US 12,438,915 B2
Systems and methods for context based access control in a bridge server
Isaac Michael Johnson, Roselle, IL (US)
Assigned to Fortinet, Inc., Sunnyvale, CA (US)
Filed by Fortinet, Inc., Sunnyvale, CA (US)
Filed on Apr. 12, 2022, as Appl. No. 17/719,228.
Prior Publication US 2023/0328106 A1, Oct. 12, 2023
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01)
CPC H04L 63/20 (2013.01) [H04L 63/0281 (2013.01); H04L 63/0428 (2013.01); H04L 63/08 (2013.01); H04L 63/102 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method for performing context based security for an isolated network element, the method comprising:
resolving, by a bridge server, a requested resource using a proxy included in a received command, wherein the requested resource is an air-gapped resource associated with an air-gapped network that is accessible to an outside network only via the bridge server;
accessing, by the bridge server, a security policy associated with the requested resource;
analyzing, by the bridge server, the received command based at least in part on a context of the received command and the security policy; and
based upon a determination that the received command is acceptable, transferring a communication corresponding to the command to the requested resource.