Security measure status self-checking system
First Claim
1. A security measure status self-checking system applied to a system having a server computer and a plurality of client computers,the client computer including:
- collection means for collecting security inventory information which is information regarding local hardware and software resources, an IT environment use status which is information regarding setting environment of the local hardware and software resources, and operation log information which is history information regarding local user operations on the client computer; and
collected information transmission means for transmitting the collected information to the server computer; and
the server computer including;
storage means for storing the collected information including the security inventory information, the IT environment use status, and the operation log information transmitted from one or more of the client computers;
security policy storage means for storing a security policy which is data indicating a policy regarding the security measure status of the self-checking system;
policy conformance inspection means for reading the security inventory information, the IT environment use status, and the operation log information of each client computer stored in the storage means and determines whether or not a security policy violation has occurred by checking whether the security inventory information, the IT environment use status, and the operation log information of each client computer stored in the storage means conforms to the security policy stored in the security policy storage means;
information display means for displaying an inspection result by the policy conformance inspection means, when a number of client computers that violate a security policy exceeds a predetermined threshold, the information display means of the server computer displays a violation level warning indicating that the security policy has been violated; and
notification means for notifying the security policy violation to a manager of the self checking system when the security policy violation is detected by the policy conformance inspection means, wherein a method by which the manager is notified is pre-selected,wherein the security policy includes (i) a computer measure status policy which is one or more conditions for checking the security inventory information and the IT environment use status; and
(ii) a take-out control measure status policy which is one or more conditions for checking the operation log information,wherein the policy conformance inspection means determines that the security policy violation has occurred when a number of occurrences of violating the computer measure status policy is once or more during a predetermined period or when a number of occurrences of violating the take-out control measure status policy exceeds a threshold during the predetermined period,wherein the one or more conditions of the computer measure status policy relate to the installation, execution or updating of software, andwherein the one or more conditions of the take-out control measure status policy relate to the transfer of data to external media, CD or DVD, dedicated USB memory or printing of data with a watermark.
2 Assignments
0 Petitions
Accused Products
Abstract
A security measure status self-checking system which can determine the security measure status in a more simplified and effective manner by focusing on the information leakage measure in the security measures, managing the PC'"'"'s security measure status and the user'"'"'s take-out operation status in an integrated and unitary manner, and providing security policy samples. Accordingly, the client computer collects security inventory information and operation log information and transmits the information to the server computer. Further, the server computer stores the security inventory information and the operation log information transmitted from the client computer and determines whether or not the information conforms to the security policy which has been set in advance. The check result is displayed on the server computer and when a policy violation is detected, the manager and the client are notified of that effect.
-
Citations
5 Claims
-
1. A security measure status self-checking system applied to a system having a server computer and a plurality of client computers,
the client computer including: -
collection means for collecting security inventory information which is information regarding local hardware and software resources, an IT environment use status which is information regarding setting environment of the local hardware and software resources, and operation log information which is history information regarding local user operations on the client computer; and collected information transmission means for transmitting the collected information to the server computer; and the server computer including; storage means for storing the collected information including the security inventory information, the IT environment use status, and the operation log information transmitted from one or more of the client computers; security policy storage means for storing a security policy which is data indicating a policy regarding the security measure status of the self-checking system; policy conformance inspection means for reading the security inventory information, the IT environment use status, and the operation log information of each client computer stored in the storage means and determines whether or not a security policy violation has occurred by checking whether the security inventory information, the IT environment use status, and the operation log information of each client computer stored in the storage means conforms to the security policy stored in the security policy storage means; information display means for displaying an inspection result by the policy conformance inspection means, when a number of client computers that violate a security policy exceeds a predetermined threshold, the information display means of the server computer displays a violation level warning indicating that the security policy has been violated; and notification means for notifying the security policy violation to a manager of the self checking system when the security policy violation is detected by the policy conformance inspection means, wherein a method by which the manager is notified is pre-selected, wherein the security policy includes (i) a computer measure status policy which is one or more conditions for checking the security inventory information and the IT environment use status; and
(ii) a take-out control measure status policy which is one or more conditions for checking the operation log information,wherein the policy conformance inspection means determines that the security policy violation has occurred when a number of occurrences of violating the computer measure status policy is once or more during a predetermined period or when a number of occurrences of violating the take-out control measure status policy exceeds a threshold during the predetermined period, wherein the one or more conditions of the computer measure status policy relate to the installation, execution or updating of software, and wherein the one or more conditions of the take-out control measure status policy relate to the transfer of data to external media, CD or DVD, dedicated USB memory or printing of data with a watermark. - View Dependent Claims (2, 3, 4, 5)
-
Specification