首页>
外国专利>
MULTI-STAGE DEFENSE-AWARE SECURITY MODULES PLACEMENT IN THE CLOUD
MULTI-STAGE DEFENSE-AWARE SECURITY MODULES PLACEMENT IN THE CLOUD
展开▼
机译:云中的多阶段防御-警觉安全模块放置
展开▼
页面导航
摘要
著录项
相似文献
摘要
Providing security for one or more network flows may include a security deployment node decomposing one or more virtual security appliances (265) of a logical security architecture (255) into security modules (310). The security deployment node orders the security modules (310) into a sequence (320) that implements a selected workflow pattern (400). The selected workflow pattern (400) may be selected from a workflow pattern database, and may define the security to be provided for a flow, for example, according to known best practices. The sequence (320) is then divided into segments (330), and the segments (330) are assigned to different groups (220) of network nodes (230) in a network (200). For each segment (330), an assignment of each security module (310) in the segment (330) to a network node (230) within the group (220) to which the segment (330) is assigned is computed. The network (200) is then configured according to the assignments.
展开▼