Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Firewall security policy opening method and device based on simulation path analysis

A security strategy and path analysis technology, applied in the field of network security, can solve problems such as low efficiency and time-consuming

Active Publication Date: 2020-06-09
BEIJING ANBOTONG TECH CO LTD
View PDF6 Cites 9 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] In order to solve the problem that it will take a lot of time to manually find firewall devices that block access, especially in the case of many firewall devices, the existing policy activation method is inefficient. This application discloses a simulation-based Method and device for enabling firewall security policy based on path analysis

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Firewall security policy opening method and device based on simulation path analysis
  • Firewall security policy opening method and device based on simulation path analysis
  • Firewall security policy opening method and device based on simulation path analysis

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0054]In order to solve the problem that it will take a lot of time to manually find firewall devices that block access, especially in the case of many firewall devices, the existing policy activation method is inefficient. This application discloses a simulation-based A method and device for enabling a firewall security policy for path analysis.

[0055] see figure 1 , the first embodiment of the present application discloses a method for enabling a firewall security policy based on simulation path analysis, including:

[0056] Step S101, acquire policy activation application information, the policy activation application information includes 5-tuple information, and the 5-tuple information includes source address, destination address, source port number, destination port number and protocol type.

[0057] Step S102, according to the quintuple information, perform path analysis in the network simulation environment, and obtain the path analysis result, the network simulation...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The embodiment of the invention discloses a firewall security policy opening method and device based on simulation path analysis. According to the method, quintuple information is obtained by obtaining policy opening application information, then path analysis is carried out in a network simulation environment according to the quintuple information, a path analysis result is obtained, and the network simulation environment is constructed according to connection and mutual access relations of all network devices in an existing network environment. A firewall which prevents access in the path analysis process is positioned as a target firewall according to the path analysis result, a target security policy corresponding to the type of the target firewall is generated according to the targetfirewall, and the target security policy is issued to the target firewall to complete policy opening. Through the method, the firewall for preventing access can be quickly positioned, so that the target security policy corresponding to the target firewall is generated, and the policy opening efficiency is improved.

Description

technical field [0001] The present application relates to the technical field of network security, in particular to a method and device for enabling a firewall security policy based on simulation path analysis. Background technique [0002] A firewall is a security barrier set between different networks or network security domains. The firewall mainly uses related security policies to check the access behaviors in and out of the network, so as to achieve the purpose of restricting certain access behaviors. At present, when using the security policy to check the access behavior, it is mainly to judge whether the five-tuple in the data flow passing through the firewall complies with the provisions of the security policy. If it meets the regulations, the data flow can be released to allow this kind of access behavior. Wherein, the five-tuple includes source address, destination address, source port number, destination port number and protocol type. [0003] When a certain acce...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L12/24
CPCH04L63/02H04L63/20H04L41/14
Inventor 孙祥明
Owner BEIJING ANBOTONG TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com