发明名称 |
Methods, network services, and computer program products for recommending security policies to firewalls |
摘要 |
Recommending a security policy to a firewall, includes receiving a request from a firewall for a recommendation as to whether the firewall should allow or block a detected present communication for which the firewall does not have an existing security policy. Information about past blocked and allowed communications at other firewalls on a network is searched to identify past communications that are similar to the present communication. The identified past communications are assigned a respective positive or negative vote. A positive vote indicates a past communication was allowed and a negative vote indicates a past communication was not allowed. A positive recommendation is sent to the requesting firewall to allow the present communication if the positive votes outnumber the negative votes, and a negative recommendation is sent to the requesting firewall to block the present communication if the negative votes outnumber the positive votes. |
申请公布号 |
US8255985(B2) |
申请公布日期 |
2012.08.28 |
申请号 |
US20060598490 |
申请日期 |
2006.11.13 |
申请人 |
AARON JEFFREY;AT&T INTELLECTUAL PROPERTY I, L.P. |
发明人 |
AARON JEFFREY |
分类号 |
H04L29/06 |
主分类号 |
H04L29/06 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|