MA54776A1 - A method of deploying a new firewall security policy in a computer network. - Google Patents

A method of deploying a new firewall security policy in a computer network.

Info

Publication number
MA54776A1
MA54776A1 MA54776A MA54776A MA54776A1 MA 54776 A1 MA54776 A1 MA 54776A1 MA 54776 A MA54776 A MA 54776A MA 54776 A MA54776 A MA 54776A MA 54776 A1 MA54776 A1 MA 54776A1
Authority
MA
Morocco
Prior art keywords
policy
deploying
security policy
new
computer network
Prior art date
Application number
MA54776A
Other languages
French (fr)
Other versions
MA54776B1 (en
Inventor
Ali Kartit
Mohammed Tahiri
Original Assignee
Univ Int Rabat
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Univ Int Rabat filed Critical Univ Int Rabat
Priority to MA54776A priority Critical patent/MA54776B1/en
Priority to PCT/MA2022/050014 priority patent/WO2023075584A2/en
Publication of MA54776A1 publication Critical patent/MA54776A1/en
Publication of MA54776B1 publication Critical patent/MA54776B1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • H04L63/0263Rule management

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Business, Economics & Management (AREA)
  • General Business, Economics & Management (AREA)
  • Computer And Data Communications (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

La présente invention concerne une méthode de déploiement de nouvelle politique de sécurité de pare-feu pour des réseaux informatique et afin palier aux différents risques d’une politique courante. Il s’agit d’une démarche de mise à jour d’une politique de sécurité initiale (i) basée sur un algorithme qui automatise cette démarche et minimise les risques de sécurité inhérents au moment de déploiement d’une nouvelle politique de sécurité (t). Ceci par la création d’une politique intermédiaire (r) qui reçoit progressivement les nouvelles règles de (t) à implémenter et selon un ordre bien précis. La démarche de déploiement selon l’invention s’achève lorsque la politique (r) est égale la politique cible (t).The present invention relates to a method for deploying a new firewall security policy for computer networks and in order to overcome the various risks of a current policy. This is an approach to updating an initial security policy (i) based on an algorithm that automates this process and minimizes the inherent security risks when deploying a new security policy (t ). This by creating an intermediate policy (r) which gradually receives the new rules of (t) to be implemented and in a very specific order. The deployment approach according to the invention ends when the policy (r) is equal to the target policy (t).

MA54776A 2021-10-29 2021-10-29 Method for deploying a new firewall security policy in a computer network. MA54776B1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
MA54776A MA54776B1 (en) 2021-10-29 2021-10-29 Method for deploying a new firewall security policy in a computer network.
PCT/MA2022/050014 WO2023075584A2 (en) 2021-10-29 2022-11-14 Method for deploying a new firewall security policy in a computer network

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
MA54776A MA54776B1 (en) 2021-10-29 2021-10-29 Method for deploying a new firewall security policy in a computer network.

Publications (2)

Publication Number Publication Date
MA54776A1 true MA54776A1 (en) 2023-05-31
MA54776B1 MA54776B1 (en) 2023-09-27

Family

ID=86160130

Family Applications (1)

Application Number Title Priority Date Filing Date
MA54776A MA54776B1 (en) 2021-10-29 2021-10-29 Method for deploying a new firewall security policy in a computer network.

Country Status (2)

Country Link
MA (1) MA54776B1 (en)
WO (1) WO2023075584A2 (en)

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FR2872983A1 (en) 2004-07-09 2006-01-13 Thomson Licensing Sa FIREWALL PROTECTION SYSTEM FOR A COMMUNITY OF APPLIANCES, APPARATUS PARTICIPATING IN THE SYSTEM AND METHOD FOR UPDATING FIREWALL RULES WITHIN THE SYSTEM
US8099774B2 (en) 2006-10-30 2012-01-17 Microsoft Corporation Dynamic updating of firewall parameters
CN108650222B (en) 2018-03-29 2020-10-02 华付云技术(深圳)有限公司 Firewall rule updating method and system based on stretching filtering

Also Published As

Publication number Publication date
WO2023075584A3 (en) 2023-07-27
WO2023075584A2 (en) 2023-05-04
MA54776B1 (en) 2023-09-27

Similar Documents

Publication Publication Date Title
US9088543B2 (en) Coordinated network security management
US20130070753A1 (en) Consistent updates for packet classification devices
US20170134412A1 (en) Adaptive behavior profiling and anomaly scoring through continuous learning
US20150220331A1 (en) Resolving merge conflicts that prevent blocks of program code from properly being merged
US8427256B2 (en) Waveform shaping device, equalizer, receiving system, method of controlling waveform shaping device, control program, and computer-readable medium in which control program is recorded
MA54776A1 (en) A method of deploying a new firewall security policy in a computer network.
JP2023518015A (en) Data protection method, device, server and medium
FR3095880B1 (en) Method for the secure classification of input data using a convolutional neural network
CN107533247A (en) Modulation pattern computing device, light control device, modulation pattern computational methods, modulation pattern calculation procedure and storage medium
US20130091356A1 (en) Optimizing web landing page link access times through preliminary functions during page deployment
GB2422076A (en) Compensation of laser timing jitter
EP1387538B1 (en) Apparatus and method for determining routing paths in a communication network with selection attributes
US20230396406A1 (en) PAM4 Threshold Phase Engine
US20200133917A1 (en) Method, device and computer program product for managing data replication
CN112162774A (en) Software gray level release method and device
US10671792B2 (en) Identifying and resolving issues with plated through vias in voltage divider regions
KR20160067054A (en) Method and system for manufacturing serial link
CN106549969A (en) Data filtering method and device
EP3035623B1 (en) Preprocessing for nonlinear Fourier transform based Optical transmitter
WO2023139658A1 (en) Calibration apparatus, calibration method, and non-transitory computer-readable storage medium
AU1623199A (en) Method and apparatus for multi-stage data filtering by a single device
Filanovsky Design of wide-band amplifiers/filters using Lommel polynomials
CN114896986B (en) Method and device for enhancing training data of semantic recognition model
JP4954935B2 (en) Optical transmission apparatus and optical transmission method
US20210240665A1 (en) Lossless conversion of expressive metadata