Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

A method and device for intelligently generating network protection policies in a virtualized environment

A virtualized environment and protection strategy technology, applied in the field of intelligent generation of network protection strategies, can solve the problems of affecting normal business operation, inaccurate configuration of network protection strategies, cumbersome five-tuple strategy configuration, etc., to improve efficiency and reduce risks , the effect of security configuration

Active Publication Date: 2022-02-22
INSPUR SUZHOU INTELLIGENT TECH CO LTD
View PDF3 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, in the actual application scenario, at the initial stage of security software installation, due to the large number of virtualized resources that carry services, the security administrator cannot accurately configure the network protection policies among various service resources.
And the five-tuple policy configuration is cumbersome, once the configuration is wrong, it will affect the normal business operation

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A method and device for intelligently generating network protection policies in a virtualized environment
  • A method and device for intelligently generating network protection policies in a virtualized environment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0030] In order to make the purpose, technical solution and advantages of the present invention more clear, the embodiments of the present invention will be described in detail below in conjunction with the accompanying drawings. It should be noted that, in the case of no conflict, the embodiments in the present application and the features in the embodiments can be combined arbitrarily with each other.

[0031] The steps shown in the flowcharts of the figures may be performed in a computer system, such as a set of computer-executable instructions. Also, although a logical order is shown in the flowcharts, in some cases the steps shown or described may be performed in an order different from that shown or described herein.

[0032] Based on the above purpose, the first aspect of the embodiments of the present invention proposes an embodiment of a method for intelligently generating a network protection policy in a virtualized environment. figure 1 Shown is a schematic flow ch...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The present invention provides a method and equipment for intelligently generating network protection policies in a virtualized environment. The method includes the following steps: grouping data in network protection logs by keywords to obtain a first set; Record and query in the network protection log to obtain the second set; use the third set composed of virtual service resources of the management platform to filter the second set according to the source IP to obtain the first sub-set and the second sub-set; use the third set to filter according to the destination IP The first subset obtains the third subset and the fourth subset; the high-risk IPs and ports in the second subset, the third subset and the fourth subset are marked; the marked second subset, the third The sub-set and the fourth sub-set are pushed to the network protection automatic configuration service for network protection. The invention can help security administrators in a virtualized environment to quickly configure network protection strategies at the initial stage of service resource operation, improve efficiency and accuracy, and reduce risks caused by misoperations.

Description

technical field [0001] This field relates to the computer field, and more specifically relates to a method and device for intelligently generating network protection policies in a virtualized environment. Background technique [0002] With the development of virtualized resources, the security of virtualized resources becomes more and more important. Among them, network security has always been an important part of virtual resource security protection. Network security generally achieves the purpose of network protection by configuring five-tuple policies. However, in actual application scenarios, at the initial stage of security software installation, security administrators cannot accurately configure network protection policies among various service resources due to the large number of virtualized resources carrying services. Moreover, the configuration of the five-tuple policy is cumbersome, and once the configuration is wrong, normal business operation will be affecte...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/40H04L41/0803
CPCH04L63/20H04L41/0803
Inventor 甄鹏刘刚
Owner INSPUR SUZHOU INTELLIGENT TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com