会员体验
专利管家(专利管理)
工作空间(专利管理)
风险监控(情报监控)
数据分析(专利分析)
侵权分析(诉讼无效)
联系我们
交流群
官方交流:
QQ群: 891211   
微信请扫码    >>>
现在联系顾问~
热词
    • 11. 发明申请
    • METHOD AND SYSTEM FOR MANAGING SECURITY POLICIES
    • 管理安全策略的方法和系统
    • WO2009036896A3
    • 2009-05-28
    • PCT/EP2008007253
    • 2008-09-05
    • OBJECTSECURITY LTDLANG ULRICHSCHREINER RUDOLF
    • LANG ULRICHSCHREINER RUDOLF
    • H04L29/06G06F9/45
    • H04L63/20H04L63/0263H04L63/10H04L67/10
    • A system and method of managing security policies in an information technologies (IT) system are provided. In an example, the method includes receiving an input indicating a high-level security policy for the IT system, the received high-level security policy relating to non-functional system attributes for the IT system and received in a format that is not machine-enforceable at an enforcement entity of the IT system. A functional model for the IT system is determined, where the functional model indicates functional system attributes of the IT system. At least one pre-configured rule template is loaded, and at least one machine-enforceable rule is generated in a manner compliant with the received high-level security policy by iteratively filling the at least one pre-configured rule template with functional system attributes indicated by the functional model. After the generating step, the at least one machine-enforceable rule can be distributed (e.g., to an enforcement entity, an Intrusion Detection System (IDS), etc.). In another example, the receiving, determining, loading, generating and distributing steps can be performed at a policy node within an IT system.
    • 提供了一种管理信息技术(IT)系统中的安全策略的系统和方法。 在一个示例中,该方法包括接收指示用于IT系统的高级安全策略的输入,所接收的与IT系统的非功能系统属性相关的高级安全策略并且以非机器可读的格式接收, 可在IT系统的执法实体中执行。 确定IT系统的功能模型,其中功能模型指示IT系统的功能系统属性。 加载至少一个预先配置的规则模板,并且通过以指示的功能系统属性迭代地填充至少一个预先配置的规则模板,以符合所接收的高级安全策略的方式来生成至少一个机器可执行规则 由功能模型。 在生成步骤之后,可以分发至少一个机器可执行规则(例如,到强制实体,入侵检测系统(IDS)等)。 在另一个示例中,可以在IT系统内的策略节点处执行接收,确定,加载,生成和分发步骤。