CN116746125A - 用于在容器框架中核实网络策略的技术 - Google Patents

用于在容器框架中核实网络策略的技术 Download PDF

Info

Publication number
CN116746125A
CN116746125A CN202180090803.9A CN202180090803A CN116746125A CN 116746125 A CN116746125 A CN 116746125A CN 202180090803 A CN202180090803 A CN 202180090803A CN 116746125 A CN116746125 A CN 116746125A
Authority
CN
China
Prior art keywords
connectivity
container
paths
path
identifying
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202180090803.9A
Other languages
English (en)
Chinese (zh)
Inventor
O·S·派克祖尔
S·A·上野
R·G·克拉克
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Oracle International Corp
Original Assignee
Oracle International Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Oracle International Corp filed Critical Oracle International Corp
Publication of CN116746125A publication Critical patent/CN116746125A/zh
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0893Assignment of logical groups to network elements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0894Policy-based network configuration management
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/12Discovery or management of network topologies
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/22Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks comprising specially adapted graphical user interfaces [GUI]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/08Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters
    • H04L43/0805Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters by checking availability
    • H04L43/0811Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters by checking availability by checking connectivity

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Human Computer Interaction (AREA)
  • Environmental & Geological Engineering (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
CN202180090803.9A 2021-02-26 2021-06-01 用于在容器框架中核实网络策略的技术 Pending CN116746125A (zh)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US17/187,631 2021-02-26
US17/187,631 US11444837B1 (en) 2021-02-26 2021-02-26 Techniques for verifying network policies in container frameworks
PCT/US2021/035216 WO2022182380A1 (en) 2021-02-26 2021-06-01 Techniques for verifying network policies in container frameworks

Publications (1)

Publication Number Publication Date
CN116746125A true CN116746125A (zh) 2023-09-12

Family

ID=76624213

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202180090803.9A Pending CN116746125A (zh) 2021-02-26 2021-06-01 用于在容器框架中核实网络策略的技术

Country Status (5)

Country Link
US (1) US11444837B1 (https=)
EP (1) EP4298744A1 (https=)
JP (1) JP7818616B2 (https=)
CN (1) CN116746125A (https=)
WO (1) WO2022182380A1 (https=)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2025202746A1 (zh) * 2024-03-25 2025-10-02 云智能资产控股(新加坡)私人股份有限公司 容器隔离方法、装置、系统、电子设备及存储介质

Families Citing this family (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11770377B1 (en) * 2020-06-29 2023-09-26 Cyral Inc. Non-in line data monitoring and security services
US11463314B2 (en) 2020-12-16 2022-10-04 Oracle International Corporation Automatically inferring software-defined network policies from the observed workload in a computing environment
EP4420300B1 (en) 2021-10-18 2025-05-07 Sophos Limited Network appliances for secure enterprise resources
US12381917B2 (en) * 2022-04-04 2025-08-05 Arista Networks, Inc. Systems and methods for validating, maintaining, and visualizing security policies
EP4505336A4 (en) * 2022-04-07 2025-09-24 Entrust Corp SECURE DYNAMIC CONFIGURATION UPDATE IN A CONTAINERIZED RUNTIME ENVIRONMENT
US11520605B1 (en) * 2022-05-25 2022-12-06 Kong Inc. Dynamically reordering plugin execution order at an API gateway of a microservices application
US20240106867A1 (en) * 2022-09-28 2024-03-28 Citrix Systems, Inc. Recommending network security rule updates based on changes in the network data
US20240179066A1 (en) * 2022-11-29 2024-05-30 VMware LLC Defining service policies for third-party container clusters
US20240330720A1 (en) * 2023-03-31 2024-10-03 International Business Machines Corporation Hybrid cloud-orchestration map and analyzer
US12355770B2 (en) * 2023-10-03 2025-07-08 strongDM, Inc. Identity and activity based network security policies
US12242599B1 (en) 2024-09-27 2025-03-04 strongDM, Inc. Fine-grained security policy enforcement for applications
US12348519B1 (en) 2025-02-07 2025-07-01 strongDM, Inc. Evaluating security policies in aggregate
US12432242B1 (en) 2025-03-28 2025-09-30 strongDM, Inc. Anomaly detection in managed networks
US12603921B1 (en) 2025-11-19 2026-04-14 strongDM, Inc. Indexing entities and attributes for policy enforcement

