Processing

Please wait...

Settings

Settings

Goto Application

1. WO2020140153 - VISUALIZING FIREWALL-PERMITTED NETWORK PATHS FOR ASSESSING SECURITY OF NETWORK CONFIGURATION

Publication Number WO/2020/140153
Publication Date 09.07.2020
International Application No. PCT/CA2020/050002
International Filing Date 02.01.2020
IPC
H04L 12/24 2006.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
12Data switching networks
02Details
24Arrangements for maintenance or administration
G06F 3/0481 2013.01
GPHYSICS
06COMPUTING; CALCULATING OR COUNTING
FELECTRIC DIGITAL DATA PROCESSING
3Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
01Input arrangements or combined input and output arrangements for interaction between user and computer
048Interaction techniques based on graphical user interfaces
0481based on specific properties of the displayed interaction object or a metaphor-based environment, e.g. interaction with desktop elements like windows or icons, or assisted by a cursor's changing behaviour or appearance
G06F 3/0484 2013.01
GPHYSICS
06COMPUTING; CALCULATING OR COUNTING
FELECTRIC DIGITAL DATA PROCESSING
3Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
01Input arrangements or combined input and output arrangements for interaction between user and computer
048Interaction techniques based on graphical user interfaces
0484for the control of specific functions or operations, e.g. selecting or manipulating an object or an image, setting a parameter value or selecting a range
H04L 29/02 2006.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/-H04L27/136
02Communication control; Communication processing
CPC
H04L 63/0227
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
02for separating internal from external traffic, e.g. firewalls
0227Filtering policies
H04L 63/101
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
10for controlling access to network resources
101Access control lists [ACL]
Applicants
  • CYBERNETIQ, INC. [CA]/[CA]
Inventors
  • CUMMINS, Joseph
  • WONG, Jonathan
Agents
  • MUELLER-NEUHAUS, Jason R.
  • VICKERS, Mark F.
  • BOOCOCK, Graeme R.
  • DAMIANI, Michael
  • WOOD, David
  • ALLARD, Louis
  • KEELER, Todd
  • EVENSON, Brandon
  • BEHMANN, Curtis B.
  • HUNG, Shin
  • DE KLEINE, Geoffrey
  • MARSMAN, Kathleen E.
  • NAUMAN, David A.
  • PUNDSACK, Scott
  • COGHLAN, Jeffrey
  • GORDON, Jeff
  • RAOUL, Jennifer
  • SILVER, Gail C.
  • SOJONKY, Andrew D.
  • WEBB, Timothy
  • HUNTER, Christopher N.
Priority Data
62/788,30104.01.2019US
62/821,17420.03.2019US
Publication Language English (EN)
Filing Language English (EN)
Designated States
Title
(EN) VISUALIZING FIREWALL-PERMITTED NETWORK PATHS FOR ASSESSING SECURITY OF NETWORK CONFIGURATION
(FR) VISUALISATION DE CHEMINS DE RÉSEAU PERMIS PAR UN PARE-FEU POUR ÉVALUER LA SÉCURITÉ D'UNE CONFIGURATION DE RÉSEAU
Abstract
(EN)
A computer-implemented method of generating in a display a dynamic accessibility diagram representing a firewall configuration of a firewall in a computer network. A computer generates in the display a pair of concentric rings representing the firewall, including outer and inner concentric rings each having segments respectively representing remote address ranges and local address ranges of the ACL rules. Selection of a segment causes generation of an accessibility curve between the selected segment and a pairing segment, thereby graphically representing accessibility between the corresponding remote and local address ranges.
(FR)
La présente invention concerne un procédé mis en œuvre par ordinateur pour générer dans un affichage un diagramme d'accessibilité dynamique représentant une configuration de pare-feu d'un pare-feu dans un réseau informatique. Un ordinateur génère dans l'affichage une paire d'anneaux concentriques représentant le pare-feu, comprenant des anneaux concentriques externe et interne ayant chacun des segments représentant respectivement des plages d'adresses distantes et des plages d'adresses locales des règles ACL. La sélection d'un segment provoque la génération d'une courbe d'accessibilité entre le segment sélectionné et un segment d'appariement, ce qui représente graphiquement l'accessibilité entre les plages d'adresses distantes et locales correspondantes.
Latest bibliographic data on file with the International Bureau