Patent · US Active

Network address translation and service aware rule generation

US10666619B2 · kind B2 · utility

0Cited by

0References

25Claims

0Family size

Assignee

The Boeing Company · US

Inventors

Chong Ding · Riverside, US
Karim El Defrawy · Santa Monica, US

Key dates

Filing date	Jul 28, 2017
Grant date	May 26, 2020
Priority date	—
Expiry date	Apr 26, 2038

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2101/668
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A method for generating a security policy for a network includes classifying a sample of network flows into at least one flow type selected from a group including a service flow, mirror flow, network address translation flow, and arbitrary flow; grouping the network flows based on flow type and one or more of an associated service port, source port, and destination port. Network security rules for the network are automatically generated based on the groups of network flows. The network security rules may further be transformed into a security policy and configuration files.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.