System and method for the implementation of policies
First Claim
1. A computer-implemented method for assessing the compliance associated with policies, comprising:
- storing, in a database in a computer memory, a plurality of data structures, wherein each data structure includes a property name and associated value, a component data structure represents a physical or logical entity and a relationship data structure represents an association between two entities;
obtaining, by a policy engine associated with the database and a user interface, a policy comprising a rule, wherein the rule comprises a first condition associated with compliance to the rule;
generating, by the policy engine, one or more filters according to the first condition, wherein each filter comprises a database query statement associated with the first condition and a selected property name and associated value;
in response to an instruction to launch a policy run, selecting a set of data structures from the plurality of data structures;
applying, by the policy engine, the one or more filters to the selected set of data structures in the database such that each data structure in the selected set of structures is evaluated to determine if the value associated with the selected property name meets the first condition;
determining, by the policy engine, a first set of entities that are compliant with the rule based on the application of the one or more filters to the selected set of data structures;
determining a second set of entities that are not compliant with the rule based on the application of the one or more filters to the selected set of data structures; and
outputting the first set of entities and the second set of entities to the user interface.
11 Assignments
0 Petitions
Accused Products
Abstract
Embodiments of the present invention provide systems and methods for developing policies which govern entities and applying the developed policies against representations of entities, where the representations are contained in a repository. One embodiment of a method of the present invention includes obtaining a policy comprising a rule, wherein the rule comprises a condition associated with compliance to the rule, generating one or more filters according to the condition, applying the one or more filters to a plurality of representations in a repository, wherein each representation represents an entity and determining a set of entities compliant with the rule based on the application of the one or more filters to the plurality of representations.
89 Citations
25 Claims
-
1. A computer-implemented method for assessing the compliance associated with policies, comprising:
-
storing, in a database in a computer memory, a plurality of data structures, wherein each data structure includes a property name and associated value, a component data structure represents a physical or logical entity and a relationship data structure represents an association between two entities; obtaining, by a policy engine associated with the database and a user interface, a policy comprising a rule, wherein the rule comprises a first condition associated with compliance to the rule; generating, by the policy engine, one or more filters according to the first condition, wherein each filter comprises a database query statement associated with the first condition and a selected property name and associated value; in response to an instruction to launch a policy run, selecting a set of data structures from the plurality of data structures; applying, by the policy engine, the one or more filters to the selected set of data structures in the database such that each data structure in the selected set of structures is evaluated to determine if the value associated with the selected property name meets the first condition; determining, by the policy engine, a first set of entities that are compliant with the rule based on the application of the one or more filters to the selected set of data structures; determining a second set of entities that are not compliant with the rule based on the application of the one or more filters to the selected set of data structures; and outputting the first set of entities and the second set of entities to the user interface. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A system for assessing the compliance associated with policies, comprising:
-
a computer processor; a non-transitory computer-readable medium coupled with the processor comprising; a repository containing; a plurality of data structures, wherein each data structure includes a property name and associated value, wherein each component data structure represents a physical or logical entity, wherein a relationship data structure represents an association between two entities; and a policy comprising a rule containing a first condition associated with compliance to the rule, the condition implemented as one or more filters stored in the repository, a set of instructions executable by the processor; and a policy engine associated with the repository;
wherein the set of instructions include an instruction to launch a policy run, wherein the policy engine is configured to apply the one or more filters to a selected set of data structures in the repository in response to the instruction to launch a policy run such that each data structure in the selected set of data structures is evaluated to determine if the value associated with the selected property name meets the first condition, wherein each filter comprises a database query statement associated with a first condition and a selected property name and associated value, the policy engine configured to determine a first set of entities that are compliant with the rule based on the application of the one or more filters to the selected set of data structures and a second set of entities that are not compliant with the rule based on the application of the one or more filters to the selected set of data structures; anda user interface associated with the policy engine and configured to present the first set of entities and the second set of entities that are not compliant with the rule. - View Dependent Claims (11, 12, 13, 14, 15, 16)
-
-
17. A non-transitory computer readable storage medium embodying computer executable instructions implementing a method for assessing the compliance associated with policies, comprising:
-
obtaining a policy comprising a rule, wherein the rule comprises a first condition associated with compliance to the rule; generating one or more filters according to the first condition, wherein each filter comprises a database query statement associated with a first condition and a selected property name and associated value; in response to an instruction to launch a policy run, selecting a set of data structures from a plurality of data structures; applying the one or more filters to the selected set of data structures in the database such that each data structure in the selected set of data structures is evaluated to determine if the value associated with the selected property name meets the first condition; determining a first set of entities that are compliant with the rule based on the application of the one or more filters to the selected set of data structures; determining a second set of entities that are not compliant with the rule based on the application of the one or more filters to the selected set of data structures; and outputting the first set of entities and the second set of entities to the user interface. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25)
-
Specification