Rule-driven specification of Web Service policy
First Claim
1. At a computer system in a Web Services environment, a method of assisting a user in generating a more secure policy document by providing a rule-based tool that automatically selects security conditions for the user'"'"'s general security criteria such that the user does not have exposure to all of the security details, the method comprising acts of:
- presenting a set of Web Service security options to a user at a user interface, which abstracts the user from any specific code that will be generated for a secure policy document that satisfies one or more of the set of Web Service security options;
receiving user input selecting a general security criteria from the set of Web Service security options presented;
based on the received user input, accessing one or more security rules from a repository of extensible security metadata; and
using the one or more security rules corresponding to the general security criteria to generate the secure policy in accordance with the general security criteria.
2 Assignments
0 Petitions
Accused Products
Abstract
Example embodiments provide for a rule-based wizard type tool for generating secure policy documents. Wizard pages present a user with general Web Service security options or questions at a user interface, which abstracts the user from any specific code, e.g., XML code, used for creating a Web Service policy document. Based on user input selecting general criteria, security rules are accessed and evaluated for automatically making choices on behalf of the user for creating a secure policy document. Other embodiments also provide for presenting the user with an easily understandable visual representation of selected criteria of a policy document in, e.g., a tree like structure that shows relationships between various elements of the criteria.
-
Citations
36 Claims
-
1. At a computer system in a Web Services environment, a method of assisting a user in generating a more secure policy document by providing a rule-based tool that automatically selects security conditions for the user'"'"'s general security criteria such that the user does not have exposure to all of the security details, the method comprising acts of:
-
presenting a set of Web Service security options to a user at a user interface, which abstracts the user from any specific code that will be generated for a secure policy document that satisfies one or more of the set of Web Service security options;
receiving user input selecting a general security criteria from the set of Web Service security options presented;
based on the received user input, accessing one or more security rules from a repository of extensible security metadata; and
using the one or more security rules corresponding to the general security criteria to generate the secure policy in accordance with the general security criteria. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. At a computer system in a Web Services environment, a method of assisting a user in generating a more secure policy document by providing a rule-based tool that automatically selects security conditions for the user'"'"'s general security criteria such that the user does not have exposure to all of the security details, the method comprising:
-
an act of presenting a set of Web Service security options to a user at a user interface, which abstracts the user from any specific code that will be generated for a secure policy document that satisfies one or more of the set of Web Service security options;
an act of receiving user input selecting a general security criteria from the set of Web Service security options presented; and
a step for automatically applying one or more security rules to the general security criteria to create the secure policy document. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
-
-
25. At a computer system in a Web Services environment, a computer program product for implementing a method of assisting a user in generating a more secure policy document by providing a rule-based tool that automatically selects security conditions for the user'"'"'s general security criteria such that the user does not have exposure to all of the security details, the computer program product comprising one or more computer readable media having stored thereon computer executable instructions that, when executed by a processor, can cause the messaging system to perform the following:
-
present a set of Web Service security options to a user at a user interface, which abstracts the user from any specific code that will be generated for a secure policy document that satisfies one or more of the set of Web Service security options;
receive user input selecting a general security criteria from the set of Web Service security options presented;
based on the received user input, access one or more security rules from a repository of extensible security metadata; and
use the one or more security rules corresponding to the general security criteria to generate the secure policy in accordance with the general security criteria. - View Dependent Claims (26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36)
-
Specification