SUSPENDING COMMUNICATION TO/FROM NON-COMPLIANT SERVERS THROUGH A FIREWALL
First Claim
1. A computer-implemented method comprising:
- establishing a secure collection of compliance rules for security compliance, the establishing comprising;
accessing electronic security risk information identifying and describing security risks of software packages;
assigning a respective risk level to each of the identified security risks; and
building and storing the secure collection of compliance rules, wherein at least some of the compliance rules indicate the software packages and assigned risk levels of the identified security risks;
ascertaining, for each server of one or more servers of an environment, a respective one or more software packages installed on the server;
building a secure server and acceptable risk listing, the secure server and acceptable risk listing indicating each of the one or more servers of the environment and the respective one or more software packages installed on each server of the one or more servers;
assigning, based on a comparison of the compliance rules against the secure server and acceptable risk listing, risk ratings for the one or more servers;
securely storing the assigned risk ratings;
comparing, for a first server in communication with a second server, the second server being a server of the one or more servers, the assigned risk rating for the second server to an acceptable risk level indicated for the first server, the acceptable risk level being a level of risk the first server is configured to accept in communicating with the second server through a firewall; and
based on determining that the assigned risk rating for the second server exceeds the acceptable risk level, performing a rules modification to the firewall to enforce the compliance rules, the rules modification disabling communication between the first server and the second server through the firewall.
2 Assignments
0 Petitions
Accused Products
Abstract
Suspending communication to/from non-compliant servers through a firewall includes establishing a secure collection of compliance rules for security compliance, ascertaining, for each server of server(s) of an environment, respective software package(s) installed on the server, building a secure server and acceptable risk listing that indicates each of the server(s) and the software package(s) installed on each server, assigning and securely storing risk ratings for the server(s), comparing the assigned risk rating for a second server to an acceptable risk level indicated for a first server, and based on determining that the assigned risk rating for the second server exceeds the acceptable risk level, performing a rules modification to the firewall to enforce the compliance rules. The rules modification disables communication between the first server and the second server through the firewall.
-
Citations
20 Claims
-
1. A computer-implemented method comprising:
-
establishing a secure collection of compliance rules for security compliance, the establishing comprising; accessing electronic security risk information identifying and describing security risks of software packages; assigning a respective risk level to each of the identified security risks; and building and storing the secure collection of compliance rules, wherein at least some of the compliance rules indicate the software packages and assigned risk levels of the identified security risks; ascertaining, for each server of one or more servers of an environment, a respective one or more software packages installed on the server; building a secure server and acceptable risk listing, the secure server and acceptable risk listing indicating each of the one or more servers of the environment and the respective one or more software packages installed on each server of the one or more servers; assigning, based on a comparison of the compliance rules against the secure server and acceptable risk listing, risk ratings for the one or more servers; securely storing the assigned risk ratings; comparing, for a first server in communication with a second server, the second server being a server of the one or more servers, the assigned risk rating for the second server to an acceptable risk level indicated for the first server, the acceptable risk level being a level of risk the first server is configured to accept in communicating with the second server through a firewall; and based on determining that the assigned risk rating for the second server exceeds the acceptable risk level, performing a rules modification to the firewall to enforce the compliance rules, the rules modification disabling communication between the first server and the second server through the firewall. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A computer system comprising:
-
a memory; and a processor in communication with the memory, wherein the computer system is configured to perform a method comprising; establishing a secure collection of compliance rules for security compliance, the establishing comprising; accessing electronic security risk information identifying and describing security risks of software packages; assigning a respective risk level to each of the identified security risks; and building and storing the secure collection of compliance rules, wherein at least some of the compliance rules indicate the software packages and assigned risk levels of the identified security risks; ascertaining, for each server of one or more servers of an environment, a respective one or more software packages installed on the server; building a secure server and acceptable risk listing, the secure server and acceptable risk listing indicating each of the one or more servers of the environment and the respective one or more software packages installed on each server of the one or more servers; assigning, based on a comparison of the compliance rules against the secure server and acceptable risk listing, risk ratings for the one or more servers; securely storing the assigned risk ratings; comparing, for a first server in communication with a second server, the second server being a server of the one or more servers, the assigned risk rating for the second server to an acceptable risk level indicated for the first server, the acceptable risk level being a level of risk the first server is configured to accept in communicating with the second server through a firewall; and based on determining that the assigned risk rating for the second server exceeds the acceptable risk level, performing a rules modification to the firewall to enforce the compliance rules, the rules modification disabling communication between the first server and the second server through the firewall. - View Dependent Claims (12, 13, 14, 15, 16)
-
-
17. A computer program product comprising:
-
a computer readable storage medium readable by a processing circuit and storing instructions for execution by the processing circuit for performing a method comprising; establishing a secure collection of compliance rules for security compliance, the establishing comprising; accessing electronic security risk information identifying and describing security risks of software packages; assigning a respective risk level to each of the identified security risks; and building and storing the secure collection of compliance rules, wherein at least some of the compliance rules indicate the software packages and assigned risk levels of the identified security risks; ascertaining, for each server of one or more servers of an environment, a respective one or more software packages installed on the server; building a secure server and acceptable risk listing, the secure server and acceptable risk listing indicating each of the one or more servers of the environment and the respective one or more software packages installed on each server of the one or more servers; assigning, based on a comparison of the compliance rules against the secure server and acceptable risk listing, risk ratings for the one or more servers; securely storing the assigned risk ratings; comparing, for a first server in communication with a second server, the second server being a server of the one or more servers, the assigned risk rating for the second server to an acceptable risk level indicated for the first server, the acceptable risk level being a level of risk the first server is configured to accept in communicating with the second server through a firewall; and based on determining that the assigned risk rating for the second server exceeds the acceptable risk level, performing a rules modification to the firewall to enforce the compliance rules, the rules modification disabling communication between the first server and the second server through the firewall. - View Dependent Claims (18, 19, 20)
-
Specification