会员体验
专利管家(专利管理)
工作空间(专利管理)
风险监控(情报监控)
数据分析(专利分析)
侵权分析(诉讼无效)
联系我们
交流群
官方交流:
QQ群: 891211   
微信请扫码    >>>
现在联系顾问~
热词
    • 5. 发明申请
    • METHOD AND SYSTEM FOR MANAGING SECURITY POLICIES
    • 管理安全政策的方法和系统
    • WO2009036896A4
    • 2009-07-16
    • PCT/EP2008007253
    • 2008-09-05
    • OBJECTSECURITY LTDLANG ULRICHSCHREINER RUDOLF
    • LANG ULRICHSCHREINER RUDOLF
    • H04L29/06G06F9/45
    • H04L63/20H04L63/0263H04L63/10H04L67/10
    • A system and method of managing security policies in an information technologies (IT) system are provided. In an example, the method includes receiving an input indicating a high-level security policy for the IT system, the received high-level security policy relating to non-functional system attributes for the IT system and received in a format that is not machine-enforceable at an enforcement entity of the IT system. A functional model for the IT system is determined, where the functional model indicates functional system attributes of the IT system. At least one pre-configured rule template is loaded, and at least one machine-enforceable rule is generated in a manner compliant with the received high-level security policy by iteratively filling the at least one pre-configured rule template with functional system attributes indicated by the functional model. After the generating step, the at least one machine-enforceable rule can be distributed (e.g., to an enforcement entity, an Intrusion Detection System (IDS), etc.). In another example, the receiving, determining, loading, generating and distributing steps can be performed at a policy node within an IT system.
    • 提供了一种在信息技术(IT)系统中管理安全策略的系统和方法。 在一个示例中,该方法包括接收指示IT系统的高级安全策略的输入,接收到的与IT系统的非功能系统属性相关的高级安全策略,并以不是机器级的格式接收, 可在信息系统的执法实体上执行。 确定IT系统的功能模型,其中功能模型指示IT系统的功能系统属性。 至少一个预先配置的规则模板被加载,并且以符合所接收的高级安全策略的方式生成至少一个可机器执行的规则,通过迭代地填充至少一个预先配置的规则模板,所述规则模板具有指示的功能系统属性 通过功能模型。 在生成步骤之后,可以分发至少一个可执行机器的规则(例如,到执行实体,入侵检测系统(IDS)等)。 在另一示例中,可以在IT系统内的策略节点执行接收,确定,加载,生成和分发步骤。