US 11936693

I have searched the USPTO database for US patent 11936693 and found the following information. I also checked CAFC 2026 dockets but found no specific results for this patent number. CAFC dockets for 2026 show general patent-related cases and updates, but no direct mention of US11936693.

US Patent 11936693 Summary

• Title: System and method for applying a policy on a network path
• Assignee: Wiz Inc.
• Inventors: Roy Reznik, Matilda LIDGI, Shai Keren, Eliran MAROM
• Filing Date: July 24, 2023
• Issue Date: March 19, 2024
• Abstract: A system and method for applying a policy on a network path is disclosed. The method includes: selecting a reachable resource having a network path to access the reachable resource, wherein the reachable resource is a cloud object deployed in a cloud computing environment, having access to an external network which is external to the cloud computing environment; actively inspecting the network path to determine if the network path of the reachable resource is accessible from the external network; applying a policy on the accessible network path, wherein the policy includes a conditional rule; initiating a mitigation action, in response to determining that the conditional rule is not met; and applying the policy on another network path, in response to determining that the conditional rule is met.

Plain-Language Overview of Independent Claims:

The patent has several independent claims, generally structured around methods, non-transitory computer-readable media, and systems for applying policies to network paths in cloud environments.

Independent Method Claim Overview:
This claim describes a method that involves:

1. Selecting a reachable resource: Identifying a cloud object within a cloud computing environment that has a network path allowing access from an external network.
2. Actively inspecting the network path: Performing an active check to see if the identified network path to the reachable resource is actually accessible from the external network.
3. Applying a policy: Implementing a policy, which contains a conditional rule, on the network path that was determined to be accessible.
4. Initiating a mitigation action (if rule not met): If the conditional rule of the policy is not satisfied, a mitigation action is triggered.
5. Applying the policy on another network path (if rule met): If the conditional rule is satisfied, the policy is then applied to a different network path.

Independent Non-Transitory Computer-Readable Medium Claim Overview:
This claim covers a non-transitory computer-readable medium (e.g., software) that stores instructions. When these instructions are executed by a device's processor, they cause the device to perform the same steps as outlined in the independent method claim: selecting a reachable resource, actively inspecting its network path, applying a policy with a conditional rule, initiating a mitigation action if the rule is not met, and applying the policy to another network path if the rule is met.

Independent System Claim Overview:
This claim describes a system comprising processing circuitry and memory. The memory contains instructions that, when executed by the processing circuitry, configure the system to perform the same sequence of actions as the independent method claim: selecting a reachable resource, actively inspecting its network path, applying a policy with a conditional rule, initiating a mitigation action if the rule is not met, and applying the policy to another network path if the rule is met.