Controlling network access using risk levels determined by user activity and program versioning

Abstract

A component controlling network access between a client and a server using application software versions to determine a risk level of the client. The component uses a first set of programs for negotiation with the client if the risk level is high, wherein the first set of programs includes programs with high security level, and it uses a second set of programs for negotiation with the client if the risk level is not high, wherein the second set of programs includes programs with high security level and programs with low security level. The component may utilize secure network protocols for communication between the client and server, and may be included as a gateway in a zero trust network access (ZTNA) system.

CPC Classifications