Techniques for identity and policy based routing
First Claim
Patent Images
1. A method, comprising:
- creating a customized network with multiple customized routes based on a resource identity and identifying customized connection protocols and services associated with interfacing with the resource identity over the customized network and defining the customized network as the multiple customized routes between a resource associated with the resource identity and other resources for the resource to interface with the other resources over the customized network by using the customized connection protocols and services associated with the resource identity with the connection protocols and services customized based on role assignments and the resource identity;
providing access over the multiple customized routes for the resource to establish connections and to access the other resources over a network connection within the customized network; and
detecting when an inactive role assigned to the resource or at least one of the other resources is activated as a new active role for the resource or the at least one of the other resources and in response creating a new customized network with multiple new customized routes.
3 Assignments
0 Petitions
Accused Products
Abstract
Techniques for identity and policy based routing are presented. A resource is initiated on a device with a resource identity and role assignments along with policies are obtained for the resource. A customized network is created for the resource using a device address for the device, the resource identity, the role assignments, and the policies.
-
Citations
20 Claims
-
1. A method, comprising:
-
creating a customized network with multiple customized routes based on a resource identity and identifying customized connection protocols and services associated with interfacing with the resource identity over the customized network and defining the customized network as the multiple customized routes between a resource associated with the resource identity and other resources for the resource to interface with the other resources over the customized network by using the customized connection protocols and services associated with the resource identity with the connection protocols and services customized based on role assignments and the resource identity; providing access over the multiple customized routes for the resource to establish connections and to access the other resources over a network connection within the customized network; and detecting when an inactive role assigned to the resource or at least one of the other resources is activated as a new active role for the resource or the at least one of the other resources and in response creating a new customized network with multiple new customized routes. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method, comprising:
-
registering a machine executing a resource based on a machine identity and a resource identity; establishing a custom network for the resource and identifying customized connection protocols and services associated with interfacing with the resource over the custom network, and defining within the custom network other resources and other devices that the resource can establish connections with and can access over the custom network through multiple customized routes generated for and defining the custom network by the resource using the customized connection protocols and services with the connection protocols and services customized based on role assignments and the resource identity; and detecting when an inactive role assigned to the resource, at least one of the other resources, or at least one of the devices is activated as a new active role for the resource, the at least one of the other resources, or the at least one of the devices, and in response creating a new customized network with multiple new customized routes. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
-
-
19. A system, comprising:
-
a hardware processor; and a non-transitory computer-readable storage medium having executable instructions representing a provision service, the provision service configured to; i) execute on the hardware processor, ii) establish a custom network for a resource based on a resource identity of the resource and identify based on the resource identity customized connection protocols and services for interacting with the resource over the custom network, iii) dynamically add additional resources to the custom network and multiple custom routes through the custom network from the resource and the additional resources for connection with and for interaction over the custom network using the customized connection protocols and services with the connection protocols and services customized based on role assignments and the resource identity, and iv) detect when an inactive role assigned to the resource or at least one of the additional resources is activated as a new active role for the resource or the at least one of the additional resources and in response create a new customized network with multiple new customized routes, wherein the custom routes defining the custom network. - View Dependent Claims (20)
-
Specification