Information security – Policy
Reexamination Certificate
2007-08-14
2007-08-14
Zand, Kambiz (Department: 2134)
Information security
Policy
Reexamination Certificate
active
10052745
ABSTRACT:
Enforcing a plurality of different policies on a stream of packets is disclosed. In lieu of running separate algorithms for each policy, the system exploits the commonalities of all of the policies. The conditions corresponding to the compiled rules are arranged in a condition tree and processed in a pipelined architecture that allows the results of the various stages to be carried forward into subsequent stages of processing. The rules for which all conditions have been satisfied can be identified by one stage of processing in one pass of condition tree traversal and are passed to subsequent stages. A rule table corresponding to an individual policy type can then be readily examined to determine partial or complete satisfaction of the rule of that policy type, without requiring a re-examination of the conditions underlying the rule. Additionally, corresponding actions can be taken where rule satisfaction is determined. This approach allows extremely high-speed policy enforcement performance.
REFERENCES:
patent: 6075798 (2000-06-01), Lyons et al.
patent: 6587466 (2003-07-01), Bhattacharya et al.
Gupta Sandeep
Parekh Pankaj S.
Shah Pranav
Vaidya Vimal
Ipolicy Networks, Inc.
Lipman Jacob
Thelen Reid Brown Raysman & Steiner LLP
Zand Kambiz
LandOfFree
Architecture for an integrated policy enforcement system does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Architecture for an integrated policy enforcement system, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Architecture for an integrated policy enforcement system will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3857199