Object-relation user interface for viewing security configurations of network security devices
First Claim
1. A computer implemented method comprising:
- generating an object-relation user interface for viewing security configurations of network security devices on a display, wherein the generating includes;
generating for display by a computer device and displaying selectable device icons that represent respective network security devices;
responsive to a selection of one of the displayed device icons, generating for display by the computer device and displaying selectable interface icons that represent respective network interfaces used by the network security device represented by the selected device icon;
responsive to a selection of one of the displayed interface icons, generating for display by a computer device and displaying selectable policy icons that represent respective security polices used by the network interface represented by the selected interface icon, the security policies including security rules, each security rule including objects arranged according to a predetermined rule syntax to control access to a resource, at least some of the objects having respective object values;
responsive to a selection of one of the displayed policy icons, generating for display by a computer device and displaying selectable object group icons that represent respective groups of objects used in the security policy represented by the selected policy icon;
responsive to a selection of one of the displayed object group icons, generating for display by the computer device and displaying for the security rule objects in the group of objects represented by the selected object group icon respective object values in an editable form that permits editing of the object values, including adding a new object value, deleting one of the object values, or modifying one of the object values of the object-relation user interface for viewing the security configurations of the network security devices;
generating for concurrent display a selectable identical filter, a selectable similar filter, and the object group icons;
receiving a selection of either the identical filter or the similar filter;
in response to a selection of the identical filter being received;
identifying identical objects among the object groups represented by the object group icons, andgenerating for display the identical objects; and
in response to a selection of the similar filter being received;
identifying similar objects among the object groups represented by the object group icons, andgenerating for display the similar objects.
1 Assignment
0 Petitions
Accused Products
Abstract
In a computer implemented method, selectable device icons that represent respective network security devices are generated for display. Responsive to a selection of one of the device icons, selectable interface icons that represent respective network interfaces used by the network security device represented by the selected device icon are generated for display. Responsive to a selection of one of the interface icons, selectable policy icons that represent respective security polices applied to the network interface represented by the selected interface icon are generated for display. Responsive to a selection of one of the policy icons, selectable object group icons that represent respective groups of security rule objects used in the network security policy represented by the selected policy icon are generated for display.
46 Citations
22 Claims
-
1. A computer implemented method comprising:
-
generating an object-relation user interface for viewing security configurations of network security devices on a display, wherein the generating includes; generating for display by a computer device and displaying selectable device icons that represent respective network security devices; responsive to a selection of one of the displayed device icons, generating for display by the computer device and displaying selectable interface icons that represent respective network interfaces used by the network security device represented by the selected device icon; responsive to a selection of one of the displayed interface icons, generating for display by a computer device and displaying selectable policy icons that represent respective security polices used by the network interface represented by the selected interface icon, the security policies including security rules, each security rule including objects arranged according to a predetermined rule syntax to control access to a resource, at least some of the objects having respective object values; responsive to a selection of one of the displayed policy icons, generating for display by a computer device and displaying selectable object group icons that represent respective groups of objects used in the security policy represented by the selected policy icon; responsive to a selection of one of the displayed object group icons, generating for display by the computer device and displaying for the security rule objects in the group of objects represented by the selected object group icon respective object values in an editable form that permits editing of the object values, including adding a new object value, deleting one of the object values, or modifying one of the object values of the object-relation user interface for viewing the security configurations of the network security devices; generating for concurrent display a selectable identical filter, a selectable similar filter, and the object group icons; receiving a selection of either the identical filter or the similar filter; in response to a selection of the identical filter being received; identifying identical objects among the object groups represented by the object group icons, and generating for display the identical objects; and in response to a selection of the similar filter being received; identifying similar objects among the object groups represented by the object group icons, and generating for display the similar objects. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. An apparatus comprising:
-
a network interface unit configured to enable communications over a network; and a hardware processor, coupled to the network interface unit, configured to generate an object-relation user interface for viewing security configurations of network security devices on a display, wherein the processor is configured to; generate for display selectable device icons that represent respective network security devices; responsive to a selection of one of the device icons, generate for display selectable interface icons that represent respective network interfaces used by the network security device represented by the selected device icon; responsive to a selection of one of the interface icons, generate for display selectable policy icons that represent respective security polices used by the network interface represented by the selected interface icon, the security policies including security rules, each security rule including objects arranged according to a predetermined rule syntax to control access to a resource, at least some of the objects having respective object values; responsive to a selection of one of the policy icons, generate for display selectable object group icons that represent respective groups of objects used in the security policy represented by the selected policy icon; responsive to a selection of one of the object group icons, generate for display for the security rule objects in the group of objects represented by the selected object group icon respective object values in an editable form that permits editing of the object values, including adding a new object value, deleting one of the object values, or modifying one of the object values of the object-relation user interface for viewing the security configurations of the network security devices; generating for concurrent display a selectable identical filter, a selectable similar filter, and the object group icons; receiving a selection of either the identical filter or the similar filter; in response to a selection of the identical filter being received; identifying identical objects among the object groups represented by the object group icons, and generating for display the identical objects; and in response to a selection of the similar filter being received; identifying similar objects among the object groups represented by the object group icons, and generating for display the similar objects. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
-
16. A non-transitory computer readable storage media encoded with instructions that, when executed by a processor, cause the processor to perform:
-
generating an object-relation user interface for viewing security configurations of network security devices on a display, wherein the generating includes; generating for display selectable device icons that represent respective network security devices; responsive to a selection of one of the device icons, generating for display selectable interface icons that represent respective network interfaces used by the network security device represented by the selected device icon; responsive to a selection of one of the interface icons, generating for display selectable policy icons that represent respective security polices used by the network interface represented by the selected interface icon, the security policies including security rules, each security rule including objects arranged according to a predetermined rule syntax to control access to a resource, at least some of the objects having respective object values; responsive to a selection of one of the policy icons, generating for display selectable object group icons that represent respective groups of objects used in the security policy represented by the selected policy icon; responsive to a selection of one of the object group icons, generating for display for the security rule objects in the group of objects represented by the selected object group icon respective object values in an editable form that permits editing of the object values, including adding a new object value, deleting one of the object values, or modifying one of the object values of the object-relation user interface for viewing the security configurations of the network security devices; generating for concurrent display a selectable identical filter, a selectable similar filter, and the object group icons; receiving a selection of either the identical filter or the similar filter; in response to a selection of the identical filter being received; identifying identical objects among the object groups represented by the object group icons, and generating for display the identical objects; and in response to a selection of the similar filter being received; identifying similar objects among the object groups represented by the object group icons, and generating for display the similar objects. - View Dependent Claims (17, 18, 19, 20, 21, 22)
-
Specification