Methods and systems for interactive evaluation of policies
First Claim
1. A method for interactive evaluation of policies using a graphical user interface to display the effect of alterable access policies on clients and resources, the method comprising the steps of:
- (a) receiving, by a policy engine, a request to access at least one resource stored on a server from a client;
(b) transmitting, by the policy engine, a collection agent to the client in response to receiving the request;
(c) receiving, by the policy engine from the collection agent executing on the client, an identification of a characteristic of at least one client requesting access to the at least one resource;
(d) enumerating an identification of at least one resource;
(e) applying at least one policy including a first policy associated with the at least one resource to the at least one client requesting access to the at least one resource, responsive to the received identification of the characteristic of the at least one client;
(f) displaying data on the graphical user interface wherein the graphical user interface includes;
an interactive element that receives input from a user that alters settings in the first policy;
a description of the identified characteristic of at least one client received from the collection agent executing on the client; and
a description of the results of applying the first policy including whether the client may access the requested resource;
(g) receiving the input altering the settings of the first policy using the interactive element;
(h) simulating an application of the altered first policy producing an output comprising at least one description of a setting that resulted in denial of access to the requested resource in the case that the requested resource is denied, the description of the setting comprising a summary indicating how the altered first policy produced the result; and
(i) displaying the output of the simulation including the description of the summary indicating how the altered first policy produced the result in the graphical user interface.
8 Assignments
0 Petitions
Accused Products
Abstract
A system for interactive evaluation of policies includes a first graphical user interface element and a second graphical user interface element. The first graphical user interface element enumerates at least one resource. The second graphical user interface element receives an identification of a characteristic of at least one client and displays a result of an application of at least one policy associated with the at least one resource to the at least one client, the at least on policy applied responsive to the received identification of the characteristic.
-
Citations
59 Claims
-
1. A method for interactive evaluation of policies using a graphical user interface to display the effect of alterable access policies on clients and resources, the method comprising the steps of:
-
(a) receiving, by a policy engine, a request to access at least one resource stored on a server from a client; (b) transmitting, by the policy engine, a collection agent to the client in response to receiving the request; (c) receiving, by the policy engine from the collection agent executing on the client, an identification of a characteristic of at least one client requesting access to the at least one resource; (d) enumerating an identification of at least one resource; (e) applying at least one policy including a first policy associated with the at least one resource to the at least one client requesting access to the at least one resource, responsive to the received identification of the characteristic of the at least one client; (f) displaying data on the graphical user interface wherein the graphical user interface includes; an interactive element that receives input from a user that alters settings in the first policy; a description of the identified characteristic of at least one client received from the collection agent executing on the client; and a description of the results of applying the first policy including whether the client may access the requested resource; (g) receiving the input altering the settings of the first policy using the interactive element; (h) simulating an application of the altered first policy producing an output comprising at least one description of a setting that resulted in denial of access to the requested resource in the case that the requested resource is denied, the description of the setting comprising a summary indicating how the altered first policy produced the result; and (i) displaying the output of the simulation including the description of the summary indicating how the altered first policy produced the result in the graphical user interface. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A method for interactive evaluation of policies using a graphical user interface to display the effect of alterable access policies on clients and resources, the method comprising the steps of:
-
(a) displaying an identification of at least one resource; (b) receiving an identification of a characteristic of at least one client requesting access to the at least one resource; (c) displaying an indication that a second identification of a second characteristic is required to determine whether at least one policy including a first policy applies to the at least one client; (d) displaying data on a graphical user interface wherein the graphical user interface includes; an interactive element that receives input from a user that alters settings in the first policy; a description of the identified characteristic of at least one client received from the collection agent executing on the client; a description of the results of applying the first policy including whether the client may access the requested resource; and a description of an access routing decision, identified responsive to an application of an access routing policy to a description of the client requesting access to the resource and a description of the resource, the description indicating at least one of a method of access and a type of access; (e) receiving the input that alters the settings in the first policy using the interactive element; (f) simulating an application of the altered first policy producing an output comprising at least one description of a setting that resulted in denial of access to the requested resource in the case that the requested resource is denied, the description of the setting comprising a summary indicating how the altered first policy produced the result; and (g) displaying the output of the simulation including the description of the summary indicating how the altered first policy produced the result in the graphical user interface. - View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39)
-
-
40. A system for interactive evaluation of policies using a graphical user interface to display the effect of alterable access policies on clients and resources, the system comprising:
-
a memory; a processor configured to execute instructions stored in the memory to; apply at least one policy including a first policy associated with at least one resource to at least one client requesting access to the at least one resource, responsive to the received identification of the characteristic of the at least one client; displaying data on a graphical user interface wherein the graphical user interface includes; a first graphical user interface element enumerating at least one resource; and a second graphical user interface element that receives input from a user that alters a characteristic of the at least one client; and receiving the input that alters the characteristic of the at least one client; simulating an application of the altered characteristic to the at least one resource producing an output comprising at least one description of a setting that resulted in denial of access to the requested resource in the case that the requested resource is denied, the description of the setting comprising a summary indicating how the altered characteristic produced the result; and displaying the output, including the description of the summary indicating how the altered characteristic produced the result, in the graphical user interface. - View Dependent Claims (41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59)
-
Specification