System and method for analyzing a router in a shared network system
First Claim
Patent Images
1. A system for analyzing a router in a shared network system, comprising:
- an information retrieval system for retrieving information from the router;
a map system for generating a network map based on the retrieved information;
a network system for identifying source networks and destination networks based on the retrieved information; and
a findings system for identifying findings by comparing the retrieved information to the identified source and destination networks.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method for analyzing a router in a shared network system (SNS). Specifically, the present invention retrieves information for each network participating in the SNS from a common router. By identifying source and destination networks for communications in the SNS, and then comparing the identified networks to network policies, a network map, and/or flow tables, security findings for each network can be identified. These findings, as well as the network map, can then be outputted to each network according to their preferences in a report or summary format.
49 Citations
32 Claims
-
1. A system for analyzing a router in a shared network system, comprising:
-
an information retrieval system for retrieving information from the router;
a map system for generating a network map based on the retrieved information;
a network system for identifying source networks and destination networks based on the retrieved information; and
a findings system for identifying findings by comparing the retrieved information to the identified source and destination networks. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for analyzing a router in a shared network system, comprising the steps of:
-
retrieving information from the router;
generating a network map based on the information;
identifying source networks and destination networks based on the information; and
identifying findings by comparing the information to the identified source and destination networks. - View Dependent Claims (10, 11, 12, 13, 14, 16, 17, 18, 20, 21, 22, 23, 24, 25, 27, 28, 29, 30, 31, 32)
-
-
15. A system for analyzing a router in a shared network system, comprising:
-
an information retrieval system for retrieving filter files, flow tables, internal maps, policies, and preferences from the router;
a map generation system for generating a network map based on the internal maps;
a network identification system for identifying source networks and destination networks by parsing the flow tables; and
a findings system for identifying findings by comparing the identified source and destination networks to the network map and policies.
-
-
19. A program product stored on a recordable media for analyzing a router in a shared network system, which when executed comprises:
-
an information retrieval system for retrieving information from the router;
a map system for generating a network map based on the retrieved information;
a network system for identifying source networks and destination networks based on the retrieved information; and
a findings system for identifying findings by comparing the retrieved information to the identified source and destination networks.
-
-
26. A computer system for analyzing a router in a shared network system, comprising:
-
a processor;
a computer system memory;
an interface; and
a software product stored on the computer system memory and executable by the processor, wherein the software product comprises;
an information retrieval system for retrieving information from the router;
a map system for generating a network map based on the retrieved information;
a network system for identifying source networks and destination networks based on the retrieved information; and
a findings system for identifying findings by comparing the retrieved information to the identified source and destination networks.
-
Specification