SYSTEM AND METHOD FOR DYNAMIC NETWORK POLICY MANAGEMENT
13 Assignments
0 Petitions
Accused Products
Abstract
A system and method that provides dynamic network policy management. The system enables a network administrator to regulate usage of network services upon initiation of and throughout network sessions. The system employs a method of identifying selectable characteristics of attached functions to establish static and dynamic policies, which policies may be amended before, during and after any session throughout the network based on the monitored detection of any of a number of specified triggering events or activities. Particular policies associated with a particular identified attached function in prior sessions may be cached or saved and employed in subsequent sessions to provide network usage permissions more rapidly in such subsequent sessions. The cached or saved policy information may also be used to identify network usage, control, and security. The system and method of the present invention provides static and dynamic policy allocation for network usage provisioning.
-
Citations
72 Claims
-
1-40. -40. (canceled)
-
41. A method of controlling the usage by an attached function of network services associated with a network system that includes the attached function, one or more other attached functions and one or more network infrastructure devices, the method comprising the steps of:
-
a. determining whether a stored policy exists for an attached function seeking access to the network services; b. if the stored policy history exists for the attached function, establishing in one or more packet forwarding devices of the network infrastructure connected to the attached function one or more static and/or dynamic policies for the attached function for network services usage based upon the stored policy history; c. if no stored policy history exists for the attached function, establishing for the attached function one or more static and/or dynamic policies for network services usage; d. monitoring the network system for triggers; e. modifying in one or more of the one or more packet forwarding devices one or more static and/or dynamic policies for the attached function upon the detection of one or more of the monitored triggers; and f. saving set and modified policies associated with the attached function as the stored policy history for the attached function, wherein a portion of the saved set and modified policies are stored on one or more of the one or more packet forwarding devices and a remainder of the saved set and modified policies are stored on another network infrastructure device. - View Dependent Claims (42, 43, 44, 45, 46, 47)
-
-
48. A method of controlling the usage by an attached function of network services associated with a network system that includes the attached function, one or more other attached functions and one or more network infrastructure devices, the method comprising the steps of:
-
a. establishing in one or more packet forwarding devices of the network system one or more static and/or dynamic policies for an attached function seeking access to the network services; b. monitoring the network system for triggers; c. modifying in one or more of the one or more packet forwarding devices one or more static and/or dynamic policies for the attached function upon the detection of one or more of the monitored triggers; and d. saving set and modified policies associated with the attached function as the stored policy history for the attached function, wherein a portion of the saved set and modified policies are stored on one or more of the one or more packet forwarding devices and a remainder of the saved set and modified policies are stored on another network infrastructure device. - View Dependent Claims (49, 50, 51, 52, 53, 54, 55, 56, 57)
-
-
58. A system to control the usage by an attached function of network services associated with a network system that includes the attached function, one or more other attached functions and network infrastructure, the system comprising:
a dynamic policy function module configured to; a. establish in one or more packet forwarding devices of the network system one or more static and/or dynamic policies for an attached function seeking access to the network services; b. monitor the network system for triggers; c. modify in one or more of the one or more packet forwarding devices one or more static and/or dynamic policies for the attached function upon the detection of one or more of the monitored triggers; and d. save set and modified policies associated with the attached function as the stored policy history for the attached function, wherein a portion of the saved set and modified policies are stored on one or more of the one or more packet forwarding devices and a remainder of the saved set and modified policies are stored on another network infrastructure device. - View Dependent Claims (59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72)
Specification