Using imported data from security tools
First Claim
Patent Images
1. A method performed by one or more processors, the method comprising:
- creating, by the one or more processors, a project that includes one or more assessment criteria selected by a user from a plurality of assessment criteria;
obtaining, from a plurality of different network security tools associated with the one or more processors, assessment data associated with one or more network devices, for a particular assessment criterion of the one or more assessment criteria, wherein the assessment data includes a first data file in a first format and a second data file in a second format that differs from the first format, and a first unit of measurement and a second unit of measurement for the particular assessment criterion, wherein the first unit of measurement differs from the second unit of measurement;
normalizing, by the one or more processors, the assessment data including at least one of converting the first data file to the second format or converting the first unit of measurement to the second unit of measurement;
organizing, by the one or more processors, the normalized assessment data to form the project; and
providing a user interface utilized in outputting at least one of a report or an export file including the normalized assessment data.
4 Assignments
0 Petitions
Accused Products
Abstract
A device may create a new project that includes criteria, import findings from a group of different network security tools into the new project based on the criteria, normalize the imported findings, and store the normalized findings.
-
Citations
21 Claims
-
1. A method performed by one or more processors, the method comprising:
-
creating, by the one or more processors, a project that includes one or more assessment criteria selected by a user from a plurality of assessment criteria; obtaining, from a plurality of different network security tools associated with the one or more processors, assessment data associated with one or more network devices, for a particular assessment criterion of the one or more assessment criteria, wherein the assessment data includes a first data file in a first format and a second data file in a second format that differs from the first format, and a first unit of measurement and a second unit of measurement for the particular assessment criterion, wherein the first unit of measurement differs from the second unit of measurement; normalizing, by the one or more processors, the assessment data including at least one of converting the first data file to the second format or converting the first unit of measurement to the second unit of measurement; organizing, by the one or more processors, the normalized assessment data to form the project; and providing a user interface utilized in outputting at least one of a report or an export file including the normalized assessment data. - View Dependent Claims (2, 3, 4)
-
-
5. A method performed by one or more processors, the method comprising:
-
receiving a request for a report associated with a stored project; retrieving normalized assessment data associated with the stored project, in response to receiving the request, the normalized assessment data being associated with one or more network devices and having been acquired, by a plurality of different network security tools associated with the one or more processors, in a plurality of different formats containing a plurality of different units of measurement for a particular assessment criterion, wherein the normalized assessment data comprises at least one of a common format or a single unit of measurement for the particular assessment criterion; filtering the normalized assessment data based on user-specified criteria, and producing the report using the filtered normalized assessment data. - View Dependent Claims (6, 7, 8, 9, 10, 11, 12)
-
-
13. A system comprising:
-
a plurality of different network security tools to acquire assessment data for one or more network devices, wherein the acquired assessment data comprises a plurality of different formats containing a plurality of different units of measurement for a particular assessment criterion; at least one database; and a security assessment unit coupled to the at least one database and at least one hardware processor, the security assessment unit including; an import controller unit configured to; import the acquired assessment data from the plurality of different network security tools, and reconcile the acquired assessment data with respect to the plurality of different formats and the plurality of different units of measurement, a database interface controller unit configured to; store the reconciled assessment data in the at least one database, and retrieve the reconciled assessment data from the at least one database, and a presentation controller unit to; provide a view of a subset of the reconciled assessment data, the subset being specified by a user of the system and accessed through the database interface controller unit, and provide a user interface utilized in creating a report or an export file associated with the reconciled assessment data. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21)
-
Specification