Patent
System and method for generation VPN network policies
TLDR
In this article, a system, method and program product for defining a Virtual Private Network (VPN) by the sum of a plurality of policy segments is presented, where each policy segment is composed of a policy segment name, policy segment type, a VPN device list, a policy template, a quality of service template and a connection type.Abstract:
A system, method and program product for defining a Virtual Private Network (VPN) by the sum of a plurality of policy segments. Each policy segment is composed of a policy segment name, a policy segment type, a VPN device list, a policy template, a quality of service template and a connection type. The policy segment type can include Internet Protocol Security (IPsec), Differential Services (DiffServ) or Reservation Protocol (RSVP). The group of devices in a policy segment are it specified in a device list which is a collection of other device lists and/or device interface profiles. The group of common policy components are specified in a policy template. Policy templates contain the condition and action references that are used to generate policies for the policy segment. The condition reference includes a validity period and a traffic profile. The action reference includes at least one of an IPsec action, a DiffServ action or an RSVP action. The device list, connection type, and policy template are combined to generate all of the policies for a policy segment.read more
Citations
More filters
Patent
Network-based mobile workgroup system
TL;DR: In this article, the authors propose a network-based mobile workgroup system, which provides seamless mobility across a number of access technologies at the same time as it offers a granular security separation down to workgroup level.
Patent
System and methodology for security policy arbitration
TL;DR: In this article, a system providing methods for a device to apply a security policy required for connection to a network is described, where a current policy to apply to a device for governing the connection to this particular network is determined from a plurality of available security policies available to the device.
Patent
System and Methodology for Policy Enforcement
Conrad Herrmann,Sinduja Murari +1 more
TL;DR: In this paper, a system and methodology for policy enforcement during authentication of a client device for access to a network is described, where a first authentication module establishes a session with the client device requesting network access for collecting information from the client devices and determining whether to authenticate the device for accessing the network based, at least in part, upon the collected information.
Patent
Extranet workgroup formation across multiple mobile virtual private networks
TL;DR: In this paper, the authors describe a network-based mobile workgroup system allowing a selected set of users from two or more mobile virtual private networks to form an extranet workgroup in a secure manner.
Patent
Secure network file access control system
TL;DR: Secure Network File Access Appliance (SNA) as discussed by the authors is a secure network file access appliance that supports the secure access and transfer of data between the file system of a client computer system and a network data store.
References
More filters
Patent
Method and apparatus for defining and implementing high-level quality of service policies in computer networks
Silvano Gai,Keith McCloghrie +1 more
TL;DR: In this paper, the authors describe a system for implementing high-level, network policies in a computer network having multiple, dissimilar network devices, which can be translated by one or more policy servers into a set of rules that can be put into effect by specific network devices.
Patent
Method and apparatus for automatically configuring a network device to support a virtual network
TL;DR: In this paper, a configuration policy maintenance circuit is provided for storing policies related to reconfiguring the at least one switching device upon the modification of the topology, and a policy evaluation circuit was provided for determining which end-station and ports should be grouped together in a first manner.
Patent
Template-driven approach for generating models on network services
Deborah L. Caswell,Srinivas Ramanathan,James D. Hunter,Scott S. Neal,Frederick A. Sieker,Mark D. Smith +5 more
TL;DR: In this article, a method and system of modeling a selected service within a network environment includes forming a service model template that is not specific to the network environment, but identifies anticipated network elements and network services that cooperate to enable the selected service.
Patent
System and method for private addressing plans using community addressing
TL;DR: In this article, address translation tables are used to identify members of messaging communities which allow for the implementation of virtual private networks connected to hub system (200) and other hubs, where a network hub system is connected to a communications cloud (18), as well as messaging systems (202, (204), (206) and (208).
Patent
Policy caching method and apparatus for use in a communication device based on contents of one data unit in a subset of related data units
James P. Hughes,Steve A. Olson +1 more
TL;DR: In this paper, a policy caching method for use in a communication device is provided, where the communication device determines which instance of protocol data unit (PDU) network policy from a plurality of policies is to be applied to related-received PDUs based on contents of one of the related received PDUs.