Network policy management and effectiveness system
First Claim
Patent Images
1. A method for dynamically assisting a system administrator of a computer network in upgrading compliance policy based on behavior of system users, the method comprising the steps of:
- storing in a database a plurality of compliance policy opti9ons;
developing an initial compliance policy option potentially applicable to network users;
automatically evaluating over time the appropriateness of the initial compliance policy option based on the potentially evolving compliance history of users;
automatically compiling and providing to the system administrator over time a dynamic knowledge base comprising automated network user policy compliance violation documentation;
automatically determining from the knowledge base policy compliance violation documentation that the initial compliance policy option is ineffective;
automatically selecting from the database and recommending to the system administrator an alternate compliance policy options; and
automatically requesting that the system administrator confirm the change to the alternate compliance policy option whereby compliance policy options are dynamically altered and provided to the system administrator in order to eliminate ineffective compliance policy options
20 Assignments
0 Petitions
Accused Products
Abstract
A method, apparatus, and article of manufacture for maintaining policy compliance on a computer network is provided. The method provides the steps of electronically monitoring network user compliance with a network security policy stored in a database, electronically evaluating network security policy compliance based on network user compliance, and electronically undertaking a network policy compliance action in response to network security policy compliance.
-
Citations
2 Claims
-
1. A method for dynamically assisting a system administrator of a computer network in upgrading compliance policy based on behavior of system users, the method comprising the steps of:
-
storing in a database a plurality of compliance policy opti9ons;
developing an initial compliance policy option potentially applicable to network users;
automatically evaluating over time the appropriateness of the initial compliance policy option based on the potentially evolving compliance history of users;
automatically compiling and providing to the system administrator over time a dynamic knowledge base comprising automated network user policy compliance violation documentation;
automatically determining from the knowledge base policy compliance violation documentation that the initial compliance policy option is ineffective;
automatically selecting from the database and recommending to the system administrator an alternate compliance policy options; and
automatically requesting that the system administrator confirm the change to the alternate compliance policy option whereby compliance policy options are dynamically altered and provided to the system administrator in order to eliminate ineffective compliance policy options
-
-
2-12. -12. cancel.
Specification