×

Dynamic access policies

  • US 8,819,763 B1
  • Filed: 10/06/2008
  • Issued: 08/26/2014
  • Est. Priority Date: 10/05/2007
  • Status: Active Grant
First Claim
Patent Images

1. A system for securely granting access to a target system to a user comprising:

  • an interface configured to receive an access request;

    a processor; and

    a memory coupled with the processor, wherein the memory is configured to provide the processor with instructions which when executed cause the processor to;

    request a plurality of security policies from a plurality of distributed policy systems,wherein the plurality of distributed policy systems includes at least one of a change management system associated with planned events and a ticket system;

    obtain the plurality of security policies from the plurality of distributed policy systems;

    determine a temporary grant of access for the user, wherein the determining includes dynamically generating a temporary, multi-dimensional access policy for the user,wherein the multi-dimensional access policy is an aggregate of at least some of the plurality of security policies, and wherein the dynamically generated multi-dimensional access policy governs a set of network resources that the user is permitted to access and includes at least one of an authorized access time and an authorized access protocol;

    implement the determined temporary grant of access for the user;

    determine whether rules associated with the at least some of the plurality of security policies aggregated into the multi-dimensional access policy conflict with at least some of one another when applied in conjunction with implementing the determined temporary grant of access for the user; and

    in the event that rules associated with the at least some of the plurality of security policies aggregated into the multi-dimensional access policy are determined to conflict with at least some of one another when applied in conjunction with implementing the determined temporary grant of access for the user, resolve the conflict.

View all claims
  • 6 Assignments
Timeline View
Assignment View
    ×
    ×