US 11,671,442 B2
Automated packetless network reachability analysis
Catherine Dodge, Seattle, WA (US); Nikhil Reddy Cheruku, Falls Church, VA (US); John Byron Cook, Brooklyn, NY (US); Temesghen Kahsai Azene, Union City, CA (US); William Jo Kocik, Charles Town, WV (US); Sean McLaughlin, Seattle, WA (US); Mark Edward Stalzer, Arlingon, VA (US); Blake Whaley, Fairfax, VA (US); and Yiwen Wu, Fairfax, VA (US)
Assigned to Amazon Technologies, Inc., Seattle, WA (US)
Filed by Amazon Technologies, Inc., Seattle, WA (US)
Filed on Aug. 27, 2021, as Appl. No. 17/459,908.
Application 17/459,908 is a continuation of application No. 16/020,865, filed on Jun. 27, 2018, granted, now 11,108,805.
Prior Publication US 2021/0392157 A1, Dec. 16, 2021
Int. Cl. H04L 9/40 (2022.01); H04L 41/0866 (2022.01); H04L 41/12 (2022.01); H04L 41/22 (2022.01); H04L 43/06 (2022.01)
CPC H04L 63/1433 (2013.01) [H04L 41/0866 (2013.01); H04L 41/12 (2013.01); H04L 41/22 (2013.01); H04L 43/06 (2013.01); H04L 63/0272 (2013.01); H04L 63/1441 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A system, comprising:
one or more computing devices configured to implement a network security evaluator, wherein the network security evaluator is configured to:
receive a query concerning a virtual network from a client;
obtain descriptive information concerning the virtual network;
encode the descriptive information concerning the virtual network as an encoded description of the virtual network;
resolve the query for the encoded description of the virtual network according to virtual network rules using a constraint solver engine; and
provide results of the query resolution to the client.