System and method for applying rule sets and rule interactions
First Claim
Patent Images
1. A computer readable storage medium including a set of instructions executable by a processor, that cause the processor to perform a method for screening incoming data of a network, comprising:
- determining relationships between a plurality of existing rules in a rule set of a firewall used to screen the incoming data of the network, wherein the relationships include cause interactions and effect interactions among the existing rules;
creating a representation of the relationships including the cause interactions and effect interactions;
receiving a new rule to be inserted into the rule set;
inserting further relationships between the new rule and the existing rules into the representation to create a modified representation; and
determining, based on the modified representation, if a conflict is created by insertion of the new rule in the rule set.
4 Assignments
0 Petitions
Accused Products
Abstract
Described is a system and method for determining relationships between a plurality of existing rules in a rule set, wherein the relationships include cause interactions and effect interactions among the existing rules, creating a representation of the relationships including the cause interactions and effect interactions, receiving a new rule to be inserted into the rule set and determining if a conflict is created by insertion of the new rule in the rule set.
-
Citations
19 Claims
-
1. A computer readable storage medium including a set of instructions executable by a processor, that cause the processor to perform a method for screening incoming data of a network, comprising:
-
determining relationships between a plurality of existing rules in a rule set of a firewall used to screen the incoming data of the network, wherein the relationships include cause interactions and effect interactions among the existing rules; creating a representation of the relationships including the cause interactions and effect interactions; receiving a new rule to be inserted into the rule set; inserting further relationships between the new rule and the existing rules into the representation to create a modified representation; and determining, based on the modified representation, if a conflict is created by insertion of the new rule in the rule set. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A system for screening incoming data of a network, comprising:
-
an analyzing module to analyze the relationships between a plurality of existing rules in a rule set of a firewall used to screen the incoming data of the network, wherein the relationships include cause interactions and effect interactions among the existing rules; a representation module to create a representation of the relationships including the cause interactions and effect interactions; a receiving module to receive a new rule to be inserted into the rule set; a new rule analyzing module to analyze if a conflict is created by insertion of the new rule in the rule set by inserting further relationships between the new rule and the existing rules to create a modified representation and determining if a conflict is created based on the modified representation; and a display to display the representation and the modified representation to a user of the system. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
Specification