VALIDATING NETWORK SECURITY POLICY COMPLIANCE
First Claim
Patent Images
1. A method of validating network security policy compliance, the method comprising:
- creating a plurality of condition simulators for testing a network security policy, each condition simulator having a corresponding expected result; and
comparing a result of a test of the network security policy using one of the condition simulators to the expected result corresponding to the one of the condition simulators.
1 Assignment
0 Petitions
Accused Products
Abstract
The present invention may provide the ability to determine the actions triggered by a network security policy given a set of conditions. Embodiments of the invention involve testing the security policy at specified times, documenting and analyzing the test results for compliance, recording the results for auditing purposes, writing events to warn of non-compliance findings, and dynamically taking defensive action to prevent security breaches as the result of non-compliance findings.
38 Citations
18 Claims
-
1. A method of validating network security policy compliance, the method comprising:
-
creating a plurality of condition simulators for testing a network security policy, each condition simulator having a corresponding expected result; and comparing a result of a test of the network security policy using one of the condition simulators to the expected result corresponding to the one of the condition simulators. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A system for validating network security policy compliance, the system comprising:
a processing element configured for creating a plurality of condition simulators for testing a network security policy, each condition simulator having a corresponding expected result;
the processing element further configured for comparing a result of a test of the network security policy using one of the condition simulators to the expected result corresponding to the one of the condition simulators.- View Dependent Claims (8, 9, 10, 11, 12)
-
13. A computer program product for validating network security policy compliance, the computer program product comprising at least one computer-readable storage medium having computer-readable program code stored therein, the computer-readable program code comprising:
-
computer-usable program code for creating a plurality of condition simulators for testing a network security policy, each condition simulator having a corresponding expected result; and computer-usable program code for comparing a result of a test of the network security policy using one of the condition simulators to the expected result corresponding to the one of the condition simulators. - View Dependent Claims (14, 15, 16, 17, 18)
-
Specification