System and method for automatically configuring application control rules
First Claim
1. A computer-implemented method for configuring application control rules, comprising:
- generating a new application control rule that specifies restrictions or a permission on executing a software application, a function of an application or a category of applications;
collecting information about one or more computers in a network, the information comprising information about software applications deployed on the one or more computers and one or more existing application control rules associated with the software applications;
determining a priority for each of the new application control rule and the one or more existing application control rules;
testing, by a processor, the new application control rule using the collected information to determine verdicts rendered by the new application control rule that restrict or permit an execution of the software application, the function of an application or the category of applications;
comparing verdicts rendered by the new application rule with the verdicts rendered by the existing application control rules to identify conflicts between the compared rules; and
upon detecting a conflict between the compared rules, reconfiguring one of the compared rules with a lower priority to eliminate the conflict.
1 Assignment
0 Petitions
Accused Products
Abstract
Disclosed are systems, methods and computer program products for configuring application control rules. The system creates a new application control rule that specifies restrictions or permission on execution a software application, a function of an application or a category of applications. The system then collects information about one or more computers in a network, including information about software applications deployed on the computers and existing application control rules. The system then tests the new application control rule using the collected information to determine verdicts rendered by the new application control rule that restrict or permit execution of an application, certain function of an application or a category of applications. The system then compares verdicts rendered by the new application rule with the verdicts rendered by the existing application control rules to identify conflicting rules, and reconfigures the new application control rule to eliminate conflicts.
8 Citations
20 Claims
-
1. A computer-implemented method for configuring application control rules, comprising:
-
generating a new application control rule that specifies restrictions or a permission on executing a software application, a function of an application or a category of applications; collecting information about one or more computers in a network, the information comprising information about software applications deployed on the one or more computers and one or more existing application control rules associated with the software applications; determining a priority for each of the new application control rule and the one or more existing application control rules; testing, by a processor, the new application control rule using the collected information to determine verdicts rendered by the new application control rule that restrict or permit an execution of the software application, the function of an application or the category of applications; comparing verdicts rendered by the new application rule with the verdicts rendered by the existing application control rules to identify conflicts between the compared rules; and upon detecting a conflict between the compared rules, reconfiguring one of the compared rules with a lower priority to eliminate the conflict. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system for configuring application control rules, the system comprising:
-
a hardware processor configured to; generate a new application control rule that specifies restrictions or a permission on executing a software application, a function of an application or a category of applications; collect information about one or more computers in a network, the information comprising information about software applications deployed on the one or more computers and one or more existing application control rules associated with the software applications; determine a priority for each of the new application control rule and the one or more existing application control rules; test the new application control rule using the collected information to determine verdicts rendered by the new application control rule that restrict or permit an execution of an application, certain function of the software application, the function of an application or the category of applications; compare verdicts rendered by the new application rule with the verdicts rendered by the existing application control rules to identify conflicts between the compared rules; and upon detecting a conflict between the compared rules, reconfigure one of the compared rules with a lower priority to eliminate the conflict. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A computer program product stored on a non-transitory computer-readable storage medium, the computer program product comprising computer-executable instructions for configuring application control rules, including instructions for:
-
generating a new application control rule that specifies restrictions or a permission on executing a software application, a function of an application or a category of applications; collecting information about one or more computers in a network, information comprising information about software applications deployed on the one or more computers and one or more existing application control rules associated with the software applications; determining a priority for each of the new application control rule and the one or more existing application control rules; testing, by a processor, the new application control rule using the collected information to determine verdicts rendered by the new application control rule that restrict or permit an execution of the software application, the function of an application or the category of applications; comparing verdicts rendered by the new application rule with the verdicts rendered by the existing application control rules to identify conflicts between the compared rules; and upon detecting a conflict between the compared rules, reconfiguring one of the compared rules with a lower priority to eliminate the conflict. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification