US 12,284,218 B2
Efficient updating of device-level security configuration based on changes to security intent policy model
Chandrasekhar A, Bengaluru (IN); and Jayanthi R, Bangalore (IN)
Assigned to Juniper Networks, Inc., Sunnyvale, CA (US)
Filed by Juniper Networks, Inc., Sunnyvale, CA (US)
Filed on Nov. 29, 2022, as Appl. No. 18/070,948.
Prior Publication US 2024/0179183 A1, May 30, 2024
Int. Cl. H04L 9/40 (2022.01)
CPC H04L 63/20 (2013.01) 20 Claims
OG exemplary drawing
 
1. A method, comprising:
identifying, by a system, a security intent policy model associated with an initial time;
generating, by the system, one or more delta snapshots that respectively indicate one or more incremental changes to the security intent policy model at times subsequent to the initial time;
determining, by the system, that the system is to deploy an updated version of the security intent policy model to a device;
determining, by the system and based on determining that the system is to deploy the updated version of the security intent policy model, a previous deployment time at which the system deployed a previous version of the security intent policy model to the device;
generating, by the system, and based on the one or more delta snapshots and the previous deployment time, a cumulative delta snapshot;
updating, by the system and based on the cumulative delta snapshot, a low-level security intent policy model associated with the device; and
generating, by the system and based on the low-level security intent policy model, device-level security configuration information for the device.