×

Security policy enforcement framework for cloud-based information processing systems

  • US 8,689,282 B1
  • Filed: 12/23/2011
  • Issued: 04/01/2014
  • Est. Priority Date: 12/23/2011
  • Status: Active Grant
First Claim
Patent Images

1. A method comprising:

  • identifying at least one security policy associated with a given tenant of a cloud service provider;

    analyzing the security policy against configuration information characterizing cloud infrastructure of the cloud service provider, the cloud infrastructure comprising physical infrastructure and associated virtualization infrastructure running on the physical infrastructure; and

    controlling execution of one or more applications of the given tenant within the cloud infrastructure of the cloud service provider in accordance with the security policy based at least in part on one or more results of the analyzing step;

    wherein the identifying, analyzing and controlling steps are implemented in a security policy enforcement framework of a processing platform of the cloud infrastructure; and

    wherein the security policy associated with the given tenant comprises one or more tenant-specified rules related to isolation of the given tenant with respect to one or more other tenants of the cloud service provider.

View all claims
  • 12 Assignments
Timeline View
Assignment View
    ×
    ×