Security management apparatus, security management system, security management method, and security management program
First Claim
1. A security management apparatus comprising:
- a security diagnostic unit for making a security diagnosis on a basis of security information obtained from a security information providing unit for providing information concerning security in a network and further on a basis of machine information obtained from at least one network machine connected to a network to judge a type of security-related processing to be executed for said network machine or a predetermined network including said network machine and also judge whether or not the security-related processing needs to be executed; and
a security execution unit for executing predetermined security measure processing for said network machine or the predetermined network including said network machine on a basis of a result of diagnosis made by said security diagnostic unit.
1 Assignment
0 Petitions
Accused Products
Abstract
A security management apparatus is capable of taking various security measures while referencing machine information and hence excellent in flexibility and widely applicable. The apparatus includes a security diagnostic unit for making a security diagnosis on the basis of security information obtained from a security information providing apparatus for providing information concerning security in a network and further on the basis of machine information obtained from at least one network machine connected to a network to judge a type of security-related processing to be executed for the network machine and also judge whether or not the security-related processing needs to be executed. A security execution unit executes predetermined security measure processing for the network machine on the basis of a result of diagnosis made by the security diagnostic unit.
-
Citations
24 Claims
-
1. A security management apparatus comprising:
-
a security diagnostic unit for making a security diagnosis on a basis of security information obtained from a security information providing unit for providing information concerning security in a network and further on a basis of machine information obtained from at least one network machine connected to a network to judge a type of security-related processing to be executed for said network machine or a predetermined network including said network machine and also judge whether or not the security-related processing needs to be executed; and
a security execution unit for executing predetermined security measure processing for said network machine or the predetermined network including said network machine on a basis of a result of diagnosis made by said security diagnostic unit. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A security management apparatus comprising:
-
a security diagnostic unit for making a security diagnosis on a basis of machine information obtained from at least one network machine connected to a network and further on a basis of machine-related information obtained from a machine-related information storage unit containing predetermined information about network machines that are connected to said network or may be connected to said network to judge a type of security-related processing to be executed for said network machine or a predetermined network including said network machine and also judge whether or not the security-related processing needs to be executed; and
a security execution unit for executing predetermined security measure processing for said network machine or the predetermined network including said network machine on a basis of a result of diagnosis made by said security diagnostic unit. - View Dependent Claims (7, 8, 9, 10, 11, 12)
-
-
13. A security management system comprising:
-
a security information providing apparatus for providing security information concerning security in a network;
a machine-related information database containing predetermined information about network machines that are connected to said network or may be connected to said network;
a preventive system for judging whether or not there is damage to at least one network machine connected to a network or damage to a predetermined network including said network machine or whether or not preventive measures need to be executed for said network machine or said predetermined network on a basis of security information obtained from said security information providing apparatus and machine-related information obtained from said machine-related information database and further machine information obtained from said network machine; and
a recovery system for executing recovery processing when there is predetermined damage, or taking preventive measures on a basis of judgment made by said preventive system. - View Dependent Claims (14, 15, 16, 17, 18)
-
-
19. A security management method comprising the steps of:
-
obtaining security information concerning security in a network;
obtaining machine information from at least one network machine connected to a network;
making a security diagnosis on a basis of said security information and said machine information to judge a type of security-related processing to be executed for said network machine or a predetermined network including said network machine and also judge whether or not the security-related processing needs to be executed; and
executing predetermined security measure processing for said network machine or the predetermined network including said network machine on a basis of a result of diagnosis made by said security diagnostic step. - View Dependent Claims (20)
-
-
21. A security management method comprising the steps of:
-
obtaining machine information from at least one network machine connected to a network;
obtaining machine-related information from a machine-related information storage unit containing predetermined information about network machines that are connected to said network or may be connected to said network;
making a security diagnosis on a basis of said machine information and said machine-related information to judge a type of security-related processing to be executed for said network machine or a predetermined network including said network machine and also judge whether or not the security-related processing needs to be executed; and
executing predetermined security measure processing for said network machine or the predetermined network including said network machine on a basis of a result of diagnosis made by said security diagnostic step.
-
-
22. A security management program for instructing a computer to execute security management, said program comprising the steps of:
-
obtaining security information concerning security in a network;
obtaining machine information from at least one network machine connected to a network;
making a security diagnosis on a basis of said security information and said machine information to judge a type of security-related processing to be executed for said network machine or a predetermined network including said network machine and also judge whether or not the security-related processing needs to be executed; and
executing predetermined security measure processing for said network machine or the predetermined network including said network machine on a basis of a result of diagnosis made by said security diagnostic step. - View Dependent Claims (23)
-
-
24. A security management program for instructing a computer to execute security management, said program comprising the steps of:
-
obtaining machine information from at least one network machine connected to a network;
obtaining machine-related information from a machine-related information storage unit containing predetermined information about network machines that are connected to said network or may be connected to said network;
making a security diagnosis on a basis of said machine information and said machine-related information to judge a type of security-related processing to be executed for said network machine or a predetermined network including said network machine and also judge whether or not the security-related processing needs to be executed; and
executing predetermined security measure processing for said network machine or the predetermined network including said network machine on a basis of a result of diagnosis made by said security diagnostic step.
-
Specification