	US 12,279,119 B2
	Systems and method for micro network segmentation
Steven J. Goeringer, Westminster, CO (US); Brian A. Scriber, Lafayette, CO (US); Michael Glenn, Golden, CO (US); Brady Johnson, Madrid (ES); Mark Deazley, Westminster, CO (US); and Darshak Thakore, Broomfield, CO (US)
Assigned to Cable Television Laboratories, Inc., Louisville, CO (US)
Filed by CABLE TELEVISION LABORATORIES, INC., Louisville, CO (US)
Filed on Mar. 14, 2022, as Appl. No. 17/694,089.
Application 17/694,089 is a continuation of application No. 16/556,219, filed on Aug. 29, 2019, granted, now 11,277,746.
Application 16/556,219 is a continuation in part of application No. 16/120,063, filed on Aug. 31, 2018, granted, now 10,609,016, issued on Mar. 31, 2020.
Application 16/120,063 is a continuation in part of application No. 15/443,855, filed on Feb. 27, 2017, granted, now 10,440,043, issued on Oct. 8, 2019.
Claims priority of provisional application 62/300,641, filed on Feb. 26, 2016.
Claims priority of provisional application 62/553,216, filed on Sep. 1, 2017.
Claims priority of provisional application 62/724,454, filed on Aug. 29, 2018.
Prior Publication US 2022/0210649 A1, Jun. 30, 2022
This patent is subject to a terminal disclaimer.
Int. Cl. H04W 12/106 (2021.01); H04L 9/40 (2022.01); H04L 12/46 (2006.01); H04L 41/00 (2022.01); H04L 67/12 (2022.01)

CPC H04W 12/106 (2021.01) [H04L 12/4633 (2013.01); H04L 41/20 (2013.01); H04L 63/20 (2013.01); H04L 67/12 (2013.01)]

20 Claims

14. A software defined network (SDN) controller for a communication network, the SDN controller comprising:

an SDN-controlled switch configured to dynamically establish within the communication network (i) a first micronetwork having a first IP subnetwork and a first security profile, and (ii) a second micronetwork having a second IP different than the first micronetwork and having a second security profile different than the first security profile; and

a micronet manager configured to (i) detect a first device attempting to connect the communication network, (ii) detect a second device attempting to connect the communication network, (iii) configure a server of the communication network to provide the first and second IP subnetworks and the first and second levels of security access, respectively, and (iv) assign the first device to the first micronetwork based on the first security profile and the second device to the second micronetwork based on the second security profile.