ADAPTIVE COMPLIANCE-AWARE SECURE GATEWAY SELECTION AND DISASTER-AWARE AUTONOMOUS TUNNEL REHOMING FOR SECURE SERVICE EDGE (SSE) ENVIRONMENTS USING NO-MUTATION SHADOW PROBING AND POLICY-EQUIVALENCE GATING

Inventor(s)

• Faizan Amjad Mohammed
• Ashwin Kumar Ravichandran
• Pradeepan K Kannawadi

Abstract

Proposed herein is a framework to enable adaptive, compliance-aware secure service edge (SSE) secure gateway selection and autonomous tunnel rehoming for enterprise software-defined wide area network (SD-WAN) edges in both steady-state and disaster conditions. The proposed framework uniquely combines no-mutation controller-side shadow probing, hard policy-equivalence gating, and transactional canary/staged rollout with deterministic rollback before production cutover. The result is safer failovers and better application performance while preserving compliance boundaries and reducing outage blast radius.

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 License.

Recommended Citation

Mohammed, Faizan Amjad; Ravichandran, Ashwin Kumar; and K Kannawadi, Pradeepan, "ADAPTIVE COMPLIANCE-AWARE SECURE GATEWAY SELECTION AND DISASTER-AWARE AUTONOMOUS TUNNEL REHOMING FOR SECURE SERVICE EDGE (SSE) ENVIRONMENTS USING NO-MUTATION SHADOW PROBING AND POLICY-EQUIVALENCE GATING", Technical Disclosure Commons, ()
https://www.tdcommons.org/dpubs_series/10432