Object model for managing firewall services
First Claim
1. A method for setting firewall policy for an application, comprising:
- receiving a first parameter comprising information about an application;
receiving a second parameter comprising information about a user of the application;
accessing security level information relating to the first and second parameters; and
setting a firewall policy for the application and the user utilizing the security level information.
3 Assignments
0 Petitions
Accused Products
Abstract
An object model is provided as a general framework for managing network services, such as firewall services. A user or an administrator of a computer may utilize the object model to manage and configure the firewall services. The object model isolates a user and/or an administrator from having to deal with the many possible issues involved in configuring the services. The object model includes two main name spaces: a policy engine platform and a policy object model. The policy engine platform is the central point for interacting with the policy for the services and the kernel components that actually perform the services. The policy object model is used to specify policies that the services support.
-
Citations
31 Claims
-
1. A method for setting firewall policy for an application, comprising:
-
receiving a first parameter comprising information about an application;
receiving a second parameter comprising information about a user of the application;
accessing security level information relating to the first and second parameters; and
setting a firewall policy for the application and the user utilizing the security level information. - View Dependent Claims (2, 3, 4)
-
-
5. A computer-readable medium having stored thereon a data structure, the data structure comprising;
-
a first data field representing an application;
a second data field representing a user of the application; and
a third data field representing available security settings for the user utilizing the application. - View Dependent Claims (6)
-
-
7. An object model for managing a service on a computer, the object model comprising:
-
a policy object model used to specify one or more policies that the service supports; and
a policy engine platform for interacting with said one or more policies for the service and at least one component that actually performs the service, and to provide said one or more policies to said at least one component. - View Dependent Claims (8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A method of managing a service on a computer, the method comprising:
-
specifying, via a policy object model, one or more policies that the service supports; and
interacting, via a policy engine platform, with said one or more policies for the service and at least one component that actually performs the service; and
providing, via the policy engine platform, said one or more policies to said at least one component. - View Dependent Claims (20, 21, 22, 23)
-
- 24. An object model for managing a firewall service on a computer, the object model comprising a policy object model used to specify one or more policies that the firewall service supports, the policy model comprising a policyrule object usable to generate policy, the policyrule object comprising a condition property and an action property, wherein a policy generated by the policyrule object is configured to perform an action in the action property responsive to a condition in the condition property being met.
Specification