摘要 |
In a large network, it can be difficult to pinpoint and track down the causes of breaches of established policies. A compliance policy server allows traversal of notifications according to breaches, organizes the breaches (vulnerabilities and violations) according to severity and recurrence, and identifies related rules and application services and network entities which may be related to the breach. An integrated graphical user interface (GUI) provides efficient, timely traversal and analysis of rule breaches across the network to allow quick, efficient identification of the underlying cause or condition of the rule breach, as well as identify impact on application services and network entities. A discoverer gathers configuration data including notifications of changes, alerts, and conditions in the network that are pertinent to the rule breaches. A compliance engine evaluates the configuration and topological data against the rules to identify breaches. Collective breaches pertaining to a common application or service or dependency indicate a common underlying condition causing the breach, therefore providing efficient correction of the underlying condition.
|