Application-described segmentation puts network site visitors into diverse classifications and will make implementing security policies less difficult. Ideally, the classifications are based on endpoint id, not mere IP addresses. Enforcement fears examining all network visitors flows and may aim to maintain the confidentiality, integrity, and availability of all programs https://ieeexplore.ieee.org/document/9941250