System for Supervising the Security of an Architecture
First Claim
1. A method for supervising security of an architecture comprising a plurality of interconnected clouds, a cloud comprising a plurality of resources and a security supervisor, the plurality of resources forming a plurality of resource groups in the cloud that are respectively associated with a security domain, a security controller supervising the resources of the domain, a plurality of physical machines comprising the resources of the plurality of clouds, the method comprising:
- a step of reception of a security event by a security controller of a first cloud, originating from a first resource associated with a first security domain,a step of sending said security event to the security supervisor of the first cloud,a step of sending a security order by the security supervisor of the first cloud to at least a second security controller of the first cloud in reaction to the security event, and of sending the security order by the second security controller to a second resource supervised by the second controller.
1 Assignment
0 Petitions
Accused Products
Abstract
A method is provided for supervising security of an architecture having a plurality of interconnected clouds. A cloud includes a plurality of resources and a security supervisor. The plurality of resources forms in the cloud a plurality of groups of resources associated respectively with a security domain. A security controller supervises the resources of the domain, and a plurality of physical machines contains the resources of the plurality of clouds. The method includes: receiving a security event by a security controller of a first cloud, originating from a first resource associated with a first security domain; dispatching said security event to the security supervisor of the first cloud; and dispatching by the security supervisor of the first cloud a security order in reaction to the security event to at least one second security controller of the first cloud and dispatching the security order by the second security controller to a second resource supervised by the second controller.
20 Citations
5 Claims
-
1. A method for supervising security of an architecture comprising a plurality of interconnected clouds, a cloud comprising a plurality of resources and a security supervisor, the plurality of resources forming a plurality of resource groups in the cloud that are respectively associated with a security domain, a security controller supervising the resources of the domain, a plurality of physical machines comprising the resources of the plurality of clouds, the method comprising:
-
a step of reception of a security event by a security controller of a first cloud, originating from a first resource associated with a first security domain, a step of sending said security event to the security supervisor of the first cloud, a step of sending a security order by the security supervisor of the first cloud to at least a second security controller of the first cloud in reaction to the security event, and of sending the security order by the second security controller to a second resource supervised by the second controller. - View Dependent Claims (2, 3, 4)
-
-
5. A system for supervising security of a computer architecture, said architecture comprising a plurality of interconnected clouds, a cloud comprising a plurality of resources and a security supervisor, the plurality of resources forming, in the cloud, a plurality of groups of resources respectively associated with a security domain, a security controller supervising the resources of the domain, a plurality of physical machines comprising the resources of the plurality of clouds, the system comprising:
-
reception means, included in a security controller of a first cloud, for receiving a security event originating from a first resource associated with a first security domain, first sending means, included in the security controller, for sending said security event to the security supervisor of the first cloud, second sending means, included in the supervisor of the first cloud, for sending a security order to at least a second security controller of the first cloud in reaction to the security event, and third sending means, included in the second controller, for sending the security order to a second resource supervised by the second controller.
-
Specification