Invention Grant
- Patent Title: Method and system for determining whether to alter a firewall configuration
- Patent Title (中): 确定是否更改防火墙配置的方法和系统
-
Application No.: US11623160Application Date: 2007-01-15
-
Publication No.: US07937353B2Publication Date: 2011-05-03
- Inventor: Andrew Bernoth , Medardo Roberto Sandoval
- Applicant: Andrew Bernoth , Medardo Roberto Sandoval
- Applicant Address: US NY Armonk
- Assignee: International Business Machines Corporation
- Current Assignee: International Business Machines Corporation
- Current Assignee Address: US NY Armonk
- Agency: Schmeiser, Olsen & Watts
- Agent Arthur J. Samodovitz
- Main IPC: G06N5/02
- IPC: G06N5/02
Abstract:
A method and system for determining whether to alter a firewall configuration. Message flow data associated with a message packet blocked by a firewall is received. The packet was blocked based on the firewall not having a message flow rule that permitted passage of the message packet. Risk values associated with a source network, destination network and destination port are identified by the message flow data. Based on the risk values, an electronic recommendation indicating whether to add to the firewall a message flow rule that permits the message flow to pass is determined and generated.
Public/Granted literature
- US20080172347A1 METHOD AND SYSEM FOR UTILIZING AN EXPERT SYSTEM TO DETERMINE WHETHER TO ALTER A FIREWALL CONFIGURATION Public/Granted day:2008-07-17
Information query
