06484261 is referenced by 392 patents.

A method of establishing a representation of an abstract network security policy is disclosed. The representation is established in the form of a decision tree that is constructed by assembling graphical symbols representing policy actions and policy conditions. A user modifies properties of the graphical symbols to create a logical representation of the policy. Concurrently, the logical representation is transformed into a textual script that represents the policy, and the script is displayed as the user works with the logical representation. When the policy representation is saved, the script is translated into machine instructions that govern the operation of a network gateway or firewall. The policy representation is named. The policy representation may be applied to other network devices or objects by moving an icon identifying the representation over an icon representing the network device. Policies, network objects, and network services are stored in the form of trees.

Title
Graphical network security policy management
Application Number
9/210143
Publication Number
6484261 (B1)
Application Date
December 11, 1998
Publication Date
November 19, 2002
Inventor
Scott L Wiegel
San Jose
CA, US
Agent
Hickman Palermo Truong & Becker
US
Assignee
Cisco Technology
CA, US
IPC
G06F 11/30
View Original Source