Security enabled network access control
First Claim
Patent Images
1. An access control system comprising:
- a network device having a plurality of network interfaces for receiving and transmitting packets of data, the network device including a forwarding element to apply filter rules to the packets; and
a filter rule constructor engine associated with said forwarding element to receive access control rules and decryption information for a security protocol, derive from the access control rules and security information a set of filter rules to be applied to packet headers encrypted with the security protocol, and transmit the set of filter rules to the at least one forwarding element.
1 Assignment
0 Petitions
Accused Products
Abstract
An access control system including a network device having a plurality of network interfaces for receiving and transmitting packets of data, the network device including a forwarding element to apply filter rules to the packets, and a filter rule constructor engine associated with said forwarding element to receive access control rules and decryption information for a security protocol, derive from the access control rules and security information a set of filter rules to be applied to packet headers encrypted with the security protocol, and transmit the set of filter rules to the at least one forwarding element.
-
Citations
31 Claims
-
1. An access control system comprising:
-
a network device having a plurality of network interfaces for receiving and transmitting packets of data, the network device including a forwarding element to apply filter rules to the packets; and
a filter rule constructor engine associated with said forwarding element to receive access control rules and decryption information for a security protocol, derive from the access control rules and security information a set of filter rules to be applied to packet headers encrypted with the security protocol, and transmit the set of filter rules to the at least one forwarding element. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A machine-accessible medium with executable instructions stored thereon that, when accessed, perform the following operations:
-
receive access control rules and security information for a security protocol;
derive from the access control rules and security information a set of filter rules to be applied to packet headers encrypted with the security protocol; and
transmit the set of filter rules to at least one forwarding element. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22)
-
-
23. An access control method, comprising:
-
receiving access control rules and decryption information for a security protocol;
deriving from the access control rules and security information a set of filter rules to be applied to packet headers encrypted with the security protocol; and
transmitting the set of filter rules to at least one forwarding element. - View Dependent Claims (24, 25, 26, 27, 28, 29, 30, 31)
-
Specification