Security management apparatus, security management system, security management method, and security management program
First Claim
1. A security management apparatus comprising:
- a security diagnostic unit for making a security diagnosis on a basis of security information obtained from a security information providing unit for providing information concerning security in a network and further on a basis of machine information obtained from at least one network machine connected to a network to judge a type of security-related processing to be executed for said network machine or a predetermined network including said network machine and also judge whether or not the security-related processing needs to be executed; and
a security execution unit for executing predetermined security measure processing for said network machine or the predetermined network including said network machine on a basis of a result of diagnosis made by said security diagnostic unit, and a connection request accepting unit for accepting a connection request from a newly introduced network machine;
wherein when said connection request accepting unit accepts a connection request from a newly introduced network machine, said security diagnostic unit assigns an address to said newly introduced network machine after placing it in an isolated state and judges whether or not to execute processing for unisolating said newly introduced network machine as said security related processing on a basis of said machine information and said security information.
1 Assignment
0 Petitions
Accused Products
Abstract
A security management apparatus is capable of taking various security measures while referencing machine information and hence excellent in flexibility and widely applicable. The apparatus includes a security diagnostic unit for making a security diagnosis on the basis of security information obtained from a security information providing apparatus for providing information concerning security in a network and further on the basis of machine information obtained from at least one network machine connected to a network to judge a type of security-related processing to be executed for the network machine and also judge whether or not the security-related processing needs to be executed. A security execution unit executes predetermined security measure processing for the network machine on the basis of a result of diagnosis made by the security diagnostic unit.
-
Citations
4 Claims
-
1. A security management apparatus comprising:
-
a security diagnostic unit for making a security diagnosis on a basis of security information obtained from a security information providing unit for providing information concerning security in a network and further on a basis of machine information obtained from at least one network machine connected to a network to judge a type of security-related processing to be executed for said network machine or a predetermined network including said network machine and also judge whether or not the security-related processing needs to be executed; and a security execution unit for executing predetermined security measure processing for said network machine or the predetermined network including said network machine on a basis of a result of diagnosis made by said security diagnostic unit, and a connection request accepting unit for accepting a connection request from a newly introduced network machine;
wherein when said connection request accepting unit accepts a connection request from a newly introduced network machine, said security diagnostic unit assigns an address to said newly introduced network machine after placing it in an isolated state and judges whether or not to execute processing for unisolating said newly introduced network machine as said security related processing on a basis of said machine information and said security information. - View Dependent Claims (2, 3, 4)
-
Specification