Dynamic service activation using COPS-PR to support outsourcing and configuration models for policy control
First Claim
Patent Images
1. A system comprising:
- a service activation engine (SAE) including;
a policy information base (PIB) file that defines a plurality of attachments that correspond to a plurality of network policies;
a server to;
receive a request, using common open policy service for policy provisioning (COPS-PR), for a network service related to an interface handle associated with a network interface created for a subscriber device,determine which one or more of the network policies correspond to the network service, andsend, using COPS-PR, a provisioning instance (PRI) including a first of the attachments to implement the one or more of the network policies to the interface handle based on the attachments; and
a routing device including;
network interface logic to apply the one or more of the network policies to data packets associated with the interface handle,policy management logic to maintain a shared configuration context, in which the one or more of the network policies are contained as a set of policies, between the network interface and at least one other network interface created for another subscriber device, anda service activation engine (SAE) interface module to communicate with the SAE.
1 Assignment
0 Petitions
Accused Products
Abstract
A device may include a service activation engine (SAE) including: a policy information base (PIB) file that defines a plurality of attachments that correspond to a plurality of network policies; and a server. The server may receive a request, using common open policy service for policy provisioning (COPS-PR), for a network service related to an interface handle associated with a subscriber device; determine which ones of the network policies correspond to the network service; and send, using COPS-PR, a provisioning instance (PRI) including a first of the attachments to implement the ones of the network policies to the interface handle based on the attachments.
-
Citations
21 Claims
-
1. A system comprising:
-
a service activation engine (SAE) including; a policy information base (PIB) file that defines a plurality of attachments that correspond to a plurality of network policies; a server to; receive a request, using common open policy service for policy provisioning (COPS-PR), for a network service related to an interface handle associated with a network interface created for a subscriber device, determine which one or more of the network policies correspond to the network service, and send, using COPS-PR, a provisioning instance (PRI) including a first of the attachments to implement the one or more of the network policies to the interface handle based on the attachments; and a routing device including; network interface logic to apply the one or more of the network policies to data packets associated with the interface handle, policy management logic to maintain a shared configuration context, in which the one or more of the network policies are contained as a set of policies, between the network interface and at least one other network interface created for another subscriber device, and a service activation engine (SAE) interface module to communicate with the SAE. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method comprising:
-
defining, by a policy decision point (PDP), a plurality of attachments that correspond to a plurality of policy services; receiving, by the PDP a service activation request associated with a handle interface associated with a network interface created for a subscriber device, the service activation request comprising common open policy service for provisioning (COPS-PR); identifying, by the PDP, a set of the policy services that correspond to the service activation request; generating, by the PDP, a policy decision using COPS-PR that includes a set of attachments corresponding to the identified set of policies; maintaining by a policy enforcement point (PEP), a shared configuration context, that includes policy lists, between the network interface and at least one other network interface created for another subscriber device; comparing the set of attachments to at least some of the policy lists; and applying, when the set of attachments matches a first policy list, the set of policy services associated with the first policy list to the handle interface. - View Dependent Claims (14, 15, 16, 17, 18)
-
-
19. One or more memory device that store instructions executable by a processing device, comprising:
-
instructions for dynamically creating an interface connection in a policy enforcement point (PEP), the interface connection being identified by a handle and associated with a network interface created for a subscriber device; instructions for generating a common open policy service for provisioning (COPS-PR) message notifying a policy decision point (PDP) of the handle; instructions for creating an attachment at the PDP including a set of rules for provisioning the handle with a set of policies corresponding to services associated with the subscriber device; instructions for searching shared configuration context, between the network interface and at least one other network interface created for another subscriber device, maintained by the PEP for a policy list that matches the set of rules irrespective of how the rules are ordered within the set; and instructions for creating actions within the shared configuration context when the searching does not produce a match.
-
-
20. A device comprising:
-
means for dynamically creating an interface handle, associated with a network interface created for a subscriber device, in a policy enforcement point (PEP) in a network; means for notifying a policy decision point (PDP) in the network of the interface handle using common open policy service for provisioning (COPS-PR); means for defining a plurality of attachments representing a plurality of policies corresponding to network services; and means for statically configuring a shared context of the PEP, between the network interface and at least one other network interface created for another subscriber device, to provision the attachments to the interface handle via policy decisions from the PDP to the PEP using COPS-PR, where the shared context is not modifiable from within the PEP. - View Dependent Claims (21)
-
Specification