Protocol/API between a key server (KAP) and an enforcement point (PEP)
First Claim
Patent Images
1. A method for communicating policy information between at least one key authority point and at least one policy enforcement point, the method comprising:
- generating detailed policy information from high level policy definitions at the at least one key authority point;
communicating the detailed policy information from the at least one key authority point to the at least one policy enforcement point over a network, wherein the detailed policy information conforms to an application programming interface; and
receiving and storing of the detailed policy information at the at least one policy enforcement point.
9 Assignments
0 Petitions
Accused Products
Abstract
An Application Programming Interface (API) for communicating security policy information between a Key Authority Point (KAP) and a Policy Enforcement Point (PEP), thereby eliminating the need to manually install security policies on each network device.
-
Citations
25 Claims
-
1. A method for communicating policy information between at least one key authority point and at least one policy enforcement point, the method comprising:
-
generating detailed policy information from high level policy definitions at the at least one key authority point; communicating the detailed policy information from the at least one key authority point to the at least one policy enforcement point over a network, wherein the detailed policy information conforms to an application programming interface; and receiving and storing of the detailed policy information at the at least one policy enforcement point. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A system for communicating security policy information between a key authority point and a policy enforcement point, the system comprising:
-
at least one key authority point residing on a network; at least one policy enforcement point residing on the network; and an application programming interface between the at least one key authority point and the at least one policy enforcement point for invoking remote procedure calls over the network. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23, 24, 25)
-
Specification