access control policy for the role that permits a role to perform, on each of the plurality of resources, the respective one or more types of operations.