Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Heterogeneous firewall policy centralized management method, device and system

A firewall policy and centralized management technology, applied in the field of centralized management of heterogeneous firewall policies, can solve problems such as complex firewalls and difficult firewall policies, and achieve the effects of continuous compliance operation and maintenance, visual analysis, and network risk reduction

Pending Publication Date: 2022-05-31
山东源鲁信息科技有限公司
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

At present, based on the requirements of network security, the requirements for refined and centralized management of firewall policies have been put forward. However, in complex network scenarios, the analysis of massive firewall policies is beyond the reach of manpower. At the same time, Due to the inherent characteristics of heterogeneity, complexity and dynamics in a large number of firewalls, it is difficult to implement refined management and evaluation of firewall policies

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Heterogeneous firewall policy centralized management method, device and system
  • Heterogeneous firewall policy centralized management method, device and system
  • Heterogeneous firewall policy centralized management method, device and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0063] Such as Figure 1-Figure 8 As shown, this embodiment provides a method, device and system for centralized management of heterogeneous firewall policies, which are specifically divided into three aspects: method, device and system.

[0064] Such as Figure 1-2 As shown, this embodiment provides a method for centralized management of heterogeneous firewall policies, including the following steps:

[0065] S1. Introduce special tools for intelligent operation and maintenance management platform NSPM;

[0066] S2. Map the entire network equipment, security policies and access control rules into a visualized virtual network topology;

[0067] S3. For cross-vendor, diversified and heterogeneous firewall policies in a mixed network environment, obtain policy configuration data and perform centralized management;

[0068] S4. Discover the problem strategy and risk strategy in the strategy through preset rules, and clear and optimize the problem strategy and risk strategy;

...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to the technical field of communication security, in particular to a method, a device and a system for centralized management of heterogeneous firewall policies. Comprising the following steps: introducing an NSPM special tool; mapping the whole network equipment, the security policy and the access control rule thereof into a virtual network topology; acquiring strategy configuration data and performing centralized management; eliminating and optimizing the problem and the risk strategy through a preset rule; and newly adding or changing the management strategy. According to the design, rapid optimization and cleaning of massive policy rules can be realized, the network risk is reduced, and meanwhile, the performance load of network access control equipment is reduced; a network security topology is generated based on network security infrastructure modeling analysis, so that the setting and dynamic monitoring of a policy security baseline can be realized, and the visual analysis of network exposure risks can be realized; it can be ensured that the newly added strategy meets the compliance management requirement and the security control requirement, continuous compliance operation and maintenance of the access control strategy are achieved, and the efficiency of strategy change work is greatly improved.

Description

technical field [0001] The invention relates to the technical field of communication security, in particular to a method, device and system for centralized management of heterogeneous firewall policies. Background technique [0002] Firewall is the most common network security protection device, and it is widely deployed in the networks of various financial institutions. The basic function of the firewall is to prevent unauthorized access, prevent and reduce network risks by setting network access control policies, converging network access rights, and implementing the principle of least authorization. Access control policy is the soul of the firewall and the foundation of the network security defense system. Its setting effect directly affects the application effect of the firewall and the overall level of network security defense. If a network's access control policy is not well deployed, even with the most advanced network security equipment, attackers may achieve illega...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L9/40H04L41/08H04L41/0813H04L41/12H04L41/22H04L67/1001
CPCH04L63/02H04L63/205H04L41/0813H04L41/12H04L41/22H04L41/0876Y02D30/50
Inventor 于芳永李文皓吴纪军
Owner 山东源鲁信息科技有限公司
Features
  • Generate Ideas
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com