US 11,729,205 B2
Network isolation by policy compliance evaluation
Michael Franz Baukes, Sunnyvale, CA (US); and Alan James Sharp-Paul, Los Altos, CA (US)
Assigned to UPGUARD, INC., Mountain View, CA (US)
Filed by Upguard, Inc., Mountain View, CA (US)
Filed on Dec. 22, 2022, as Appl. No. 18/87,637.
Application 18/087,637 is a continuation of application No. 17/352,618, filed on Jun. 21, 2021, granted, now 11,575,701.
Application 17/352,618 is a continuation of application No. 16/540,055, filed on Aug. 14, 2019, granted, now 11,075,940, issued on Jul. 27, 2021.
Application 16/540,055 is a continuation of application No. 16/149,144, filed on Oct. 2, 2018, granted, now 10,440,045, issued on Oct. 8, 2019.
Application 16/149,144 is a continuation of application No. 15/272,321, filed on Sep. 21, 2016, granted, now 10,142,364, issued on Nov. 27, 2018.
Prior Publication US 2023/0127628 A1, Apr. 27, 2023
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01); H04L 61/4511 (2022.01)
CPC H04L 63/1433 (2013.01) [H04L 61/4511 (2022.05); H04L 63/1408 (2013.01); H04L 63/1441 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method comprising:
determining, based on received network traffic, whether a node within an internal network introduces an above-threshold level of risk of malicious action to the internal network;
responsive to determining that the node introduces the above-threshold level of risk of malicious action to the internal network, isolating the node by instructing a DNS server of the internal network to prevent resolution of DNS requests for an IP address of the node until the node is reconfigured and a simulation of network traffic on the reconfigured node indicates that the node introduces a below-threshold level of risk of malicious action to the internal network.