A system for providing policy management in a network that includes nodes operating in multiple protocol layers and having enforcement functions. Multiple network devices, such as routers, remote access equipment, switches, repeaters and network cards, and end system processes having security functions...http://www.google.de/patents/US6393474?utm_source=gb-gplus-sharePatent US6393474 - Dynamic policy management apparatus and method using active network devices
