Security group strategy management method, apparatus and device, and computer readable storage medium

A policy management and security group technology, applied in the network security field of financial technology, can solve the problem of inability to automate auditing of security group policy compliance, and achieve the effect of automatic auditing and improving auditing efficiency.

Active Publication Date: 2019-10-11
WEBANK (CHINA)
View PDF9 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] The main purpose of the present invention is to provide a security group policy management method, device, equipment and readable storage medium, aiming to solve the technical problem that the prior art cannot make a comprehensive automatic audit on the compliance of the security group policy

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Security group strategy management method, apparatus and device, and computer readable storage medium
  • Security group strategy management method, apparatus and device, and computer readable storage medium
  • Security group strategy management method, apparatus and device, and computer readable storage medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0061] It should be understood that the specific embodiments described here are only used to explain the present invention, not to limit the present invention.

[0062] It should be noted that the security groups on the cloud service platforms of banks and other financial institutions are implemented based on local firewalls, which are fundamentally different from traditional network-layer firewalls, and the correspondence between policies and cloud hosts is extremely complicated. Over time, as more and more new systems come online, there will be more and more security group policies on the cloud. Since the security group policy can directly affect the network security of the enterprise public cloud, the eligibility of the security group policy is extremely important. Existing audits on the compliance of security group policies are manually audited one by one. In the face of a large number of security group policies, it is impossible to conduct a comprehensive and automatic au...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a security group strategy management method, apparatus and device and a computer readable storage medium, and relates to the field of financial science and technology, and themethod comprises the following steps: matching a corresponding source region for a source IP in a security group strategy according to a preset region mapping relation, and matching a corresponding target region for a target IP; judging whether the security group strategy is illegal or not according to a preset audit rule, the source region and the target region; and if the security group strategyis illegal, performing security management and control on the security group strategy; automatically judging whether the security group strategy is illegal or not according to the area to which the source IP and the target IP belong in the security group strategy and the preset auditing rule. Therefore, when the security group strategy violates rules, security management and control are automatically carried out on the security group strategy, automatic auditing of the security group strategy is further realized, the auditing efficiency of the security group strategy is improved, and comprehensive auditing can be carried out on a large number of security group strategies.

Description

technical field [0001] The present invention relates to the network security field of financial technology (Fintech), in particular to a security group policy management method, device, equipment and computer-readable storage medium. Background technique [0002] With the development of computer technology, more and more technologies are applied in the financial field, and the traditional financial industry is gradually transforming into Fintech. However, due to the security and real-time requirements of the financial industry, higher requirements are placed on technology. requirements [0003] The cloud service platform is a new enterprise information service model and management method, which can manage massive and highly virtualized enterprise resources and applications to form a unified service integrating resource pools and enterprise applications. [0004] The security groups on the cloud service platforms of financial institutions such as banks are implemented based ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
CPCH04L63/20H04L63/101
Inventor 蒋国梁邹丽丽邓丽铭张英
Owner WEBANK (CHINA)
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap