System and method for applying a machine-processable policy rule to information gathered about a network

Assignee

• Preventsys, Inc. · US

Inventors

• John Leslie Williams · San Diego, US
• Brian Costello · Cambridge, US
• John Patrick Ravenel · Escondido, US
• John Payne · Newport Beach, US
• Stephen Ritter · Solana Beach, US
• Ryan Nakawatase · Laguna Hills, US
• John Pelly · Village of La Jolla, US
• M. Celeste Rutherford · Del Mar, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L43/045
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

A prevention-based network auditing system includes a central compliance server storing both natural language policy documents and machine-processable policy rules in an audit repository. The compliance server provides a client-side user interface allowing a user to easily generate a machine-auditable policy by selecting/generating a natural language policy source document, and linking the applicable machine-processable policy rules to the applicable portions of the source document. The selected machine-processable policy rules are then applied to information gathered about the network during a scheduled network audit session for efficiently and systematically determining whether policy violations and/or vulnerabilities exist.