WO2004102922A3 - Communication path analysis - Google Patents

Communication path analysis Download PDF

Info

Publication number
WO2004102922A3
WO2004102922A3 PCT/US2004/014152 US2004014152W WO2004102922A3 WO 2004102922 A3 WO2004102922 A3 WO 2004102922A3 US 2004014152 W US2004014152 W US 2004014152W WO 2004102922 A3 WO2004102922 A3 WO 2004102922A3
Authority
WO
WIPO (PCT)
Prior art keywords
rule
attribute
communication path
path
path analysis
Prior art date
Application number
PCT/US2004/014152
Other languages
French (fr)
Other versions
WO2004102922A2 (en
Inventor
Jan Pachl
Original Assignee
Electronic Data Syst Corp
Jan Pachl
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US10/431,193 external-priority patent/US20040223486A1/en
Application filed by Electronic Data Syst Corp, Jan Pachl filed Critical Electronic Data Syst Corp
Publication of WO2004102922A2 publication Critical patent/WO2004102922A2/en
Publication of WO2004102922A3 publication Critical patent/WO2004102922A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • H04L63/0263Rule management

Abstract

Techniques are provided for communication path analysis. In certain implementations, communication path analysis includes retrieving a first communication path rule and a second communication path rule for an access control device, each rule including at least one path attribute type specifying at least one attribute and at least one path operation type specifying at least one operation; inserting the first rule into a database; determining, for at least one path attribute type, whether an attribute of the second rule corresponds to an attribute of the first rule; and when the attribute of the second rule does not correspond to an attribute of the first rule, inserting the attribute of the second rule into the database, along with the at least one operation of the second rule.
PCT/US2004/014152 2003-05-07 2004-05-07 Communication path analysis WO2004102922A2 (en)

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US10/431,193 US20040223486A1 (en) 2003-05-07 2003-05-07 Communication path analysis
US10/431,193 2003-05-07
US10/675,856 2003-09-30
US10/675,856 US20040223495A1 (en) 2003-05-07 2003-09-30 Communication path analysis

Publications (2)

Publication Number Publication Date
WO2004102922A2 WO2004102922A2 (en) 2004-11-25
WO2004102922A3 true WO2004102922A3 (en) 2008-02-21

Family

ID=33452783

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2004/014152 WO2004102922A2 (en) 2003-05-07 2004-05-07 Communication path analysis

Country Status (1)

Country Link
WO (1) WO2004102922A2 (en)

Non-Patent Citations (4)

* Cited by examiner, † Cited by third party
Title
GUPTA P ET AL: "PACKET CLASSIFICATION ON MULTIPLE FIELDS", COMPUTER COMMUNICATION REVIEW, ASSOCIATION FOR COMPUTING MACHINERY. NEW YORK, US, vol. 29, no. 4, October 1999 (1999-10-01), pages 147 - 160, XP000852195, ISSN: 0146-4833 *
HINRICHS S: "Policy-based management: bridging the gap", COMPUTER SECURITY APPLICATIONS CONFERENCE, 1999. (ACSAC '99). PROCEEDINGS. 15TH ANNUAL PHOENIX, AZ, USA 6-10 DEC. 1999, LOS ALAMITOS, CA, USA,IEEE COMPUT. SOC, US, 6 December 1999 (1999-12-06), pages 209 - 218, XP010368586, ISBN: 0-7695-0346-2 *
LAKSHMAN T V ET AL: "HIGH-SPEED POLICY-BASED PACKET FORWARDING USING EFFICIENT MULTI-DIMENSIONAL RANGE MATCHING", COMPUTER COMMUNICATION REVIEW, ASSOCIATION FOR COMPUTING MACHINERY. NEW YORK, US, vol. 28, no. 4, October 1998 (1998-10-01), pages 203 - 214, XP000914436, ISSN: 0146-4833 *
MIEI T ET AL: "Parallelization of IP-packet filter rules", INT. CONF. ON ALGORITHMS & ARCHITECTURES FOR PARALLEL PROCESSING, XX, XX, 1997, pages 381 - 388, XP002150561 *

Also Published As

Publication number Publication date
WO2004102922A2 (en) 2004-11-25

Similar Documents

Publication Publication Date Title
WO2006002180A3 (en) Network content organization tool
WO2004102924A3 (en) Communication path analysis
WO2007033338A3 (en) Networked information indexing and search apparatus and method
WO2007041351A3 (en) Actively characterizing a network
WO2002091232A3 (en) Method, system, and program for querying data in a personal information manager database
WO2008002578A3 (en) Methods and apparatus for improving data warehouse performance
WO2003012696A3 (en) Method and apparatus for analyzing manufacturing data
WO2003081476A3 (en) Method and data structure for a low memory overhead database
WO2004075095A3 (en) A user interface for monitoring remote devices
WO2005062210A8 (en) Methods and systems for personalized network searching
WO2001084373A3 (en) Information retrieval
WO2002050662A3 (en) Apparatus and method of video program classification based on syntax of transcript information
WO2006057675A3 (en) Method and system for automated risk management of rule-based security
WO2006047586A3 (en) Enhanced user assistance
DE602005016236D1 (en) Context-sensitive data handling
ATE488976T1 (en) CELL SELECTION DURING TRANSITION FROM FIXED MODE IN WIRELESS COMMUNICATIONS DEVICES
WO2008081305A3 (en) User interface for searching information
WO2002091004A3 (en) Test and on-board programming station
WO2009047912A1 (en) Content acquisition device
AU2003272014A1 (en) Method, device and computer program for detecting point correspondences in sets of points
TW200508858A (en) File management method for a digital device
WO2005076900A3 (en) Data and metadata linking form mechanism and method
WO2004102922A3 (en) Communication path analysis
WO2003060687A3 (en) Device for storing data and method for dividing space for data storing
WO2006033939A3 (en) Method and system for managing a supply chain of a commodity class

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SY TJ TM TN TR TT TZ UA UG UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): BW GH GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase