Bank of America Corporation
SYSTEM AND METHOD FOR DETECTING FORBIDDEN NETWORK ACCESSES BASED ON ZONE CONNECTIVITY MAPPING

Abstract:

A system for automating identifications of forbidden network connections is configured to create a network connectivity matrix comprising allowability indications indicating whether establishing network connections between network zones are allowed or forbidden. The system determines whether there is any network connection between devices connected to a firewall device that violates a corresponding allowability indication in the network connectivity matrix. In response to determining at least one network connection between different devices that violates the corresponding allowability indication, the system determines that the at least one network connection is a forbidden network connection.