Methods and systems for interactive evaluation using dynamically generated, interactive resultant sets of policies
First Claim
Patent Images
1. A method for interactive policy evaluation using dynamically generated interactive resultant sets of policies, the method comprising the steps of:
- (a) displaying, in a graphical user interface, a client description user interface element, a resource description user interface element, and an access description user interface element;
(b) displaying, in the client description user interface element, a description of a client requesting access to a resource;
(c) displaying, in the resource description user interface element, a description of the requested resource;
(d) displaying, in the access description user interface element, a description of a method of access to the requested resource;
(e) displaying, by the graphical user interface, at least one policy stored in memory applicable to a at least one displayed description; and
(f) displaying, by the graphical user interface, a decision made by applying the at least one policy to the at least one displayed description wherein the decision comprises an access control decision;
(g) displaying, by the graphical user interface, a user interface element that receives input from a user that modifies the at least one policy; and
(h) simulating an application of the modified policy and displaying a description of a policy aspect that resulted in denial of access to at least one of the client, resource, or method of access in case the client, resource, or method of access has been denied as a result of the simulation, the description comprising a summary of the policy aspect that resulted in denial of access.
7 Assignments
0 Petitions
Accused Products
Abstract
A method for interactive policy evaluation using dynamically generated, interactive resultant sets of policies includes the step of receiving, by a graphical user interface, at least one of: a description of a client requesting access to a resource, a description of the resource, and a description of a method of access requested by the client. The graphical user interface displays at least one policy applicable to the client request for access to the resource. The graphical user interface displays a decision made by applying the at least one policy to the received description.
116 Citations
52 Claims
-
1. A method for interactive policy evaluation using dynamically generated interactive resultant sets of policies, the method comprising the steps of:
-
(a) displaying, in a graphical user interface, a client description user interface element, a resource description user interface element, and an access description user interface element; (b) displaying, in the client description user interface element, a description of a client requesting access to a resource; (c) displaying, in the resource description user interface element, a description of the requested resource; (d) displaying, in the access description user interface element, a description of a method of access to the requested resource; (e) displaying, by the graphical user interface, at least one policy stored in memory applicable to a at least one displayed description; and (f) displaying, by the graphical user interface, a decision made by applying the at least one policy to the at least one displayed description wherein the decision comprises an access control decision; (g) displaying, by the graphical user interface, a user interface element that receives input from a user that modifies the at least one policy; and (h) simulating an application of the modified policy and displaying a description of a policy aspect that resulted in denial of access to at least one of the client, resource, or method of access in case the client, resource, or method of access has been denied as a result of the simulation, the description comprising a summary of the policy aspect that resulted in denial of access. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42)
-
-
43. A system for interactive policy evaluation using dynamically generated interactive resultant sets of policies, the system comprising:
-
a graphical user interface, executing on a client device by a processor couple to memory and configured to display a client description user interface element, a resource description user interface element, and an access description user interface element; the client description user interface element configured to display a description of a client requesting access to a resource; the resource description user interface element configured to display a description of the requested resource; the access description user interface element configured to display a description of a method of access requested by the client to the requested resource; an interactive element in the graphical user interface configured to display at least one policy applicable to the displayed description; a second element in the graphical user interface configured to display a decision made by applying the at least one policy to the at least one displayed description wherein the decision comprises an access control decision; a third element displayed in the graphical user interface configured to receive input from a user that modifies the at least one policy; and a fourth element displayed in the graphical user interface configured to display a description of a policy aspect that resulted in denial of access to at least one of the client, resource, or method of access in case the client, resource, or method of access has been denied, the description comprising a summary of the policy aspect that resulted in denial of access. - View Dependent Claims (44, 45, 46, 47, 48, 49, 50, 51, 52)
-
Specification