×

Classification of security policies across multiple security products

  • US 9,401,933 B1
  • Filed: 01/20/2015
  • Issued: 07/26/2016
  • Est. Priority Date: 01/20/2015
  • Status: Active Grant
First Claim
Patent Images

1. A method performed at a management entity, comprising:

  • connecting with security devices across a network, each security device configured to operate in accordance with one or more security policies, each security policy including one or more security rules, each security rule including a set of rule parameters configured to permit or deny access to a resource;

    importing, over the network, the security policies from the security devices;

    classifying the security policies into one or more identical security policy classifications when all of their associated rule parameters are equivalent to each other, one or more similar security policy classifications when only some of their associated rule parameters are equivalent to each other, and one or more unique security policy classifications when none of their associated rule parameters are equivalent to each other;

    displaying a list of the rule parameters for each security policy classification and a filter option to specify a rule parameter associated with each security policy classification;

    receiving a specified rule parameter through the filter option; and

    displaying all of the rules in each security policy classification that includes a rule parameter that matches the specified rule parameter.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×