Security enabled network access control
First Claim
Patent Images
1. An access control system comprising:
- a network device having a plurality of network interfaces for receiving and transmitting packets of data, the network device including a forwarding element to apply filter rules to the packets; and
a filter rule constructor engine associated with said forwarding element to receive access control rules and decryption information for a security protocol, derive from the access control rules and security information a set of filter rules to be applied to packet headers encrypted with the security protocol, and transmit the set of filter rules to the at least one forwarding element.
1 Assignment
0 Petitions
Accused Products
Abstract
An access control system including a network device having a plurality of network interfaces for receiving and transmitting packets of data, the network device including a forwarding element to apply filter rules to the packets, and a filter rule constructor engine associated with said forwarding element to receive access control rules and decryption information for a security protocol, derive from the access control rules and security information a set of filter rules to be applied to packet headers encrypted with the security protocol, and transmit the set of filter rules to the at least one forwarding element.
304 Citations
31 Claims
-
1. An access control system comprising:
-
a network device having a plurality of network interfaces for receiving and transmitting packets of data, the network device including a forwarding element to apply filter rules to the packets; and
a filter rule constructor engine associated with said forwarding element to receive access control rules and decryption information for a security protocol, derive from the access control rules and security information a set of filter rules to be applied to packet headers encrypted with the security protocol, and transmit the set of filter rules to the at least one forwarding element. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A machine-accessible medium with executable instructions stored thereon that, when accessed, perform the following operations:
-
receive access control rules and security information for a security protocol;
derive from the access control rules and security information a set of filter rules to be applied to packet headers encrypted with the security protocol; and
transmit the set of filter rules to at least one forwarding element. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22)
-
-
23. An access control method, comprising:
-
receiving access control rules and decryption information for a security protocol;
deriving from the access control rules and security information a set of filter rules to be applied to packet headers encrypted with the security protocol; and
transmitting the set of filter rules to at least one forwarding element. - View Dependent Claims (24, 25, 26, 27, 28, 29, 30, 31)
-
Specification