18180807. DYNAMIC SECURITY FOR FABRIC NETWORKS simplified abstract (Cisco Technology, Inc.)
Contents
DYNAMIC SECURITY FOR FABRIC NETWORKS
Organization Name
Inventor(s)
Deepthi Tammireddy of Dublin CA (US)
Shilpa Avinash Sodani of Dublin CA (US)
Vishnuprasad Raghavan of Sammamish WA (US)
Hongqing Li of Sunnyvale CA (US)
DYNAMIC SECURITY FOR FABRIC NETWORKS - A simplified explanation of the abstract
This abstract first appeared for US patent application 18180807 titled 'DYNAMIC SECURITY FOR FABRIC NETWORKS
The abstract describes a method of protecting networks by detecting compromised computing devices and extracting their context to be propagated to a controller. User identity associated with the compromised device is fetched from an Identity Services Engine (ISE), and the controller is provisioned with a dynamic list and data policy matching the dynamic list. The dynamic list and data policy are then advertised to the network sites.
- Detect compromised computing devices associated with security events
- Extract context of compromised devices and propagate to a controller
- Fetch user identity from an Identity Services Engine (ISE)
- Provision controller with dynamic list and data policy
- Advertise dynamic list and data policy to network sites
Potential Applications: - Network security - Intrusion detection - User identity management
Problems Solved: - Protecting networks from compromised devices - Ensuring data security and policy compliance
Benefits: - Enhanced network security - Efficient response to security events - Improved user identity management
Commercial Applications: Title: Network Security Enhancement Solution This technology can be used in various industries such as finance, healthcare, and government to strengthen network security and ensure compliance with data policies. It can be marketed to IT security companies and network administrators looking to enhance their security measures.
Prior Art: Readers can explore prior art related to network security, intrusion detection, and user identity management technologies to understand the evolution of similar solutions in the field.
Frequently Updated Research: Researchers are constantly developing new methods and technologies to improve network security and address emerging threats. Stay updated on the latest advancements in intrusion detection and user identity management for the most effective network protection.
Questions about Network Security Enhancement Solution: 1. How does this technology improve network security? This technology enhances network security by detecting compromised devices, extracting context, and provisioning controllers with dynamic lists and data policies to mitigate security risks effectively.
2. What are the potential applications of this solution beyond network security? In addition to network security, this solution can be applied to user identity management, data policy enforcement, and compliance monitoring in various industries and organizations.
Original Abstract Submitted
A method of protecting networks may include detecting a compromised computing device associated with a security event generated by a unified security policy from a plurality of sites within a network. A context of the compromised computing device may be extracted. The context may be propagated to a controller. The method may further include fetching from an identity services engine (ISE), user identity associated with the compromised computing device, and provisioning the controller with a dynamic list and a data policy matching the dynamic list. The method may also include advertising the dynamic list and the data policy to at least one of the plurality of sites.
