| CPC H04L 63/102 (2013.01) [H04L 63/0236 (2013.01); H04L 63/0272 (2013.01); H04L 63/1425 (2013.01); H04L 63/20 (2013.01)] | 20 Claims |
|
1. A method comprising:
determining, by a network controller, a corresponding level of a security model associated with each device of a plurality of devices connected to a network, each level of the security model having a corresponding tag;
applying, by the network controller and to each of the plurality of devices, the corresponding tag based on the corresponding level of the security model with which each of the plurality of devices are associated;
receiving, at the network controller and over a network connection, network traffic from at least one of the plurality of devices and the corresponding tag;
analyzing the corresponding tag associated with the network traffic;
determining a destination for the network traffic;
applying one or more security measures to the network traffic based on the corresponding tag for the at least one device and a corresponding tag of the destination for the network traffic;
upon applying the one or more security measures to the network traffic, changing the corresponding tag with which the network traffic is associated to the corresponding tag of the destination to yield a modified tag; and
sending the network traffic to the destination with the modified tag, the modified tag being the corresponding tag of the destination after the one or more security measures are applied to the network traffic.
|