Security management system including feedback and control
First Claim
Patent Images
1. A system comprising:
- a security management system comprising;
a processor; and
a memory coupled to said processor, said memory having stored therein a network security feedback and control system;
wherein said network security feedback and control system receives a plurality of normalized events and issues at least one normalized command in response to a predefined event in said plurality of normalized events;
a security management agent coupled to said security management system wherein said security management agent collects normalized events generated by one or more managed products and forwards said normalized events to said security management system, further wherein said security management agent receives normalized commands from said security management system and forwards said normalized commands to at least one managed product; and
at least one managed product coupled to said security management agent wherein said at least one managed product generates and transfers at least one normalized event to said security management agent.
4 Assignments
0 Petitions
Accused Products
Abstract
A system uses automatic feedback and control to secure a network infrastructure by iterative convergence of the network'"'"'s security structure to meet a security policy. Following initialization, a security feedback control system of the security management system makes dynamic adjustments to the system using bi-directional services that are controlled via policy decision components, without user intervention.
430 Citations
16 Claims
-
1. A system comprising:
-
a security management system comprising; a processor; and a memory coupled to said processor, said memory having stored therein a network security feedback and control system;
wherein said network security feedback and control system receives a plurality of normalized events and issues at least one normalized command in response to a predefined event in said plurality of normalized events;a security management agent coupled to said security management system wherein said security management agent collects normalized events generated by one or more managed products and forwards said normalized events to said security management system, further wherein said security management agent receives normalized commands from said security management system and forwards said normalized commands to at least one managed product; and at least one managed product coupled to said security management agent wherein said at least one managed product generates and transfers at least one normalized event to said security management agent. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A system comprising:
-
a processor; and a memory coupled to said processor, said memory having stored therein an event subscription filter and a feedback and control manager coupled to said event subscription filter; wherein said event subscription filter receives a plurality of normalized events, generated by one or more managed products, from a security management agent and passes normalized events, for which said system is registered, to said feedback and control manager; and wherein said feedback and control manager processes at least one normalized event received from said event subscription filter and issues at least one normalized command to at least one security management agent for passing to at least one of said one or more managed products for use in dynamically implementing a predefined security policy. - View Dependent Claims (8, 9, 10, 11, 12, 13)
-
-
14. A method comprising:
-
receiving a plurality of normalized events generated by managed products by a network security feedback and control system from a security management agent; and using information in said plurality of normalized events by said network feedback and control system in dynamically implementing a predefined security policy by issuing at least one normalized command in response to a predefined event in said plurality of normalized events to a security management agent for passing to at least one managed product.
-
-
15. A computer-program product comprising a tangible computer-readable medium configured to store computer program code for a method comprising:
-
receiving a plurality of normalized events generated by managed products by a network security feedback and control system from a security management agent; and using information in said plurality of normalized events by said network feedback and control system in dynamically implementing a predefined security policy by issuing at least one normalized command in response to a predefined event in said plurality of normalized events to a security management agent for passing to at least one managed product.
-
-
16. A computer system:
- comprising;
a processor; and a memory coupled to said processor, said memory having stored therein a security management system, said security management system comprising; means for receiving a plurality of normalized events generated by managed products by a network security feedback and control system from a security management agent; and means for using information in said plurality of normalized events by said network feedback and control system in dynamically implementing a predefined security policy by issuing at least one normalized command in response to a predefined event in said plurality of normalized events to a security management agent for passing to at least one managed;
product.
- comprising;
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeSymantec Corporation (NortonLifeLock Inc.)
-
Original AssigneeSymantec Corporation (NortonLifeLock Inc.)
-
InventorsAgbabian, Paul M.
-
Primary Examiner(s)Moazzami; Nasser
-
Assistant Examiner(s)Hoffman; Brandon S
-
Application NumberUS10/660,225Time in Patent Office1,938 DaysField of Search726/25US Class Current726/25CPC Class CodesH04L 41/0213 Standardised network manage...H04L 41/06 Management of faults, event...H04L 41/0681 Configuration of triggering...H04L 63/102 Entity profilesH04L 63/20 for managing network securi...
