SYSTEMS AND METHODS FOR DISTRIBUTED SECURITY POLICY MANAGEMENT
First Claim
1. An apparatus for distributing security policy objects to one or more client networks, the apparatus comprising:
- a security object server configured to retrieve one or more security policy objects and modify the one or more security policy objects;
a software data store to store one or more security policy objects; and
a client policy management module coupled to the security object server to receive updates to the one or more security policy servers and to send instructions to the security object server, the instructions intended to modify the one or more security policy objects using the update.
1 Assignment
0 Petitions
Accused Products
Abstract
In an embodiment, a system for distributed security policy management is described. The system may include, a security policy server, a network server at a client network and one or more client workstations on the client network. In an embodiment, the security policy server is configured to receive updates to one or more security policies and distribute security policy objects to one or more network servers. In another embodiment, the network server is configured to receive security policy objects and distribute the security policy objects to the one or more client workstations. In a further embodiment, methods for maintaining security policies for one or more client networks are described.
51 Citations
28 Claims
-
1. An apparatus for distributing security policy objects to one or more client networks, the apparatus comprising:
-
a security object server configured to retrieve one or more security policy objects and modify the one or more security policy objects;
a software data store to store one or more security policy objects; and
a client policy management module coupled to the security object server to receive updates to the one or more security policy servers and to send instructions to the security object server, the instructions intended to modify the one or more security policy objects using the update. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. An apparatus for providing security policy objects to one or more client workstations comprising:
-
an authentication module to receive one or more network access requests from one or more client workstations;
an object data store to store one or more security policy objects; and
an object distribution module to retrieve and distribute the one or more security policy objects to the one or more client workstations. - View Dependent Claims (10, 11, 12, 13)
-
-
14. A method of providing security policy objects to a subscriber, the method comprising:
-
receiving, from an agent of a subscribed network, an update to at least one security policy setting for at least one user on the subscribed network;
updating and storing a security policy object using the received update; and
sending the updated security policy object to a network server on the subscribed network. - View Dependent Claims (15, 16, 17, 18, 19)
-
-
20. A method of delivering security policy objects to client workstations, the security policy objects individually configured to implement a unique security level, the method comprising:
-
receiving a request from a client workstation at a network server;
determining if the client workstation is an allowed client workstation;
sending an authentication request to the client workstation if the client workstation is not an allowed client workstation;
sending a security policy object to the client workstation if the client workstation is an allowed client workstation; and
installing the security policy object on the client workstation. - View Dependent Claims (21, 22, 23, 24)
-
-
25. A method of updating security policy objects on a network services server, the method comprising:
-
maintaining in a data store one or more security software objects for a client network, each of the one or more security software objects configured to implement one or more security policies at a client workstation computer on the client network;
receiving updates to the one or more security policies;
updating the one or more security software objects such that the updated security software object is configured to implement the updated one or more security policies; and
periodically sending the updated one or more security software objects to a network services server at the client network, the network services server configured to distribute the one or more security software objects to one or more client workstations on the client network.
-
-
26. A system for distributed security policy management, the system comprising:
-
a security policy server coupled to a local network server across a network, the security policy server to maintain one or more security policy objects and to distribute the one or more security policy objects to the local network server as required;
the local network server, the local server comprising the following software modules;
an authentication module to receive one or more network access requests from one or more client workstations;
an object data store to locally store the one or more security policy objects; and
an object distribution module to retrieve and distribute the one or more security policy objects to the one or more client workstations. - View Dependent Claims (27, 28)
-
Specification