专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US07831826B2 Method and system for distributing security policies 有权
标题翻译：分发安全策略的方法和系统
公开(公告)号：US07831826B2
公开(公告)日：2010-11-09
申请号：US12402448
申请日：2009-03-11
申请人： Shirish Koti , Narasimha Rao S. S. Nagampalli , Maxim Alexandrovich Ivanov , Sachin C. Sheth , Emanuel Paleologu , Yun Lin , Eric Erwin Youngblut
发明人： Shirish Koti , Narasimha Rao S. S. Nagampalli , Maxim Alexandrovich Ivanov , Sachin C. Sheth , Emanuel Paleologu , Yun Lin , Eric Erwin Youngblut
IPC分类号： G06F9/00 , H04L9/00
CPC分类号： H04L63/0218 , H04L63/0263 , H04L63/20
摘要： A method and system for distributing and enforcing security policies is provided. A firewall agent executing at a host computer system that is to be protected receives security policies for the enforcement engines responsible for enforcing the security policies on the host computer system. A security policy has rules that each provide a condition and action to be performed when the condition is satisfied. A rule also has a rule type that is used by the distribution system to identify the security components that are responsible for enforcing the rules. To distribute the security policies that have been received at a host computer system, the firewall agent identifies to which enforcement engine a rule applies based in part on rule type. The firewall agent then distributes the rule to the identified enforcement engine, which then enforces the rule.
摘要翻译：提供了分发和执行安全策略的方法和系统。在要被保护的主机计算机系统上执行的防火墙代理接收负责执行主机计算机系统上的安全策略的执行引擎的安全策略。安全策略具有规则，每个条件在条件满足时提供要执行的条件和操作。规则还具有由分发系统用于识别负责执行规则的安全组件的规则类型。为了分发在主机计算机系统上接收到的安全策略，防火墙代理将部分基于规则类型标识适用于哪个执行引擎。防火墙代理然后将规则分发到所识别的强制引擎，然后执行该规则。

2. 发明授权

US07509493B2 Method and system for distributing security policies 有权
标题翻译：分发安全策略的方法和系统
公开(公告)号：US07509493B2
公开(公告)日：2009-03-24
申请号：US10993688
申请日：2004-11-19
申请人： Shirish Koti , Narasimha Rao S. S. Nagampalli , Maxim Alexandrovich Ivanov , Sachin C. Sheth , Emanuel Paleologu , Yun Lin , Eric Erwin Youngblut
发明人： Shirish Koti , Narasimha Rao S. S. Nagampalli , Maxim Alexandrovich Ivanov , Sachin C. Sheth , Emanuel Paleologu , Yun Lin , Eric Erwin Youngblut
IPC分类号： G06F9/00 , H04L9/00
CPC分类号： H04L63/0218 , H04L63/0263 , H04L63/20
摘要： A method and system for distributing and enforcing security policies is provided. A firewall agent executing at a host computer system that is to be protected receives security policies for the enforcement engines responsible for enforcing the security policies on the host computer system. A security policy has rules that each provide a condition and action to be performed when the condition is satisfied. A rule also has a rule type that is used by the distribution system to identify the security components that are responsible for enforcing the rules. To distribute the security policies that have been received at a host computer system, the firewall agent identifies to which enforcement engine a rule applies based in part on rule type. The firewall agent then distributes the rule to the identified enforcement engine, which then enforces the rule.
摘要翻译：提供了分发和执行安全策略的方法和系统。在要被保护的主机计算机系统上执行的防火墙代理接收负责执行主机系统上的安全策略的执行引擎的安全策略。安全策略具有规则，每个条件在条件满足时提供要执行的条件和操作。规则还具有由分发系统用于识别负责执行规则的安全组件的规则类型。为了分发在主机计算机系统上接收到的安全策略，防火墙代理将部分基于规则类型标识适用于哪个执行引擎。防火墙代理然后将规则分发到所识别的强制引擎，然后执行该规则。

3. 发明授权

US07739720B2 Method and system for merging security policies 有权
标题翻译：合并安全策略的方法和系统
公开(公告)号：US07739720B2
公开(公告)日：2010-06-15
申请号：US10966800
申请日：2004-10-14
申请人： Anders Samuelsson , Maxim Alexandrovich Ivanov
发明人： Anders Samuelsson , Maxim Alexandrovich Ivanov
IPC分类号： G06F17/00 , H04L29/06
CPC分类号： G06F21/604 , G06F21/55 , G06F2221/2105
摘要： A method and system for combining and enforcing security policies is provided. The security system is provided with security policies that have process set criteria and associated rules. The security system combines the security policies by generating a rule list of the security policies and associated process set criteria. The rules of the rule list are ordered based on rule type and action of the rule. When a new process is started to execute an application, the security system determines the process set criteria that are satisfied by the application. The security system then identifies the rules of the rule list that are associated with the satisfied process set criteria. When a security enforcement event associated with the process occurs, the security system applies each of the rules associated with the process to the security enforcement event in an order specified by the rule list.
摘要翻译：提供了组合和实施安全策略的方法和系统。为安全系统提供具有进程设置标准和关联规则的安全策略。安全系统通过生成安全策略和关联的进程集合标准的规则列表来组合安全策略。规则列表的规则是根据规则的规则类型和操作进行排序的。当一个新进程开始执行应用程序时，安全系统确定应用程序满足的进程设置标准。然后，安全系统识别与满足的过程集合标准相关联的规则列表的规则。当发生与进程相关联的安全执行事件时，安全系统将按照规则列表指定的顺序将与进程关联的每个规则应用于安全执行事件。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式