Policy application across multiple nodes
First Claim
1. A method comprising:
- retrieving an intermediate node policy having one or more protocol requirements for messages being transmitted to or from the intermediate node, the intermediate node being between a source node and a destination node in a communication path;
forming a first policy-compliant message in accordance with the intermediate node policy, the first policy-compliant message including a request for a destination node policy having one or more protocol requirements for messages being transmitted to or from the destination node;
transmitting the first policy-compliant message to the intermediate node for receipt and validation of the first policy-compliant message by the intermediate node;
receiving the destination node policy;
forming a second policy-compliant message in accordance with both the intermediate node policy and the destination node policy;
transmitting the second policy-compliant message to the destination node;
determining whether the destination node policy specifies an additional intermediate node;
if the destination node policy specifies an additional intermediate node, forming a third policy-compliant message in accordance with the intermediate node policy, the third policy-compliant message including a request for an additional intermediate node policy having one or more protocol requirements for messages being transmitted to or from the additional intermediate node, and if the destination node policy specifies more than one intermediate nodes, the destination node policy also specifies an order of the intermediate nodes in the communication path, the order of intermediate nodes being important for the order of retrieving and applying the policies of the intermediate nodes.
2 Assignments
0 Petitions
Accused Products
Abstract
A method includes retrieving an intermediate node policy characterizing communication properties supported by an intermediate node, the intermediate node being between a source node and a destination node in a communication path. The method includes forming a first policy-compliant message in accordance with the intermediate node policy, the first policy-compliant message including a request for a destination node policy characterizing communication properties supported by the destination node. A system includes a policy retriever comparing a source policy to one to an intermediate policy to determine whether the source policy is compatible with the intermediate policy. A message generator generates a policy request message by applying the intermediate policy to a request for a policy related to a destination node.
-
Citations
27 Claims
-
1. A method comprising:
-
retrieving an intermediate node policy having one or more protocol requirements for messages being transmitted to or from the intermediate node, the intermediate node being between a source node and a destination node in a communication path; forming a first policy-compliant message in accordance with the intermediate node policy, the first policy-compliant message including a request for a destination node policy having one or more protocol requirements for messages being transmitted to or from the destination node; transmitting the first policy-compliant message to the intermediate node for receipt and validation of the first policy-compliant message by the intermediate node; receiving the destination node policy; forming a second policy-compliant message in accordance with both the intermediate node policy and the destination node policy; transmitting the second policy-compliant message to the destination node; determining whether the destination node policy specifies an additional intermediate node; if the destination node policy specifies an additional intermediate node, forming a third policy-compliant message in accordance with the intermediate node policy, the third policy-compliant message including a request for an additional intermediate node policy having one or more protocol requirements for messages being transmitted to or from the additional intermediate node, and if the destination node policy specifies more than one intermediate nodes, the destination node policy also specifies an order of the intermediate nodes in the communication path, the order of intermediate nodes being important for the order of retrieving and applying the policies of the intermediate nodes. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A computer-readable storage medium having a plurality of executable programming instructions stored thereon which, when operated, perform operations comprising:
-
retrieving a intermediate node policy and a destination node policy, the intermediate node policy having one or more protocol requirements for messages being transmitted to or from an intermediate node and the destination node policy having one or more protocol requirements for messages being transmitted to or from a destination node, the intermediate node being between a source node and the destination node in a communication path; applying the intermediate node policy and the destination node policy to an underlying message in order of the destination node policy followed by the intermediate node policy; creating a first policy-compliant message including the underlying message, the first policy-compliant message being created according to the intermediate node policy; transmitting the first policy-compliant message to the intermediate node for receipt and validation of the first policy-compliant message by the intermediate node; creating a second policy-compliant message including the first policy-compliant message, the second policy-compliant message being created according to the intermediate node policy and the destination node policy; transmitting the second policy-compliant message to the destination node; determining whether the destination node policy specifies an additional intermediate node; if the destination node policy specifies an additional intermediate node, forming a third policy-compliant message in accordance with the intermediate node policy, the third policy-compliant message including a request for an additional intermediate node policy having one or more protocol requirements for messages being transmitted to or from the additional intermediate node, and if the destination node policy specifies more than one intermediate nodes, the destination node policy also specifies an order of the intermediate nodes in the communication path, the order of intermediate nodes being important for the order of retrieving and applying the policies of the intermediate nodes. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A system comprising:
-
a processor; a policy retriever configured to be operated by the processor to retrieve an intermediate node policy having one or more protocol requirements for messages being transmitted to or from an intermediate node between a source node and a destination in a communication path; a message generator configured to be operated by the processor to generate a request message in accordance with the intermediate node policy, the request message including a request for a destination node policy having one or more protocol requirements for messages being transmitted to or from the destination node; transmitting the request message to the intermediate node for receipt and validation of the request message by the intermediate node; receiving the destination node policy; forming a second request message in accordance with both the intermediate node policy and the destination node policy; transmitting the second request message to the destination node; determining whether the destination node policy specifies an additional intermediate node; if the destination node policy specifies an additional intermediate node, forming a third request message in accordance with the intermediate node policy, the third request message including a request for an additional intermediate node policy having one or more protocol requirements for messages being transmitted to or from the additional intermediate node, and if the destination node policy specifies more than one intermediate nodes, the destination node policy also specifies an order of the intermediate nodes in the communication path, the order of intermediate nodes being important for the order of retrieving and applying the policies of the intermediate nodes. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25)
-
-
26. A system comprising:
-
a processor; a policy retriever means to be operated by the processor for retrieving a plurality of policies, each policy having one or more protocol requirements for messages being transmitted to or from one of a plurality of nodes, the plurality of nodes including at least one intermediate node and a destination node, wherein the retrieving includes requesting each of the intermediate node policy and the destination node policy in order of the intermediate node followed by the destination node; means to be operated by the processor for applying each of the plurality of policies to a message transmitted to the destination node, such that the message conforms to each of the plurality of policies, wherein the applying includes; determining whether the intermediate node policy is compatible with a source node policy having one or more protocol requirements for messages being transmitted to or from the source node; in response to the determining, creating a first policy-compliant message including the underlying message, the first policy-compliant message being created according to the intermediate node policy, transmitting the first policy-compliant message to the intermediate node for receipt and validation of the first policy-compliant message by the intermediate node, and creating a second policy-compliant message including the first policy-compliant message, the second policy-compliant message being created according to the intermediate node policy and the destination node policy; transmitting the second policy-compliant message to the destination node; determining whether the destination node policy specifies an additional intermediate node; if the destination node policy specifies an additional intermediate node, forming a third policy-compliant message in accordance with the intermediate node policy, the third policy-compliant message including a request for an additional intermediate node policy having one or more protocol requirements for messages being transmitted to or from the additional intermediate node, and if the destination node policy specifies more than one intermediate nodes, the destination node policy also specifies an order of the intermediate nodes in the communication path, the order of intermediate nodes being important for the order of retrieving and applying the policies of the intermediate nodes. - View Dependent Claims (27)
-
Specification