METHOD AND SYSTEM FOR MULTIPLE SUB-SYSTEMS META SECURITY POLICY

US 20090222292A1
Filed: 02/28/2008
Published: 09/03/2009
Est. Priority Date: 02/28/2008
Status: Abandoned Application

First Claim

Patent Images

1. A method for multiple sub-systems meta Security Policy (MSSMSP) comprising business process policies for a business organization having a meta policy server, Business Asset Monitors (BAM'"'"'s) and security sub-systems, wherein the security sub-systems are supported by Policy Connectors and wherein the BAM'"'"'s are software agents on each business asset that are responsible to monitor the organizational users'"'"' activities and report that information to the meta policy server, the method comprising:

defining by a Chief Security Officer (CSO) of the organizational business assets, wherein the business assets are supported by the BAM'"'"'s;

correlating by said CSO of abstract, business oriented parameters with technical, low-level parameters of the security sub-systems; and

validating the security policy relative to the user'"'"'s by monitoring the users'"'"' activities against the business assets and by using the meta policy server,thereby enabling the creation, management and control of one central MSSMSP in correlation to the various security sub-system'"'"'s policies.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for multiple sub-systems meta Security Policy (MSSMSP) including business process policies for a business organization having a meta policy server, Business-Asset-Monitors (BAM'"'"'s) and security sub-systems, wherein the security sub-systems are supported by Policy Connectors and wherein the BAM'"'"'s are software agents on each business asset that are responsible to monitor the organizational users'"'"' activities and report that information to the meta policy server. The method includes defining by a Chief-Security-Officer (CSO) of the organizational business assets, wherein the business assets are supported by the BAM'"'"'s. The method also includes correlating by the CSO of abstract, business-oriented-parameters with technical, low-level parameters of the security sub-systems and validating the security policy relative to the user'"'"'s by monitoring the users'"'"' activities against the business assets and by using the meta policy server, thereby enabling the creation, management and control of one central MSSMSP in correlation to the various security sub-system'"'"'s policies.

Citations

12 Claims

1. A method for multiple sub-systems meta Security Policy (MSSMSP) comprising business process policies for a business organization having a meta policy server, Business Asset Monitors (BAM'"'"'s) and security sub-systems, wherein the security sub-systems are supported by Policy Connectors and wherein the BAM'"'"'s are software agents on each business asset that are responsible to monitor the organizational users'"'"' activities and report that information to the meta policy server, the method comprising:
- defining by a Chief Security Officer (CSO) of the organizational business assets, wherein the business assets are supported by the BAM'"'"'s;
  
  correlating by said CSO of abstract, business oriented parameters with technical, low-level parameters of the security sub-systems; and
  
  validating the security policy relative to the user'"'"'s by monitoring the users'"'"' activities against the business assets and by using the meta policy server,thereby enabling the creation, management and control of one central MSSMSP in correlation to the various security sub-system'"'"'s policies.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, wherein defining further comprises defining a security policy for each business asset.
  - 3. The method of claim 1, wherein the users of various business assets in the organization trigger functions, wherein the functions are clustered into business processes.
  - 4. The method of claim 3, wherein defining further comprises defining a security policy for each business process.
  - 5. The method of claim 1, wherein each of the business process policies represents a specific and relevant set of rules from the various security sub-systems, as represented by a security infrastructure.
  - 6. The method of claim 1, wherein each business process has a single Meta Security Policy, wherein the single Meta Security Policy states the situations in which this process may be used.
  - 7. The method of claim 6, wherein said situations comprise at least the conditions that are preferably met by the user'"'"'s environment before said user can use the business process.

8. A system under the direction of a chief security officer (CSO), said system providing Multiple Sub-Systems Meta Security Policy (MSSMSP) for a business organization comprising organizational business assets and employees/users, said system comprising:
- a meta policy server (MPS) enabling the CSO to define the organizational business assets and to correlate abstract, business oriented parameters with technical, low-level parameters;
  
  a plurality of business processes, wherein said business processes represent the activities the employees/user are activating on the business assets; and
  
  a connectors framework comprising;
  
  a business asset monitor (BAM) framework, wherein the BAM'"'"'s are components designed to monitor said business assets as part of the connectors framework; and
  
  a policy connectors (PC) framework, wherein the PC framework comprises components to communicate with the various security sub-systems,thereby enabling the creation, management and control of one central MSSMSP in correlation to the various security sub-system'"'"'s policies various security sub-system'"'"'s policies.
- View Dependent Claims (9, 10, 11, 12)
- - 9. The system of claim 8, wherein said MPS enables definition of provisioning rules and parameters for each of the security sub-systems supported by said PC'"'"'s.
  - 10. The system of claim 8, wherein said for different components of said business assets there are different BAM'"'"'s which logically control the full business process.
  - 11. The system of claim 8, wherein said BAM'"'"'s communicate with said MPS and report in near real time on any of said plurality of business processes activated by one of said employees/users, with the corresponding employee/user'"'"'s information.
  - 12. The system of claim 8, wherein said PC framework enables central management of the sub-systems.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Whitebox Security Ltd. (SailPoint Technologies Holdings, Inc.)
Original Assignee
Whitebox Security Ltd. (SailPoint Technologies Holdings, Inc.)
Inventors
Leib, Eran, Dukat, Ronny, Wexler, Shlomi, Goldberg, Maor

Application Number

US12/038,822
Publication Number

US 20090222292A1
Time in Patent Office

Days
Field of Search
US Class Current

705/7
CPC Class Codes

G06Q 10/06 Resources, workflows, human...

METHOD AND SYSTEM FOR MULTIPLE SUB-SYSTEMS META SECURITY POLICY

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

12 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD AND SYSTEM FOR MULTIPLE SUB-SYSTEMS META SECURITY POLICY

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

12 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links