Information processing system, control method therefor, image processing apparatus, control method therefor, and storage medium storing control program therefor
First Claim
1. An information processing system comprising:
- at least one processor connected to a memory, the processor and memory configured to;
receive security policy data including a security policy, the security policy data further including identification information of a predetermined policy exclusion application to which the security policy is not to be applied;
determine, based on confirming a policy version setting of an application, whether the application in an image processing apparatus supports enforcement of a setting to comply with the security policy in the security policy data;
set up the application to comply with the security policy in a case where it is determined that the application supports the enforcement of the setting to comply with the security policy in the security policy data; and
determine, based on the identification information in the security policy data, whether the application is the predetermined policy exclusion application identified by the identification information, in a case where it is determined that the policy version setting of the application does not support enforcement of a setting to comply with the security policy in the security policy data,wherein the determination that the application does not support the enforcement of the setting to comply with the security policy based on confirming the policy version setting of the application is separate from the determination that the application is the predetermined policy exclusion application,wherein in a case where it is determined that the policy version setting of the application does not support enforcement of a setting to comply with the security policy in the security policy data and the application is the predetermined policy exclusion application, the application is allowed to operate, andwherein in a case where it is determined based on confirming the policy version setting of the application that the application does not support the enforcement of the setting to comply with the security policy in the security policy data, the administrator is notified of a message about a security policy of the application via the display.
1 Assignment
0 Petitions
Accused Products
Abstract
An information processing system that facilitates management of information security policy even for an extended application installed from exterior. A receiving unit receives security policy data in which a security policy is described. A management unit manages an extended application that can be added and deleted and that operates in an image processing apparatus. A notification unit notifies an administrator of error information about a security policy of an extended application managed by the management unit, when the extended application managed by the management unit does not comply with the security policy described in the security policy data, and when an identifier of an extended application that is extracted from the security policy data and that is excepted from applying the security policy does not match with the identifier of the extended application managed by the management unit.
6 Citations
14 Claims
-
1. An information processing system comprising:
-
at least one processor connected to a memory, the processor and memory configured to; receive security policy data including a security policy, the security policy data further including identification information of a predetermined policy exclusion application to which the security policy is not to be applied; determine, based on confirming a policy version setting of an application, whether the application in an image processing apparatus supports enforcement of a setting to comply with the security policy in the security policy data; set up the application to comply with the security policy in a case where it is determined that the application supports the enforcement of the setting to comply with the security policy in the security policy data; and determine, based on the identification information in the security policy data, whether the application is the predetermined policy exclusion application identified by the identification information, in a case where it is determined that the policy version setting of the application does not support enforcement of a setting to comply with the security policy in the security policy data, wherein the determination that the application does not support the enforcement of the setting to comply with the security policy based on confirming the policy version setting of the application is separate from the determination that the application is the predetermined policy exclusion application, wherein in a case where it is determined that the policy version setting of the application does not support enforcement of a setting to comply with the security policy in the security policy data and the application is the predetermined policy exclusion application, the application is allowed to operate, and wherein in a case where it is determined based on confirming the policy version setting of the application that the application does not support the enforcement of the setting to comply with the security policy in the security policy data, the administrator is notified of a message about a security policy of the application via the display. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A control method for an information processing system, comprising:
-
receiving security policy data including a security policy, the security policy data further including identification information of a predetermined policy exclusion application to which the security policy is not to be applied; first determining, based on confirming a policy version setting of an application, whether the application in an image processing apparatus supports enforcement of a setting to comply with the security policy in the security policy data; setting up the application to comply with the security policy in a case where it is determined that the application supports the enforcement of the setting to comply with the security policy in the security policy data; second determining, based on the identification information in the security policy data, whether the application is the predetermined policy exclusion application identified by the identification information in a case where it is determined that the policy version setting of the application does not support enforcement of a setting to comply with the security policy in the security policy data, wherein the determining whether the application is the predetermined policy exclusion application is separate from the determination that the application does not support the enforcement of the setting to comply with the security policy based on confirming the policy version setting of the application, wherein in a case where it is determined that the policy version setting of the application does not support enforcement of a setting to comply with the security policy in the security policy data and it is determined that the application is the predetermined policy exclusion application, the application is allowed to operate and wherein in a case where it is determined based on confirming the policy version setting of the application that the application does not support the enforcement of the setting to comply with the security policy in the security policy data, the administrator is notified of a message about a security policy of the application via the display. - View Dependent Claims (11)
-
-
12. An image processing apparatus, comprising:
-
a processor connected to a memory, the processor and memory configured to; receive security policy data including a security policy, the security policy data further including identification information of a predetermined policy exclusion application to which the security policy is not to be applied; determine, based on confirming a policy version setting of an application, whether the application in an image processing apparatus supports enforcement of setting to comply with the security policy in the security policy data; set up the application to comply with the security policy in a case where it is determined, based on confirming the policy version setting of the application, that the application supports the enforcement of the setting to comply with the security policy in the security policy data ; and determine, based on the identification information included in the security policy data, whether the application is the predetermined policy exclusion application identified by the identification information in a case where it is determined that the policy version setting of the application does not support enforcement of a setting to comply with the security policy in the security policy data, wherein the determination that the application does not support the enforcement of the setting to comply with the security policy based on confirming the policy version setting of the application is separate from the determination that the application is the predetermined policy exclusion application, wherein in a case where it is determined that the policy version setting of the application does not support enforcement of a setting to comply with the security policy in the security policy data and the application is the predetermined policy exclusion application, the application is allowed to operate, and wherein in a case where it is determined that the policy version setting of the application does not support enforcement of a setting to comply with the security policy in the security policy data and the application is not the predetermined policy exclusion application, the administrator is notified of a message via the display. - View Dependent Claims (13, 14)
-
Specification