System and method for categorizing security profile rules within a computer system
First Claim
1. A computer system, comprising:
- a display device having a screen for displaying images; and
a security application defining a list of security rules for locking down resources of said computer system, said security application configured to categorize said rules into a plurality of categories and to display at least one of said categories on said screen, said security application configured to determine which of said rules are associated with said one category in response to a selection of said one category by a user of said computer system, said security application configured to display on said screen each of said rules associated with said one category in response to said selection, said security application further configured to allow said user to enable ones of said rules and to cause said computer system to enforce said enabled ones of said rules by modifying a machine state of said computer system, wherein different ones of said categories respectively pertain to different ones of a plurality of applications and wherein said rules are categorized such that said one category is assigned only to ones of said rules that affect a particular application pertaining to said one category.
9 Assignments
0 Petitions
Accused Products
Abstract
A system for simplifying selection of security profile rules within a computer system utilizes a display device and a security application. The security application defines a list of security rules for locking down resources of a computer system and categorizes these rules into a plurality of categories. The security application displays at least one of these categories on a screen of the display device. When a user selects one of the categories, the security application determines which of the security rules are associated with the selected category and displays each of these associated security rules. The user then may enable ones of the displayed rule, and the security application, in response to an activation request, causes the computer system to enforce the enabled rules by modifying a machine state of the computer system.
-
Citations
19 Claims
-
1. A computer system, comprising:
-
a display device having a screen for displaying images; and a security application defining a list of security rules for locking down resources of said computer system, said security application configured to categorize said rules into a plurality of categories and to display at least one of said categories on said screen, said security application configured to determine which of said rules are associated with said one category in response to a selection of said one category by a user of said computer system, said security application configured to display on said screen each of said rules associated with said one category in response to said selection, said security application further configured to allow said user to enable ones of said rules and to cause said computer system to enforce said enabled ones of said rules by modifying a machine state of said computer system, wherein different ones of said categories respectively pertain to different ones of a plurality of applications and wherein said rules are categorized such that said one category is assigned only to ones of said rules that affect a particular application pertaining to said one category. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system for locking down resources of computer systems, comprising:
-
means for defining a list of security rules for locking down resources of a computer system; means for categorizing said rules into a plurality of categories; means for displaying at least one of said categories; means for determining, in response to a selection of said one category, which of said rules is associated with said one category; means for displaying each of said rules determined to be associated with said one category; means for enabling ones of said rules based on user inputs; and means for enforcing each of said enabled rules, wherein different ones of said categories respectively pertain to different ones of a plurality of applications and wherein said categorizing means is configured to assign said one category only to ones of said rules that affect a particular application pertaining to said one category. - View Dependent Claims (9, 10, 11)
-
-
12. A method for locking down resources of computer systems, comprising:
-
defining a list of security rules for locking down resources of a computer system; categorizing said rules into a plurality of categories, wherein different ones of the plurality of categories pertain to different ones of a plurality of applications; displaying at least one of said categories; determining, in response to a selection of said one category, which of said rules is associated with said one category; displaying each of said rules determined to be associated with said one category; enabling ones of said rules; and enforcing each of said enabled rules based on said enabling, wherein said categorizing comprises assigning said one category only to ones of said rules that affect a particular application pertaining to said one category. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
-
Specification