Locally adaptable central security management in a heterogeneous network environment
First Claim
1. In a system having a workflow management system and a central policy management system, a computer-implemented method of controlling workflow, comprising:
- creating a workflow class definition;
exporting the workflow class definition to the central policy management system;
binding resources and roles to steps within the central policy management system;
creating a workflow instance in both the workflow management system and the central policy management system; and
executing the workflow instance within a computer.
13 Assignments
0 Petitions
Accused Products
Abstract
A system and method for defining and enforcing a security policy. Security mechanism application specific information for each security mechanism is encapsulated as a key and exported to a semantic layer. Keys are combined to form key chains within the semantic layer. The key chains are in turn encapsulated as keys and passed to another semantic layer. A security policy is defined by forming key chains from keys and associating users with the key chains. The security policy is translated and exported to the security mechanisms. The security policy is then enforced via the security mechanisms.
-
Citations
22 Claims
-
1. In a system having a workflow management system and a central policy management system, a computer-implemented method of controlling workflow, comprising:
-
creating a workflow class definition;
exporting the workflow class definition to the central policy management system;
binding resources and roles to steps within the central policy management system;
creating a workflow instance in both the workflow management system and the central policy management system; and
executing the workflow instance within a computer. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. An article comprising a computer readable medium having instructions thereon, wherein the instructions, when executed in a computer, create a system for executing the method comprising:
-
creating a workflow class definition;
exporting the workflow class definition to the central policy management system;
binding resources and roles to steps within the central policy management system;
creating a workflow instance in both the workflow management system and the central policy management system; and
executing the workflow instance. - View Dependent Claims (10)
-
-
11. A workflow control system, comprising:
-
a workflow management system; and
a central policy management system;
wherein the workflow management system is configured to create a workflow class definition and export the workflow class definition to the central policy management system; and
wherein the central policy management system is configured to bind resources and roles to workflow steps. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
-
-
19. An apparatus comprising:
-
a network interface; and
a processing unit communicatively coupled to the interface, wherein the processing unit is configured to implement a workflow manager that creates a workflow class definition and exports the workflow class definition to a remote central policy management system that is configured to bind resources and roles to workflow steps. - View Dependent Claims (20, 21, 22)
-
Specification