| CPC H04L 41/0853 (2013.01) [G16Y 30/10 (2020.01); H04L 41/0631 (2013.01); H04L 41/0894 (2022.05); H04L 41/22 (2013.01); H04L 63/104 (2013.01); H04L 63/105 (2013.01); H04L 63/20 (2013.01); H04L 67/12 (2013.01)] | 20 Claims |
|
1. A system comprising:
a multi-level policy management engine configured to generate a multi-level policy for a network environment, wherein the multi-level policy includes a first policy at a low level of abstraction and a second policy at a high level of abstraction, and wherein the second policy at the high level of abstraction references an action to take if a particular activity is attempted by a device included in the network environment;
an Internet Protocol (IP) endpoint discovery and classification engine configured to:
discover, in the network environment, an Internet of Things (IoT) device which does not match at least one of the first or second policies, and classify the IoT device to make at least one of the first or second policies applicable to the IoT device, including by identifying that the IoT device does not have at least one of the first or second policies as an applicable policy, determining that the IoT device has violated at least one of the first or second policies, and in response, make the at least one of the first or second policies that has been violated applicable to the IoT device; and
a multi-level policy compliance detection engine configured to apply a set of multi-level policies to the IoT device based on the classification of the IoT device.
|