Family Cites Families (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB0517304D0 (en) 2005-08-23 2005-10-05 Netronome Systems Inc A system and method for processing and forwarding transmitted information
US9619304B2 (en) 2008-02-05 2017-04-11 Adobe Systems Incorporated Automatic connections between application components
US8914841B2 (en) 2010-11-24 2014-12-16 Tufin Software Technologies Ltd. Method and system for mapping between connectivity requests and a security rule set
JP2013110679A (ja) 2011-11-24 2013-06-06 Canon Inc 情報処理装置、その制御方法、および制御プログラム
JP2018082310A (ja) * 2016-11-16 2018-05-24 富士通株式会社 PaaS接続プログラム、PaaS接続方法及びPaaS接続装置
US10581873B2 (en) 2017-07-11 2020-03-03 Cisco Technology, Inc. Securing micro-services
US10419977B2 (en) 2017-12-28 2019-09-17 Comcast Cable Communications, Llc Variable application of quality of service
US10911493B2 (en) 2018-03-14 2021-02-02 ShieldX Networks, Inc. Identifying communication paths between servers for securing network communications
US10735472B2 (en) 2018-07-10 2020-08-04 Cisco Technology, Inc. Container authorization policies for network trust
US11349862B2 (en) 2019-03-01 2022-05-31 Mandiant, Inc. Systems and methods for testing known bad destinations in a production network
JP2020115358A (ja) * 2020-03-18 2020-07-30 日本電気株式会社 通信システム、通信方法および通信プログラム
US11463314B2 (en) * 2020-12-16 2022-10-04 Oracle International Corporation Automatically inferring software-defined network policies from the observed workload in a computing environment
US11102076B1 (en) 2021-02-04 2021-08-24 Oracle International Corporation Techniques for network policies analysis in container frameworks

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2025202746A1 (zh) * 2024-03-25 2025-10-02 云智能资产控股(新加坡)私人股份有限公司 容器隔离方法、装置、系统、电子设备及存储介质

Also Published As

Publication number Publication date
WO2022182380A1 (en) 2022-09-01
US20220278900A1 (en) 2022-09-01
EP4298744A1 (en) 2024-01-03
JP2024508473A (ja) 2024-02-27
JP7818616B2 (ja) 2026-02-20
US11444837B1 (en) 2022-09-13

Similar Documents

Publication Publication Date Title
US11539754B2 (en) Techniques for generating network security policies for application components deployed in a computing environment
US11444837B1 (en) Techniques for verifying network policies in container frameworks
US12143270B2 (en) Automatically inferring software-defined network policies from the observed workload in a computing environment
US11444838B2 (en) Techniques for network policies analysis in container frameworks
US12306734B2 (en) Techniques for automated service monitoring and remediation in a distributed computing system
US11816470B2 (en) Impact driven continuous deployment system
US12135991B2 (en) Management plane orchestration across service cells
US12386974B2 (en) Threat change analysis system
US11936678B2 (en) System and techniques for inferring a threat model in a cloud-native environment
US20250106275A1 (en) Platform-Agnostic Compute Instance Launches
US11777818B1 (en) Drift resolver for enterprise applications
US12255914B2 (en) Container orchestration framework aware port scanning
US12388876B2 (en) Process security capability requirements identification
US12210400B2 (en) Techniques for performing fault tolerance validation for a data center
WO2025059473A1 (en) Compute targets for data science workload execution and identity and access management integration
CN118696303A (zh) 用于构建区域数据中心的虚拟引导环境

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination