Internal controls engine and reporting of events generated by a network or associated applications
First Claim
1. A tangible, non-transitory, machine-readable medium storing instructions that when executed by one or more processors effectuate operations comprising:
- obtaining, with one or more processors, with a network controller, a current state of a network, wherein;
the network has a plurality of computing devices accessed by a plurality of users;
the network is configured to provide network connectivity defined by a network graph;
the network graph includes vertices corresponding to the users or computing devices;
the network graph includes edges between respective pairs of the vertices and specifying permitted network communications between the users or computing devices corresponding to the respective pairs of vertices; and
the network controller is operative to effectuate changes to the network graph by enforcing, and removing or adding permitted pair-wise connections between the users or computing devices;
causing, with one or more processors, with the network controller, a graphical user interface to be presented that depicts at least part of the network graph, the graphical user interface comprising a first region by which a dropped icon in the region indicates network connections are to be permitted, a second region within the graphic user interface by which a dropped icon in the region indicates network connections are to be prohibited, and user-inputs by which a user requests changes to the network graph, wherein the user-inputs include a drag and drop input by which a user selects an icon representing a vertex, selects another icon representing another vertex, and moves the icon representing the other vertex into a given region of the graphical user interface that indicates an edge between the vertex and the other vertex in the network graph is to be modified;
receiving, with one or more processors, with the network controller, a request input via the graphical user interface to modify the network graph; and
in response to the request, modifying, with one or more processors, with the network controller, the network graph and enforcing the modification.
1 Assignment
0 Petitions
Accused Products
Abstract
Provided is a process including: obtaining, with a network controls engine, network traffic, wherein: the network traffic is sent across the network between source computing devices and destination computing devices; at least one of the source or destination computing devices are on a network carrying the network traffic; and the network has a plurality of computing devices causing the network traffic and which are assigned addresses on the network; applying, with the network controls engine, a plurality of rules to the network traffic to identify rules with criteria satisfied by the network traffic; and causing, with the network controls engine, one or more actions prescribed by one or more identified rules with criteria satisfied by the network traffic.
-
Citations
32 Claims
-
1. A tangible, non-transitory, machine-readable medium storing instructions that when executed by one or more processors effectuate operations comprising:
-
obtaining, with one or more processors, with a network controller, a current state of a network, wherein; the network has a plurality of computing devices accessed by a plurality of users; the network is configured to provide network connectivity defined by a network graph; the network graph includes vertices corresponding to the users or computing devices; the network graph includes edges between respective pairs of the vertices and specifying permitted network communications between the users or computing devices corresponding to the respective pairs of vertices; and the network controller is operative to effectuate changes to the network graph by enforcing, and removing or adding permitted pair-wise connections between the users or computing devices; causing, with one or more processors, with the network controller, a graphical user interface to be presented that depicts at least part of the network graph, the graphical user interface comprising a first region by which a dropped icon in the region indicates network connections are to be permitted, a second region within the graphic user interface by which a dropped icon in the region indicates network connections are to be prohibited, and user-inputs by which a user requests changes to the network graph, wherein the user-inputs include a drag and drop input by which a user selects an icon representing a vertex, selects another icon representing another vertex, and moves the icon representing the other vertex into a given region of the graphical user interface that indicates an edge between the vertex and the other vertex in the network graph is to be modified; receiving, with one or more processors, with the network controller, a request input via the graphical user interface to modify the network graph; and in response to the request, modifying, with one or more processors, with the network controller, the network graph and enforcing the modification. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A method, comprising:
-
obtaining, with a computer system, with a network controller, a current state of a network, wherein; the network has a plurality of computing devices accessed by a plurality of users; the network is configured to provide network connectivity defined by a network graph; the network graph includes vertices corresponding to the users or computing devices; the network graph includes edges between respective pairs of the vertices and specifying permitted network communications between the users or computing devices corresponding to the respective pairs of vertices; and the network controller is operative to effectuate changes to the network graph by enforcing, and removing or adding permitted pair-wise connections between the users or computing devices; causing, with the computer system, with the network controller, a graphical user interface to be presented that depicts at least part of the network graph, the graphical user interface comprising a first region by which a dropped icon in the region indicates network connections are to be permitted, a second region within the graphic user interface by which a dropped icon in the region indicates network connections are to be prohibited, and user-inputs by which a user requests changes to the network graph, wherein the user-inputs include a drag and drop input by which a user selects an icon representing a vertex, selects another icon representing another vertex, and moves the icon representing the other vertex into a given region of the graphical user interface that indicates an edge between the vertex and the other vertex in the network graph is to be modified; receiving, with the computer system, with the network controller, a request input via the graphical user interface to modify the network graph; and in response to the request, modifying, with the computer system, with the network controller, the network graph and enforcing the modification. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32)
-
Specification