Policy-based network management system using dynamic policy generation
First Claim
Patent Images
1. A computer-implemented method comprising:
- evaluating a condition relating to a network resource;
generating instructions for managing access to the network resource in response to the evaluation; and
transmitting the instructions for installation on a network device providing access to the network resource.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method for managing a network involves evaluating a condition relating to a network resource. In response to that evaluation, instructions are generated for managing access to the network resource. These instructions are then sent to be installed on a network device that provides access to the network resource.
-
Citations
48 Claims
-
1. A computer-implemented method comprising:
-
evaluating a condition relating to a network resource;
generating instructions for managing access to the network resource in response to the evaluation; and
transmitting the instructions for installation on a network device providing access to the network resource. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A machine-readable medium having stored thereon a plurality of executable instructions to perform a method comprising:
-
evaluating a condition relating to a network resource;
generating a module for managing access to the network resource in response to the evaluation; and
transmitting the module for installation on a network device providing access to the network resource. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A policy-based network management system comprising:
-
a policy enforcement point to selectively enable access to a network resource;
a policy decision point in communication with the policy enforcement point, the policy decision point to authorize access to the network resource through the policy enforcement point in accordance with an established policy; and
a policy server in communication with the policy decision point, the policy server to maintain a template for dynamically establishing a policy concerning access to the network resource and communicating the established policy for installation on the policy decision point. - View Dependent Claims (22, 23, 24)
-
-
25. A policy-based network management system comprising:
-
a policy enforcement point to selectively enable access to a network resource;
a policy decision point in communication with the policy enforcement point, the policy decision point to authorize access to the network resource through the policy enforcement point in accordance with an established policy; and
a policy server in communication with the policy decision point, the policy server to maintain a template for dynamically establishing a policy concerning access to the network resource and communicating the established policy to the policy decision point, the established policy comprising a set of instructions installed on the policy decision point. - View Dependent Claims (26, 27, 28)
-
-
29. A policy-based network management system comprising:
-
a policy enforcement point to selectively enable access to a network resource;
a policy decision point in communication with the policy enforcement point, the policy decision point to authorize access to the network resource through the policy enforcement point in accordance with an established policy; and
a policy server in communication with the policy decision point, the policy server to maintain a template for dynamically establishing a policy concerning access to the network resource and communicating the established policy to the policy decision point, the established policy being removed from the policy decision point upon occurrence of a predetermined event. - View Dependent Claims (30, 31, 32)
-
-
33. A policy-based network management system comprising:
-
a policy enforcement point to selectively enable access to a network resource;
a policy decision point in communication with the policy enforcement point, the policy decision point to authorize access to the network resource through the policy enforcement point in accordance with an established policy;
a policy server in communication with the policy decision point, the policy server to maintain a template for dynamically establishing a policy concerning access to the network resource and communicating the established policy to the policy decision point; and
a plurality of policy decision points coupled to the policy server, each of the plurality of policy decision points to authorize access to a different network resource. - View Dependent Claims (34, 35, 36)
-
-
37. A policy-based network management system comprising:
-
a policy enforcement point to selectively enable access to a network resource;
a policy decision point in communication with the policy enforcement point, the policy decision point to authorize access to the network resource through the policy enforcement point in accordance with an established policy;
a policy server in communication with the policy decision point, the policy server to maintain a template for dynamically establishing a policy concerning access to the network resource and communicating the established policy to the policy decision point; and
a plurality of policy enforcement points coupled to the policy decision point, each of the plurality of policy enforcement points to selectively enable access to the network resource. - View Dependent Claims (38, 39, 40)
-
-
41. A policy-based network management system comprising:
-
a policy enforcement point to selectively enable access to a network resource;
a policy decision point in communication with the policy enforcement point, the policy decision point to authorize access to the network resource through the policy enforcement point in accordance with an established policy; and
a policy server in communication with the policy decision point, the policy server to maintain a template for dynamically establishing a policy concerning access to the network resource and communicating the established policy to the policy decision point, and the policy server to maintain a plurality of templates for dynamically establishing a policy concerning access to each of a plurality of network resources. - View Dependent Claims (42, 43, 44)
-
-
45. A policy-based network management system comprising:
-
a policy enforcement point to selectively enable access to a network resource;
a policy decision point in communication with the policy enforcement point, the policy decision point to authorize access to the network resource through the policy enforcement point in accordance with an established policy;
a policy server in communication with the policy decision point, the policy server to maintain a template for dynamically establishing a policy concerning access to the network resource and communicating the established policy to the policy decision point, and the policy server being in communication with a policy management device, the policy management device to perform at least one of the functions of generating policies, installing policies on the policy server, and removing policies from the policy server. - View Dependent Claims (46, 47, 48)
-
Specification