Guaranteed delivery of changes to security policies in a distributed system
First Claim
1. A method for distributing a security policy change within a security system distributed over a computer network, the method comprising:
- generating a command to include the security policy change in response to a request received from a central server;
determining, before delivering the command, users that are to be affected by the security policy change;
effectuating the security policy change in a state message for a user among the users when the user is not logged in the system, wherein the state message is to be pulled to the user whenever the user is logged in the system; and
delivering the command to the user when the user is currently logged in the system,wherein the security policy change occurs regardless of which of the users is affected.
5 Assignments
0 Petitions
Accused Products
Abstract
Improved approaches for communicating changes to security policies (or rules) in a distributed security system are disclosed. Depending on the status of an affected user in the system, the changes can be delivered to the user if the user is logged in the system or effectuated in a state message in a local server and the state message is delivered to the user next time the user is logged in the system. If a local server is not operative at the time that a change request is received for a user of the local server, the change request is redirected to another local server. The user is directed to the another local server to affect the change request. As a result, various changes are guaranteed to be delivered to the affected users without compromising the network efficiency.
-
Citations
45 Claims
-
1. A method for distributing a security policy change within a security system distributed over a computer network, the method comprising:
-
generating a command to include the security policy change in response to a request received from a central server; determining, before delivering the command, users that are to be affected by the security policy change; effectuating the security policy change in a state message for a user among the users when the user is not logged in the system, wherein the state message is to be pulled to the user whenever the user is logged in the system; and delivering the command to the user when the user is currently logged in the system, wherein the security policy change occurs regardless of which of the users is affected. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A computer readable tangible storage medium having computer program code recorded thereon, that when executed by a processor, causes the processor to distribute a security policy change within a security system by a method, the method comprising:
-
generating a command to include the security policy change in response to a request received from a central server; determining, before delivering the command, users that are to be affected by the security policy change; effectuating the security policy change in a state message for a user among the users when the user is not logged in the system, wherein the state message is to be pulled to the user whenever the user is logged in the system; and delivering the command to the user when the user is currently logged in the system, wherein the security policy change occurs regardless of which of the users is affected. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A method, comprising:
-
receiving a request at a second local server to carry out a command for a security policy change, for a user that is determined to be affected by the security policy change, upon a determination that a first local server cannot carry out the security policy change; delivering the command to the user when the user is currently logged onto the second local server; and storing the security policy change for the user when the user is not logged onto the second server, wherein the command is delivered to the user whenever the user is logged onto the second local server. - View Dependent Claims (21, 22, 23, 24, 25, 26, 27)
-
-
28. A computer-readable storage medium containing instructions that, when executed by a processor, causes the processor to:
-
receive a request at a second local server to carry out a command for a security policy change, for a user that is determined to be affected by the security policy change, upon a determination that a first local server cannot carry out the security policy change; upon determining the user is currently logged onto the second local server, deliver the command to the user; and upon determining the user is not logged onto the second server, storing store the security policy change for the user, upon determining the user is logged onto the second local server, deliver the command to the user. - View Dependent Claims (29, 30, 31, 32, 33, 34, 35)
-
-
36. A system, comprising:
-
a first local server configured (a) to carry out a command for a security policy change received from a central server, the central server previously determining a user to be affected by the security policy change, and (b) to store the security policy change for the user in a state message when the user is not logged in, wherein upon logging in the state message is delivered to the user; wherein upon determining the user is logged in, the first local server is configured to deliver the command to the user. - View Dependent Claims (37, 38, 39, 40, 41, 42, 43)
-
-
44. A computer-readable storage medium having computer program code recorded thereon, that when executed by a processor, causes the processor to perform a method, the method comprising:
-
transmitting a request to a second local server from a central server to carry out a command for a security policy change, for a user that is determined to be affected by the security policy change, upon a determination that a first local server cannot carry out the security policy change; delivering the command to the user when the user is currently logged onto the second local server; and upon determining the user is not logged onto the second server, storing the security policy change for the user, upon determining the use is logged onto the second local server, delivering the command to the user.
-
-
45. A computer-readable storage medium having computer program code recorded thereon, that when executed by a processor, causes the processor to perform a method, the method comprising:
-
transmitting a request from a central server to a first local server to carry out a command for a security policy change, the central server previously determining a user to be affected by the security policy change; upon determining the user is currently logged in delivering the command to the user; and upon determining the user is not currently logged in storing the security policy change for the user, wherein upon logging in the state message is delivered to the user.
-
Specification