System and method for providing an enterprise-based computer security policy
First Claim
Patent Images
1. A system for providing an enterprise-based security policy, the system comprising:
- a central agent configured to retrieve a policy skin from a database and to transmit the policy skin to a host;
a data gathering engine configured to collect host data related to the host; and
a policy engine configured to execute the policy skin against the host data to determine security policy compliance.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method for providing an enterprise-based security policy are described. In one embodiment, the system includes a central agent that is configured to retrieve a policy skin from a database and to transmit the policy skin to a host. The system further includes a data gathering engine that is configured to collect host data related to the host. In addition, the system includes a policy engine that is configured to execute the policy skin against the host data to determine security policy compliance.
219 Citations
31 Claims
-
1. A system for providing an enterprise-based security policy, the system comprising:
-
a central agent configured to retrieve a policy skin from a database and to transmit the policy skin to a host;
a data gathering engine configured to collect host data related to the host; and
a policy engine configured to execute the policy skin against the host data to determine security policy compliance. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A language stack for providing an enterprise-based security policy, the language stack comprising:
-
a policy strings layer configured to include policy strings;
a policy definition language layer configured to include a policy definition language;
a first translator configured to parse policy strings into the policy definition language;
a general purpose language layer configured to include a general purpose language; and
a second translator configured to parse the policy definition language into the general purpose language. - View Dependent Claims (14, 15, 16, 17, 18)
-
-
19. A method for providing an enterprise-based security policy, the method comprising:
-
receiving a policy skin from a central server;
collecting host data related to a host;
executing the policy skin against the host data to determine security policy compliance; and
transmitting the host data and policy compliance information to the central server. - View Dependent Claims (20, 21, 22, 23, 24, 25, 26, 27)
-
-
28. A system for providing an enterprise-based security policy, the system comprising:
-
means for receiving a policy skin from a central server;
means for collecting host data related to a host;
means for executing the policy skin against the host data to determine security policy compliance; and
means for transmitting the host data and policy compliance information to the central server. - View Dependent Claims (29, 30, 31)
-
Specification