&#xfeff;<html>
  <head>
    <META http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" type="text/css" href="html_style_eog.css"/>
<script type="text/javascript">
          function printpage()
          {
          window.print()
          }
        </script>
<script type="text/javascript" src="https://components.uspto.gov/js/ais/40-patentsgazette.js"></script></head>
  <body bgcolor='#FFFFFF' onload='javascript: if ((navigator.appName.indexOf("Netscape")!=-1) && parent.leftFrame!=null) parent.leftFrame.location.reload();'>
    <basefont face="Times New Roman, Times New Roman, Times New Roman " size="2">
      <div style="margin-left: +10pt">
        <table width="90%" border="0" rules="none" align="center">
          <tr align="center">
            <td width="20%" colspan="1" rowspan="2" align="left" valign="top"><a href="https://ppubs.uspto.gov/pubwebapp/external.html?q=11870818.pn.&amp;db=USPAT" target="popup"><input type="button" class="button" value="   Full Text   "></a></td>
            <td class="table_data"><b>US 11,870,818 B1</b></td>
            <td width="20%" colspan="1" rowspan="2" align="right" valign="top">
              <form><input type="button" value="Print this page" onclick="printpage()"></form>
            </td>
          </tr>
          <tr align="center">
            <td colspan="1" class="table_data" style="text-transform: uppercase"><b>Enforcing security policies in a zero trust security framework using a behavioral score</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b> Edwin Donald Sutherland,  Milton Keynes (GB); and  Sheril Nagoormeera,  London (GB)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Assigned to  CLOUDFLARE, INC.,  San Francisco, CA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed by  CLOUDFLARE, INC.,  San Francisco, CA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed on Feb.  28, 2023, as Appl. No. 18/175,815.</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Int. Cl. </b><i><b>H04L 9/40</b></i> (2022.01); <i><b>H04L 41/0894</b></i> (2022.01)</td>
          </tr>
        </table>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="75%">
            <col width="15%">
          </colgroup>
          <tr align="left">
            <td class="table_data" align="left"><b>CPC </b><i><b>H04L 63/20</b></i> (2013.01)&#xa0;[<i><b>H04L 41/0894</b></i> (2022.05)]</td>
            <td class="table_data" align="right"><b>20 Claims</b></td>
          </tr>
        </table>
        <center><img src="US11870818-20240109-D00000.gif" alt="OG exemplary drawing"></center>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="90%">
          </colgroup>
          <tr>
            <td class="table_data" align="center">&#xa0;</td>
          </tr>
          <tr>
            <td valign="top" class="para_text">
              <div class="claim_text_root">1. A computer-implemented method comprising:<div class="claim_text">retrieving access logs associated with a plurality of identities;</div>
                <div class="claim_text">generating, using a trust model and based on the retrieved access logs, a plurality of behavioral scores for the plurality of identities respectively, wherein each behavioral score is dynamic, and wherein a value of a particular behavioral score for a particular identity increases in response to an access approval for that particular identity as indicated in the retrieved access logs and decreases in response to an access denial for that particular identity as indicated in the retrieved access logs;</div>
                <div class="claim_text">receiving a first request to access a resource, the first request associated with a first identity of the plurality of identities;</div>
                <div class="claim_text">determining that a zero trust access policy is applicable for the resource;</div>
                <div class="claim_text">determining a first behavioral score for the first identity associated with the first request;</div>
                <div class="claim_text">determining that the first behavioral score associated with the first identity satisfies a behavioral score threshold for the zero trust access policy;</div>
                <div class="claim_text">providing the resource in response to the first request responsive to the determining that the first behavioral score associated with the first identity satisfies the behavioral score threshold for the zero trust access policy;</div>
                <div class="claim_text">receiving a second request to access the resource, the second request associated with a second identity of the plurality of identities;</div>
                <div class="claim_text">determining that the zero trust access policy is applicable for the resource;</div>
                <div class="claim_text">determining a second behavioral score for the second identity associated with the second request;</div>
                <div class="claim_text">determining that the second behavioral score associated with the second identity fails to satisfy the behavioral score threshold for the zero trust access policy; and</div>
                <div class="claim_text">performing an action defined in the zero trust access policy responsive to the determining that the second behavioral score associated with the second identity fails to satisfy the behavioral score threshold for the zero trust access policy.</div>
              </div>
            </td>
          </tr>
        </table>
      </div>
    
  </body>
</html>