MUMBAI, India, June 30 -- Intellectual Property India has published a patent application (202641075243 A) filed by Dr. Mahesh Lokhande; Mrs. R. Nirmala; Dr. Venkata Kishore Kumar Rejeti; Ms. D. Annie Selina; Dr. Amar Choudhary; Mr. Ganesh Shankar Sargam; Mr. Kalyan Savalapurapu; Dr. Usha Papineni; Dr. Duraimurugan S; and Dr. K. Prabhu Chandran on June 17, 2026, for Adaptive Zero-Trust Security System With Anomaly-Responsive Policy Enforcement For Heterogeneous Internet Of Things Network Environments.
Inventors include Dr. Mahesh Lokhande; Mrs. R. Nirmala; Dr. Venkata Kishore Kumar Rejeti; Ms. D. Annie Selina; Dr. Amar Choudhary; Mr. Ganesh Shankar Sargam; Mr. Kalyan Savalapurapu; Dr. Usha Papineni; Dr. Duraimurugan S; and Dr. K. Prabhu Chandran.
The application for the patent was published on June 26, 2026, under issue no. 26/2026.
Abstract: 1. An adaptive zero-trust security system for a heterogeneous Internet of Things network environment, comprising a device identity binding module, a telemetry normalization engine, a trust evaluation engine, an anomaly detection engine, and an adaptive policy enforcement engine, wherein the telemetry normalization engine converts heterogeneous device telemetry into normalized security features, the trust evaluation engine generates a continuously updated trust-state vector for each connected device, and the adaptive policy enforcement engine applies a dynamic access policy based on the trust-state vector and an anomaly score generated by the anomaly detection engine. 2. The adaptive zero-trust security system as claimed in claim 1, wherein the device identity binding module binds a device identity with at least one of a hardware identity parameter, firmware integrity parameter, gateway association, cryptographic credential, device class, expected communication protocol, permitted command set, and authorized resource group. 3. The adaptive zero-trust security system as claimed in claim 1, wherein the trust-state vector includes a plurality of security indicators comprising authentication confidence, device posture, firmware conformity, behavioural conformity, command validity, protocol consistency, network location, anomaly severity, historical reliability, and resource sensitivity. 4. The adaptive zero-trust security system as claimed in claim 1, wherein the anomaly detection engine detects abnormal behaviour by comparing real-time device activity with a device-specific behavioural baseline, a device-class behavioural baseline, and a network-segment behavioural baseline. 5. The adaptive zero-trust security system as claimed in claim 1, wherein the adaptive policy enforcement engine applies an enforcement action selected from allowing access, restricting access, rate-limiting communication, blocking selected commands, requesting re- authentication, redirecting traffic to an inspection path, assigning the device to a quarantine segment, and terminating a device session. 6. The adaptive zero-trust security system as claimed in claim 1, wherein a protocol interpretation module identifies protocol-specific commands, message frequency, destination pattern, session sequence, and command-response behaviour to enable protocol-aware anomaly detection and policy enforcement. 7. The adaptive zero-trust security system as claimed in claim 1, wherein the adaptive policy enforcement engine performs progressive restriction by applying a limited access state for a low-risk deviation and escalating the device to quarantine or disconnection when subsequent telemetry confirms continued abnormality. 8. The adaptive zero-trust security system as claimed in claim 1, wherein a feedback update module updates at least one of a behavioural baseline, anomaly weight, trust evaluation parameter, and policy selection parameter based on enforcement results, administrator validation, device recovery status, re-authentication result, or confirmed incident indicator. 9. The adaptive zero-trust security system as claimed in claim 1, wherein the quarantine segment permits limited diagnostic communication for firmware verification, credential refresh, configuration inspection, malware scanning through a gateway, or administrator-approved recovery command while preventing access to sensitive protected resources. 10. A computer- implemented operating process executed by the adaptive zero-trust security system as claimed in claim 1, comprising onboarding a device by binding device identity attributes, collecting heterogeneous telemetry from the device and associated gateway, normalizing the telemetry into security features, generating a trust-state vector, detecting an anomaly score from behavioural deviation, selecting a dynamic access policy based on the trust-state vector and anomaly score, enforcing the selected dynamic access policy at a gateway, edge node, network control point, or protected resource boundary, and updating a behavioural baseline or policy parameter based on feedback from the enforcement action.
Disclaimer: Curated by HT Syndication.