×

System, method and computer program product for detecting policy violations

  • US 10,528,880 B2
  • Filed: 10/11/2016
  • Issued: 01/07/2020
  • Est. Priority Date: 10/11/2016
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented policy violation detection method, the method comprising:

  • extracting a policy activity from a policy, the policy activity including an actor in the policy, an object within the policy, an action of the policy, and policy scope metadata, the object being a tangible, physical object;

    capturing a transaction by a user including metadata of the transaction;

    translating the transaction by the user into an actor in the transaction, an action of the transaction, and an object of the transaction; and

    alerting the user of a policy violation by navigating a knowledge graph is-a hierarchy to relate the actor in the transaction to the actor in the policy, the object of the transaction to an object within the policy, and the action of the transaction to an action of the policy activity, thereby to verify that the object is related semantically to the transaction,wherein the alerting alerts the user of the at least one policy violation by running a rule-based inference model to predict if a portion of the policy activity is violated by a future action with the object of the transaction by the user based on an inference rule between the natural language of the transaction and the policy activity, andwherein the rule-based inference model includes;

    an inference rule to check the object against the policy if an object is acquired;

    an inference rule to check if the action enables a second action that can violate the policy in the future if the user does the action without the object; and

    an inference rule based on if the user changes the object or changes a state of the object that can violate the in the future.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×