Firewall rule updating method based on bigraph

An update method and firewall technology, applied in the field of network security, can solve problems such as confirming update requirements, being unable to help firewall managers, generating optimal update instructions, etc., to achieve the effect of avoiding errors

Inactive Publication Date: 2014-06-04
HUNAN UNIV
View PDF3 Cites 7 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0010] The present invention provides a firewall rule update method based on a bipartite graph, which aims to solve the problem that there is no firewall update method designed for firewall update requirements at present, which cannot help firewall managers confirm update requirements, and avoid introducing new errors due to carelessness. At the same time, it is impossible to generate the optimal update command to complete the update according to the update requirements and the current firewall rules.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Firewall rule updating method based on bigraph
  • Firewall rule updating method based on bigraph
  • Firewall rule updating method based on bigraph

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0034]In order to make the purpose, technical solution and advantages of the present invention more clear, the present invention will be further described in detail below in conjunction with the accompanying drawings and embodiments. It should be understood that the specific embodiments described here are only used to explain the present invention, not to limit the invention.

[0035] figure 1 The implementation flow of the bipartite graph-based firewall rule update method provided by the embodiment of the present invention is shown.

[0036] The method for updating firewall rules includes the following steps:

[0037] Step S101, constructing a bipartite graph representing the firewall rules according to the firewall rules;

[0038] Step S102, matching the firewall rule update requirement with the bipartite graph representing the firewall rule, confirming the firewall rule update requirement, and updating the firewall rule.

[0039] As a preferred solution of the embodiment...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a firewall rule updating method based on a bigraph. According to the method, firstly, the bigraph expressing firewall rules is established according to the firewall rules, then the update needs of the firewall rules are matched with the bigraph expressing the firewall rules, and the update needs of the firewall rules are confirmed, and the firewall rules are updated. According to the firewall rule updating method based on the bigraph, updating of the firewall rules is converted into the operation of carrying out modification on edges and vertexes in the bigraph of the firewall rules, and the bigraph of the firewall rules clearly expresses the relations among all rules in a firewall. When unexpected results are generated in firewall rule updating process, a manager is reminded to correct the update needs in time, and errors caused by carelessness can be avoided. Meanwhile, according to the update requests confirmed by the manager and the current firewall rules, the updating of the firewall rules is completed by automatically generating optimal updating instructions, and rules in the updated firewall are made to be as few as possible to meet requirements of a user on updating of the firewall.

Description

technical field [0001] The invention belongs to the field of network security, and mainly relates to a method for updating firewall rules based on a bipartite graph. Background technique [0002] Firewall access control is one of the most important core strategies to ensure network security. The access control list (Access Control List, ACL) is a list of instructions for routers and switch interfaces. It plays a key role in protecting network equipment and servers. As the first checkpoint for the external network to enter the enterprise intranet, the access control list on the router has become an effective means to protect the security of the intranet. [0003] At present, there is no firewall update method designed to meet the firewall update requirements. The method proposed in the paper "Change-Impact Analysis of Firewall Policies" by Professor Alex Liu of Michigan State University helps firewall administrators understand what kind of impact the modification will have. ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
Inventor 李睿陈浩
Owner HUNAN UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap