-
1.发明申请Analyzing an access control list for a router to identify a subsumption relation between elements in the list 有权分析路由器的访问控制列表,以识别列表中元素之间的包含关系公开(公告)号:US20050102423A1
公开(公告)日:2005-05-12
申请号:US11006995
申请日:2004-12-07
申请人: Richard Pelavin , James McGuire , Herbert Madan
发明人: Richard Pelavin , James McGuire , Herbert Madan
IPC分类号: H04L12/56 , G06F15/173
摘要: Methods are described for analyzing access list subsumption in routing devices of a computer network and for identifying computer network integrity violations, by producing structured data that includes stored router names and access lists that include elements with address/mask pairs, or patterns used to filter data into and out of a routing device, respectively; determining whether access lists in the structured data include elements in which a first element in the access list has a more general or equal address/mask pair, or pattern, respectively, than a second or subsequent element, or pattern; and storing in electronic memory a report of elements or a list of patterns, respectively, in which a first element or pattern is more general than or equal to a second or subsequent element or pattern.
摘要翻译: 描述了用于分析计算机网络的路由设备中的访问列表包含以及用于识别计算机网络完整性违例的方法,其通过生成包括存储的路由器名称和包括具有地址/掩码对的元素的访问列表或者用于过滤数据的模式的结构化数据 分别进出路由设备; 确定结构化数据中的访问列表是否包括元素,其中访问列表中的第一元素分别具有比第二或后续元素或模式更一般或相等的地址/掩码对或模式; 以及分别在电子存储器中存储元件或模式列表的报告,其中第一元件或图案比第二或随后的元件或图案更一般。
搜索结果
1 条记录 (耗时 0.015 秒)
筛选
AND
AND
过滤
NOT
NOT
扫码加群
