System and method for interfacing with heterogeneous network data gathering tools
First Claim
Patent Images
1. A method, comprising:
- receiving network scan results from information sources in heterogeneous formats;
converting the network scan results into structurally normalized scan results using a plurality of first tags and a second tag nested in the first tags, the first tags indicating a test, the second tag indicating a result of the test;
identifying semantically equivalent network scan results in the structurally normalized scan results; and
comparing at least a portion of the semantically equivalent network scan results with a network policy to determine a compliance with the network policy.
13 Assignments
0 Petitions
Accused Products
Abstract
A prevention-based network auditing system includes a plurality of heterogeneous information sources gathering information about the network. An audit server invokes the heterogeneous information sources via a uniform communications interface to gather information about the network, and converts the information gathered by the information sources into a normalized data format such as, for example, into XML (Extensible Markup Language). The converted information is then stored in an audit repository for security and regulatory policy assessment, network vulnerability analysis, report generation, and security improvement recommendations.
-
Citations
20 Claims
-
1. A method, comprising:
-
receiving network scan results from information sources in heterogeneous formats; converting the network scan results into structurally normalized scan results using a plurality of first tags and a second tag nested in the first tags, the first tags indicating a test, the second tag indicating a result of the test; identifying semantically equivalent network scan results in the structurally normalized scan results; and comparing at least a portion of the semantically equivalent network scan results with a network policy to determine a compliance with the network policy. - View Dependent Claims (2, 3, 4, 5, 6, 18)
-
-
7. Logic encoded in one or more non-transitory media that includes code for execution and when executed by one or more processors is operable to perform operations comprising:
-
receiving network scan results from information sources in heterogeneous formats; converting the network scan results into structurally normalized scan results using a plurality of first tags and a second tag nested in the first tags, the first tags indicating a test, the second tag indicating a result of the test; identifying semantically equivalent network scan results in the structurally normalized scan results; and comparing at least a portion of the semantically equivalent network scan results with a network policy to determine a compliance with the network policy. - View Dependent Claims (8, 9, 10, 11, 12, 19)
-
-
13. A system, comprising:
one or more processors operable to execute instructions stored on a memory such that the one or more processors receive network scan results from information sources in heterogeneous formats; convert the network scan results into structurally normalized scan results using a plurality of first tags and a second tag nested in the first tags, the first tags indicating a test, the second tag indicating a result of the test; identify semantically equivalent network scan results in the structurally normalized scan results; and compare at least a portion of the semantically equivalent network scan results with a network policy to determine a compliance with the network policy. - View Dependent Claims (14, 15, 16, 17, 20)
Specification