NETWORK POLICY MANAGEMENT AND EFFECTIVENESS SYSTEM
First Claim
1. An apparatus for managing a network compliance policy in a computer network, the apparatus comprising a computer system including at least one processor and at least one memory, wherein the computer system is configured and arranged for:
- storing a set of network compliance policy parameters on a database, the database being coupled to the computer network;
monitoring a plurality of electronic transactions from at least one user accessing the computer network;
comparing each of the plurality of electronic transactions with the set of network compliance policy parameters;
preparing a network compliance policy violation report in response to one of the plurality of electronic transactions matching one of the network compliance policy parameters;
filing the network policy compliance violation report;
conducting an appeals process in response to a request from the at least one user;
establishing an appeal report, the appeal report being based on the appeals process; and
taking action on the at least one user based on the network policy compliance violation report and the appeal report.
9 Assignments
0 Petitions
Accused Products
Abstract
The present disclosure relates to a method and apparatus for maintaining policy compliance on a computer network. A system in accordance with some embodiments disclosed herein performs the steps of electronically monitoring network user compliance with a network security policy stored in a database, electronically evaluating network security policy compliance based on network user compliance and electronically undertaking a network policy compliance action in response to network security policy non-compliance. The network policy compliance actions may include automatically implementing a different network security policy selected from network security policies stored in the database, generating policy effectiveness reports and providing a retraining module to network users.
-
Citations
25 Claims
-
1. An apparatus for managing a network compliance policy in a computer network, the apparatus comprising a computer system including at least one processor and at least one memory, wherein the computer system is configured and arranged for:
-
storing a set of network compliance policy parameters on a database, the database being coupled to the computer network; monitoring a plurality of electronic transactions from at least one user accessing the computer network; comparing each of the plurality of electronic transactions with the set of network compliance policy parameters; preparing a network compliance policy violation report in response to one of the plurality of electronic transactions matching one of the network compliance policy parameters; filing the network policy compliance violation report; conducting an appeals process in response to a request from the at least one user; establishing an appeal report, the appeal report being based on the appeals process; and taking action on the at least one user based on the network policy compliance violation report and the appeal report. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. An article of manufacture for managing a network compliance policy in a computer network, the article of manufacture comprising a non-transitory computer-readable storage medium having a computer program embodied therein that causes at least one network device in the computer network to perform operations comprising:
-
storing a set of network compliance policy parameters on a database, the database being coupled to the computer network; monitoring a plurality of electronic transactions from at least one user accessing the computer network; comparing each of the plurality of electronic transactions with the set of network compliance policy parameters; preparing a network compliance policy violation report in response to one of the plurality of electronic transactions matching one of the network compliance policy parameters; filing the network policy compliance violation report; conducting an appeals process in response to a request from the at least one user; establishing an appeal report, the appeal report being based on the appeals process; and taking action on the at least one user based on the network policy compliance violation report and the appeal report.
-
-
19. An apparatus for managing a network compliance policy in a computer network comprising:
-
means for storing a set of network compliance policy parameters on a database, the database being coupled to the computer network; means for monitoring a plurality of electronic transactions from at least one user accessing the computer network; means for comparing each of the plurality of electronic transactions with the set of network compliance policy parameters; means for preparing a network compliance policy violation report in response to one of the plurality of electronic transactions matches one of the network compliance policy parameters; means for filing the network policy compliance violation report; means for conducting an appeals process in response to a request from the at least one user; means for establishing an appeal report, the appeal report being based on the appeals process; and means for taking action on the at least one user based on the network policy compliance violation report and the appeal report.
-
-
20. A method of initiating a training session in a computer network comprising:
-
receiving user input from a first participant, the user input including a selection of one of a plurality of screen personalities available for a training session; recording the selected screen personality in a database; presenting the first participant with a virtual training room for the particular training session, the virtual training room configured to accommodate a plurality of participants for the particular training session and to represent each of the plurality of participants using a corresponding screen personality; presenting a virtual facilitator in the virtual training room to the plurality of participants, the virtual facilitator configured to explain rules associated with the particular training session; and generating a network policy by presenting a suggested policy to the plurality of participants and collecting network policy recommendations regarding the suggested policy from the plurality of participants. - View Dependent Claims (21, 22)
-
-
23. An apparatus for initiating a training session in a computer network, the apparatus comprising a computer system including at least one processor and at least one memory, wherein the computer system is configured and arranged for:
-
receiving user input from a first participant, the user input including a selection of one of a plurality of screen personalities available for a training session; recording the selected screen personality in a database; presenting the first participant with a virtual training room for the particular training session, the virtual training room configured to accommodate a plurality of participants for the particular training session and to represent each of the plurality of participants using a corresponding screen personality; presenting a virtual facilitator in the virtual training room to the plurality of participants, the virtual facilitator configured to explain rules associated with the particular training session; and generating a network policy by presenting a suggested policy to the plurality of participants and collecting network policy recommendations regarding the suggested policy from the plurality of participants.
-
-
24. An article of manufacture for initiating a training session in a computer network, the article of manufacture comprising a non-transitory computer-readable storage medium having a computer program embodied therein that causes at least one network device in the computer network to perform operations comprising:
-
receiving user input from a first participant, the user input including a selection of one of a plurality of screen personalities available for a training session; recording the selected screen personality in a database; presenting the first participant with a virtual training room for the particular training session, the virtual training room configured to accommodate a plurality of participants for the particular training session and to represent each of the plurality of participants using a corresponding screen personality; presenting a virtual facilitator in the virtual training room to the plurality of participants, the virtual facilitator configured to explain rules associated with the particular training session; and generating a network policy by presenting a suggested policy to the plurality of participants and collecting network policy recommendations regarding the suggested policy from the plurality of participants.
-
-
25. An apparatus for initiating a training session in a computer network comprising:
-
means for receiving user input from a first participant, the user input including a selection of one of a plurality of screen personalities available for a training session; means for recording the selected screen personality in a database; means for presenting the first participant with a virtual training room for the particular training session, the virtual training room configured to accommodate a plurality of participants for the particular training session and to represent each of the plurality of participants using a corresponding screen personality; means for presenting a virtual facilitator in the virtual training room to the plurality of participants, the virtual facilitator configured to explain rules associated with the particular training session; and means for generating a network policy by presenting a suggested policy to the plurality of participants and collecting network policy recommendations regarding the suggested policy from the plurality of participants.
-
Specification