US 12,177,260 B2
Adaptive network security using zero trust microsegmentation
Harish Akali, Acton, MA (US); Satyam Tyagi, Fremont, CA (US); Wyn Owen, San Jose, CA (US); Surya Kollimarla, Santa Clara, CA (US); and Rajesh Khazanchi, Cupertino, CA (US)
Assigned to ColorTokens Inc., San Jose, CA (US)
Filed by ColorTokens Inc., San Jose, CA (US)
Filed on Mar. 28, 2024, as Appl. No. 18/620,708.
Application 18/620,708 is a continuation of application No. 18/343,402, filed on Jun. 28, 2023.
Claims priority of provisional application 63/461,476, filed on Apr. 24, 2023.
Prior Publication US 2024/0356980 A1, Oct. 24, 2024
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01)
CPC H04L 63/20 (2013.01) [H04L 63/0263 (2013.01); H04L 63/1425 (2013.01)] 25 Claims
OG exemplary drawing
 
1. A zero-trust microsegmentation method comprising:
determining a plurality of network microsegments of a network including a plurality of devices, wherein each network microsegment of the plurality of network microsegments is configured to include one or more of the plurality of devices, the network being configured to cause all device traffic of the plurality of devices to traverse a network device common to and associated with each of the devices of the plurality of devices;
determining an initial zero-trust security policy including communication permissions;
analyzing network traffic under the communication permissions of the initial zero-trust security policy, the network traffic comprising the device traffic of the plurality of devices traversing the network device; and
adapting one or more of the communication permissions, based on the analysis of the network traffic, to generate an adapted zero-trust security policy including the one or more adapted communication permissions.