×

Enforcing consistent enterprise and cloud security profiles

  • US 8,578,442 B1
  • Filed: 03/11/2011
  • Issued: 11/05/2013
  • Est. Priority Date: 03/11/2011
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method of enforcing consistent enterprise and cloud security profiles comprising:

  • defining a domain model describing cloud resource objects associated with an enterprise, wherein the cloud security profiles associated with enterprise users describe permissions of the users with respect to the objects;

    specifying a relationship map mapping permissions for objects of the domain model to one or more roles of enterprise users, wherein local security profiles maintained by the enterprise associate users with one or more roles, the domain model and relationship map collectively forming an access policy for the cloud resource objects;

    monitoring network traffic to detect an attempt to configure a cloud security profile associated with a user in a manner inconsistent with the access policy; and

    remediating a detected attempt to configure the cloud security profile in the manner inconsistent with the access policy.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×