METHOD AND APPARATUS FOR SOFTWARE POLICY MANAGEMENT
First Claim
1. A method of software policy management, comprising:
- defining a set of generic policies applicable to both a first policy-enabled software application and a second policy-enabled software application;
creating a first policy enforcement point in uncompiled software code for the first policy-enabled software application, the first policy enforcement point providing a first information element as an output from a compiled version of the first policy-enabled software application;
creating a second policy enforcement point in uncompiled software code for a second policy-enabled software application, the second policy enforcement point providing a second information element as an output from a compiled version of the second policy-enabled software application, the compiled version of the second policy-enabled software application having a different policy requirement than the first policy-enabled software application;
creating, based on the defined set of generic policies, first and second policy decision points as database fields in a policy manager external to the first and second policy-enabled software applications;
receiving the first and second information elements at the first and second policy decision points; and
performing policy decision making for the first and second software applications having different policy requirements based on the set of generic policies and in response to the received first and second information elements.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method for software policy management are provided. A compiled policy-enabled software application includes a policy enforcement point to export an information element to a policy manager. The policy manager includes a policy interpreter having a policy decision point to perform policy decision making based on the received information element from the policy enforcement point. Through a plurality of policy decision points, the policy manager can execute a wide range of policies for different compiled software applications. Policies can be modified centrally in the policy interpreter and changes can affect either one or more of the policy-enabled software applications. A policy manager browser can create and manage the policy decision making performed by the policy interpreter.
-
Citations
25 Claims
-
1. A method of software policy management, comprising:
-
defining a set of generic policies applicable to both a first policy-enabled software application and a second policy-enabled software application; creating a first policy enforcement point in uncompiled software code for the first policy-enabled software application, the first policy enforcement point providing a first information element as an output from a compiled version of the first policy-enabled software application; creating a second policy enforcement point in uncompiled software code for a second policy-enabled software application, the second policy enforcement point providing a second information element as an output from a compiled version of the second policy-enabled software application, the compiled version of the second policy-enabled software application having a different policy requirement than the first policy-enabled software application; creating, based on the defined set of generic policies, first and second policy decision points as database fields in a policy manager external to the first and second policy-enabled software applications; receiving the first and second information elements at the first and second policy decision points; and performing policy decision making for the first and second software applications having different policy requirements based on the set of generic policies and in response to the received first and second information elements. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A system for software policy management comprising:
-
a first compiled policy-enabled software application including a first policy enforcement point to export a first information element; a second compiled policy-enabled software application including a second policy enforcement point to export a second information element, the second compiled policy-enabled software application having a different policy requirement than the first compiled policy-enabled software application; and a policy interpreter including first and second policy decision points to receive the first and second information elements, respectively, and having a set of generic policies applicable to both the first and second compiled policy-enabled software applications, the policy interpreter arranged to perform policy decision making for the first and second software applications having different policy requirements based on the set of generic policies and on the received first and second information elements. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
-
-
25. A method of software policy management, comprising:
-
defining a set of generic policies applicable to both a first policy-enabled software application and a second policy-enabled software application; creating a first policy enforcement point in uncompiled software code for the first policy-enabled software application, the first policy enforcement point providing a first information element as an output from a compiled version of the first policy-enabled software application; creating a second policy enforcement point in uncompiled software code for a second policy-enabled software application, the second policy enforcement point providing a second information element as an output from a compiled version of the second policy-enabled software application, the compiled version of the second policy-enabled software application having a different policy requirement than the first policy-enabled software application; and creating, based on the defined set of generic policies, first and second policy decision points as database fields in a policy manager external to the first and second policy-enabled software applications, the first and second policy decision points to receive the first and second information elements and perform policy decision making for the first and second software applications having different policy requirements based on the set of generic policies and in response to the received first and second information elements.
-
Specification