Invention Grant
US08479257B1 Method and apparatus for assessing policy compliance of as-built data networks
有权
评估建成数据网络政策合规性的方法和装置
- Patent Title: Method and apparatus for assessing policy compliance of as-built data networks
- Patent Title (中): 评估建成数据网络政策合规性的方法和装置
-
Application No.: US12537790Application Date: 2009-08-07
-
Publication No.: US08479257B1Publication Date: 2013-07-02
- Inventor: Michael A. Lloyd , Cary D. Jackson , Ralph T. Brenner , Jennifer Gates Durham
- Applicant: Michael A. Lloyd , Cary D. Jackson , Ralph T. Brenner , Jennifer Gates Durham
- Applicant Address: US CA San Mateo
- Assignee: Redseal Networks, Inc.
- Current Assignee: Redseal Networks, Inc.
- Current Assignee Address: US CA San Mateo
- Agency: Kilpatrick Townsend & Stockton LLP
- Agent Kenneth R. Allen
- Main IPC: G06F17/00
- IPC: G06F17/00
Abstract:
An as-built network is evaluated by analyzing a model of the network by the steps of determining zones within the network, computing the access between zones, summarizing the access between zones to produce a dataset, then inputting a policy set comprising a collection of approvals, typically in the form of simple white-lists of approvals, then comparing the dataset and particularly the access between zones with the policy set of approvals (white-lists) to determine which access fall outside the approvals, and producing therefrom as an output to an end user a report of compliance and noncompliance, and then repeating the steps of determining, computing, and summarizing, and then the comparing step, after a period or after the network has changed. Thus a network operator or auditor can readily and interactively assess whether the infrastructure is in compliance with regulatory or other design requirements.
Information query
