×

Network isolation by policy compliance evaluation

  • US 10,440,045 B2
  • Filed: 10/02/2018
  • Issued: 10/08/2019
  • Est. Priority Date: 09/21/2016
  • Status: Active Grant
First Claim
Patent Images

1. A method comprising:

  • calculating, in real-time and based on received network traffic and an analysis of a node configuration of a node within an internal network, a network vulnerability score, the network vulnerability score measuring a vulnerability of the internal network to malicious action;

    responsive to determining that the network vulnerability score is below a vulnerability threshold, isolating the internal network from an outside network by instructing a DNS server of the internal network to prevent resolution of DNS requests from the outside network; and

    after isolating the internal network;

    reconfiguring the first node of the internal network;

    simulating network traffic on the isolated internal network including the reconfigured first node; and

    responsive to the simulated network traffic producing a simulated network vulnerability score greater than the vulnerability threshold, reversing the isolation of the internal network from the outside network.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×