×

Method of generating security rule-set and system thereof

  • US 8,646,031 B2
  • Filed: 12/15/2011
  • Issued: 02/04/2014
  • Est. Priority Date: 12/16/2010
  • Status: Active Grant
First Claim
Patent Images

1. A method of generating a security rule-set using a computer comprising a processor operatively coupled to a memory, the method comprising:

  • a) obtaining in the memory a group of log records of communication events resulting from traffic related to the security gateway;

    b) generating by the processor, a preliminary rule-set of permissive rules, said set covering the obtained group of log records;

    c) generating, by the processor and with the help of mapping the generated preliminary rule-set to the obtained group of log records, a rule-set of non-overlapping rules covering the obtained group of log records; and

    d) generating, by the processor, an operational rule-set by processing the generated rule-set of non-overlapping rules, said processing including mapping the generated rule-set of non-overlapping rule to the obtained group of log records,wherein generating the operational rule-set comprises recursive dividing the rules in respective preliminary rule-set and generating a respective rule-set of non-overlapping rules until the generated rule-set of non-overlapping rules matches a predefined criterion.

View all claims
  • 4 Assignments
Timeline View
Assignment View
    ×
    ×