US 12,289,294 B2
Dynamic segmentation management
Ilya Fainberg, Tel Aviv (IL); Mark Kurman, Neve Yarak (IL); and David Bar, Tel Aviv (IL)
Assigned to Forescout Technologies, Inc., San Jose, CA (US)
Filed by FORESCOUT TECHNOLOGIES, INC., San Jose, CA (US)
Filed on Apr. 27, 2023, as Appl. No. 18/308,535.
Application 18/308,535 is a continuation of application No. 16/023,284, filed on Jun. 29, 2018, granted, now 11,677,627.
Prior Publication US 2023/0269140 A1, Aug. 24, 2023
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01); H04L 41/0213 (2022.01); H04L 41/0816 (2022.01); H04L 41/0893 (2022.01); H04L 41/0894 (2022.01); H04L 41/12 (2022.01)
CPC H04L 63/0263 (2013.01) [H04L 41/0213 (2013.01); H04L 41/0816 (2013.01); H04L 41/0893 (2013.01); H04L 41/0894 (2022.05); H04L 41/12 (2013.01); H04L 63/0209 (2013.01); H04L 63/20 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method comprising:
selecting an entity communicatively coupled to a network;
determining one or more characteristics of the entity;
selecting a segmentation policy based on the one or more characteristics of the entity;
determining one or more tags to be assigned to the entity based on the segmentation policy and the one or more characteristics of the entity;
modifying the one or more tags based on a source and a destination of a communication that is associated with the entity;
determine a zone of the segmentation policy for the entity based on the one or more tags;
determining one or more enforcement points associated with the entity;
assigning one or more enforcement actions to the one or more enforcement points based on the zone of the segmentation policy associated with the entity;
determining a violation of the segmentation policy based on the one or more tags assigned to the entity, and a second communication that is associated with the entity; and
in response to a change to the one or more tags, updating the one or more enforcement actions to the one or more enforcement points according to the change to the one or more tags.