Security management system including feedback and control
First Claim
Patent Images
1. A system comprising:
- a security management system comprising;
a processor; and
a memory coupled to said processor, said memory having stored therein a network security feedback and control system;
wherein said network security feedback and control system receives a plurality of normalized events and issues at least one normalized command in response to a predefined event in said plurality of normalized events;
a security management agent coupled to said security management system wherein said security management agent collects normalized events generated by one or more managed products and forwards said normalized events to said security management system, further wherein said security management agent receives normalized commands from said security management system and forwards said normalized commands to at least one managed product; and
at least one managed product coupled to said security management agent wherein said at least one managed product generates and transfers at least one normalized event to said security management agent.
4 Assignments
0 Petitions
Accused Products
Abstract
A system uses automatic feedback and control to secure a network infrastructure by iterative convergence of the network'"'"'s security structure to meet a security policy. Following initialization, a security feedback control system of the security management system makes dynamic adjustments to the system using bi-directional services that are controlled via policy decision components, without user intervention.
430 Citations
16 Claims
-
1. A system comprising:
-
a security management system comprising; a processor; and a memory coupled to said processor, said memory having stored therein a network security feedback and control system;
wherein said network security feedback and control system receives a plurality of normalized events and issues at least one normalized command in response to a predefined event in said plurality of normalized events;a security management agent coupled to said security management system wherein said security management agent collects normalized events generated by one or more managed products and forwards said normalized events to said security management system, further wherein said security management agent receives normalized commands from said security management system and forwards said normalized commands to at least one managed product; and at least one managed product coupled to said security management agent wherein said at least one managed product generates and transfers at least one normalized event to said security management agent. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A system comprising:
-
a processor; and a memory coupled to said processor, said memory having stored therein an event subscription filter and a feedback and control manager coupled to said event subscription filter; wherein said event subscription filter receives a plurality of normalized events, generated by one or more managed products, from a security management agent and passes normalized events, for which said system is registered, to said feedback and control manager; and wherein said feedback and control manager processes at least one normalized event received from said event subscription filter and issues at least one normalized command to at least one security management agent for passing to at least one of said one or more managed products for use in dynamically implementing a predefined security policy. - View Dependent Claims (8, 9, 10, 11, 12, 13)
-
-
14. A method comprising:
-
receiving a plurality of normalized events generated by managed products by a network security feedback and control system from a security management agent; and using information in said plurality of normalized events by said network feedback and control system in dynamically implementing a predefined security policy by issuing at least one normalized command in response to a predefined event in said plurality of normalized events to a security management agent for passing to at least one managed product.
-
-
15. A computer-program product comprising a tangible computer-readable medium configured to store computer program code for a method comprising:
-
receiving a plurality of normalized events generated by managed products by a network security feedback and control system from a security management agent; and using information in said plurality of normalized events by said network feedback and control system in dynamically implementing a predefined security policy by issuing at least one normalized command in response to a predefined event in said plurality of normalized events to a security management agent for passing to at least one managed product.
-
-
16. A computer system:
- comprising;
a processor; and a memory coupled to said processor, said memory having stored therein a security management system, said security management system comprising; means for receiving a plurality of normalized events generated by managed products by a network security feedback and control system from a security management agent; and means for using information in said plurality of normalized events by said network feedback and control system in dynamically implementing a predefined security policy by issuing at least one normalized command in response to a predefined event in said plurality of normalized events to a security management agent for passing to at least one managed;
product.
- comprising;
Specification