WO2001098932A3 - Automated generation of an english language representation of a formal network security policy specification - Google Patents

Automated generation of an english language representation of a formal network security policy specification Download PDF

Info

Publication number
WO2001098932A3
WO2001098932A3 PCT/US2001/019259 US0119259W WO0198932A3 WO 2001098932 A3 WO2001098932 A3 WO 2001098932A3 US 0119259 W US0119259 W US 0119259W WO 0198932 A3 WO0198932 A3 WO 0198932A3
Authority
WO
WIPO (PCT)
Prior art keywords
network security
security policy
english language
language representation
automated generation
Prior art date
Application number
PCT/US2001/019259
Other languages
French (fr)
Other versions
WO2001098932A2 (en
Inventor
Geoffrey Cooper
Kieran Gerard Sherlock
Robert Shaw
Luis Filipe Pereira Valente
Original Assignee
Securify Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US09/826,602 external-priority patent/US20020093527A1/en
Priority claimed from US09/878,098 external-priority patent/US7047288B2/en
Application filed by Securify Inc filed Critical Securify Inc
Priority to AU2001271315A priority Critical patent/AU2001271315A1/en
Publication of WO2001098932A2 publication Critical patent/WO2001098932A2/en
Publication of WO2001098932A3 publication Critical patent/WO2001098932A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/06Management of faults, events, alarms or notifications
    • H04L41/069Management of faults, events, alarms or notifications using logs of notifications; Post-processing of notifications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/06Generation of reports
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/08Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters
    • H04L43/0805Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters by checking availability
    • H04L43/0811Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters by checking availability by checking connectivity
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/10Active monitoring, e.g. heartbeat, ping or trace-route
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1433Vulnerability analysis
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/22Parsing or analysis of headers

Abstract

A system and method for generating a human readable, e.g. English language, description of a formal specification of network security policy that allows non-technical staff within a user's organization to comprehend the policy. The description is simple enough to be understood, yet captures salient details of the policy.
PCT/US2001/019259 2000-06-16 2001-06-15 Automated generation of an english language representation of a formal network security policy specification WO2001098932A2 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU2001271315A AU2001271315A1 (en) 2000-06-16 2001-06-15 Automated generation of an english language representation of a formal network security policy specification

Applications Claiming Priority (6)

Application Number Priority Date Filing Date Title
US21212600P 2000-06-16 2000-06-16
US60/212,126 2000-06-16
US09/826,602 2001-04-05
US09/826,602 US20020093527A1 (en) 2000-06-16 2001-04-05 User interface for a security policy system and method
US09/878,098 US7047288B2 (en) 2000-01-07 2001-06-08 Automated generation of an english language representation of a formal network security policy specification
US09/878,098 2001-06-08

Publications (2)

Publication Number Publication Date
WO2001098932A2 WO2001098932A2 (en) 2001-12-27
WO2001098932A3 true WO2001098932A3 (en) 2002-05-16

Family

ID=27395693

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2001/019259 WO2001098932A2 (en) 2000-06-16 2001-06-15 Automated generation of an english language representation of a formal network security policy specification

Country Status (2)

Country Link
AU (1) AU2001271315A1 (en)
WO (1) WO2001098932A2 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8849993B2 (en) 2000-06-16 2014-09-30 Intel Corporation Method and apparatus for rate limiting

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8539548B1 (en) 2012-04-27 2013-09-17 International Business Machines Corporation Tiered network policy configuration with policy customization control

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
CHANG ET AL: "A Visual language for authorization modeling", PROCEEDINGS IEEE SYMPOSIUM ON VISUAL LANGUAGES, XX, XX, 23 September 1997 (1997-09-23), pages 110 - 118, XP002142414 *
FORD W R: "Administration in a multiple policy/domain environment: the administration and melding of disparate policies", NEW SECURITY PARADIGMS WORKSHOP, 1995. PROCEEDINGS LA JOLLA, CA, USA 22-25 AUG. 1995, LOS ALAMITOS, CA, USA,IEEE COMPUT. SOC, US, 22 August 1995 (1995-08-22), pages 42 - 52, XP010158975, ISBN: 0-8186-7318-4 *
KUHN D R ET AL: "Formal specification and verification of control software for cryptographic equipment", COMPUTER SECURITY APPLICATIONS CONFERENCE, 1990., PROCEEDINGS OF THE SIXTH ANNUAL TUCSON, AZ, USA 3-7 DEC. 1990, LOS ALAMITOS, CA, USA,IEEE COMPUT. SOC, US, 3 December 1990 (1990-12-03), pages 32 - 43, XP010021621, ISBN: 0-8186-2105-2 *

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8849993B2 (en) 2000-06-16 2014-09-30 Intel Corporation Method and apparatus for rate limiting

Also Published As

Publication number Publication date
WO2001098932A2 (en) 2001-12-27
AU2001271315A1 (en) 2002-01-02

Similar Documents

Publication Publication Date Title
WO2001018680A3 (en) Computer-assisted language translation
WO2004072926A3 (en) Management of conversations
WO2002049509A3 (en) Medical apparatus remote control and method
AU2001243610A1 (en) Fuzzy content network management and access
WO2001073725A3 (en) Method, system and storage medium for providing training to multiple users
WO2004034304A3 (en) A rule-based system and method for checking compliance of architectural analysis and design models
WO2002078240A3 (en) Pdstudio design system and method
WO2003039100A3 (en) Asynchronous access to synchronous voice services
AU2875202A (en) Remote network management software
CA2089842A1 (en) Language processing system using object networks
WO2001098932A3 (en) Automated generation of an english language representation of a formal network security policy specification
WO2007027346A3 (en) Modeling of heterogeneous multi-technology networks and services by method of translation of domain-focused user information model to common information model
Dugdale Being Deaf in New Zealand: A case study of the Wellington Deaf community
WO2001093076A8 (en) Simulating human intelligence in computers using natural language dialog
Igarashi et al. Hamiltonian BRST quantization of topological field theories
Lucke The relation between physical and computer-generated point spread functions and optical transfer functions
Liyanage et al. Sinhala Speech to Sri Lankan Sign Language Translation System
Lade Middle Ear Model Research and Application
黄振国 Network Security in Remote Supervisory Control
Rose St John's Ambulance Building: Alms house
Perera Socio-Economic Determinants of Domestic Solid Waste Generation: Special Reference to Kesbewa Municipal Area, Sri Lanka
Houselander et al. Time-multiplexed analogue circuit for implementing artificial neural networks
Bridger Theoretical Models of W-Virginis Stars
Vignaud Some facts and some dreams about solar models and solar neutrinos.
Taylor et al. An assessment of the economic feasibility of powering citrus irrigation systems in Florida with photovoltaic arrays [USA].

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AL AM AT AU AZ BA BB BG BR BY CA CH CN CR CU CZ DE DK DM EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
AK Designated states

Kind code of ref document: A3

Designated state(s): AE AL AM AT AU AZ BA BB BG BR BY CA CH CN CR CU CZ DE DK DM EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A3

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP