| CPC H04L 63/20 (2013.01) [H04L 63/029 (2013.01); H04L 63/08 (2013.01)] | 6 Claims |
|
1. A system for access policy management of a plurality of valid entities communicating over a network comprising:
a server executing an authentication application programming interface (API) for registration and authentication of said entities;
one or more encrypted tunnels between entities; and
one or more gateways;
wherein said server authenticates and registers each entity and assigns a private IP address to each authenticated entity and propagates said private IP address and one or more associated access policies to each of said one or more gateways; and
said one or more gateways processing and routing a plurality of packets received from each of said entities and enforcing, by respective data plane modules associated with said one or more gateways, said one or more access policies associated with the private IP address assigned to the each of said authenticated entities; and
said one or more gateways managing routes based on the private IP addresses of each authenticated entities and routes packets to reach one or more remote entities via one or more tunnels to one or more other gateways creating a network overlay between authenticated entities.
|