Automated production of certification controls by translating framework controls
First Claim
1. A method to automate production of certification controls by translating framework controls, the method comprising:
- receiving, at a compliance application that is being executed on a first server computing device, a request to view a compliance certification of a service from a device that is executing the service, wherein the request includes one or more attributes of the compliance certification;
selecting, by the compliance application, the framework controls from a framework data store by matching metadata of the framework controls to the one or more attributes of the compliance certification;
retrieving, by the compliance application, certification parity data associated with the metadata from a parity data store;
producing, by the compliance application, the certification controls based on the framework controls and the certification parity data through a translation layer of the compliance application;
enabling, by the compliance application, an automation component that is being executed on a second server computing device to establish a connection with the translation layer to execute a compliance test on the framework controls; and
providing, by the compliance application, a view of the compliance certification including the certification controls to the device that is executing the service for display through a user interface of the device.
1 Assignment
0 Petitions
Accused Products
Abstract
A compliance application automatically produces certification controls by translating framework controls. The framework controls are common certification controls used in production of the certification. The application retrieves framework controls including metadata from a compliance framework data store. Metadata of the framework controls map the framework controls to the certification. In addition, the application retrieves certification parity data associated with the metadata. Certification controls are produced based on the framework controls and the certification parity data. A view of the certification including the certification controls is provided to a customer requesting the certification.
59 Citations
20 Claims
-
1. A method to automate production of certification controls by translating framework controls, the method comprising:
-
receiving, at a compliance application that is being executed on a first server computing device, a request to view a compliance certification of a service from a device that is executing the service, wherein the request includes one or more attributes of the compliance certification; selecting, by the compliance application, the framework controls from a framework data store by matching metadata of the framework controls to the one or more attributes of the compliance certification; retrieving, by the compliance application, certification parity data associated with the metadata from a parity data store; producing, by the compliance application, the certification controls based on the framework controls and the certification parity data through a translation layer of the compliance application; enabling, by the compliance application, an automation component that is being executed on a second server computing device to establish a connection with the translation layer to execute a compliance test on the framework controls; and providing, by the compliance application, a view of the compliance certification including the certification controls to the device that is executing the service for display through a user interface of the device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A hardware-implemented server computing device to automate production of certification controls by translating framework controls, the server computing device comprising:
-
a communication interface configured to facilitate communication between at least the server computing device, another server computing device, and a device that is executing a service; a memory configured to store instructions; and one or more hardware-implemented processing units coupled to the memory, the one or more processing units configured to execute a compliance application in conjunction with the instructions, wherein the compliance application is configured to; receive a request to view a compliance certification of the service from the device that is executing the service, wherein the request includes one or more attributes of the compliance certification; select the framework controls from a framework data store by matching metadata of the framework controls to the one or more attributes of the compliance certification; retrieve certification parity data associated with the metadata from a parity data store; produce the certification controls based on the framework controls and the certification parity data through a translation layer of the compliance application; enable an automation component that is being executed on the other server computing device to establish a connection with the translation layer to execute a compliance test on the framework controls; and provide a view of the compliance certification including the certification controls to the device that is executing the service for display through a user interface. - View Dependent Claims (12, 13, 14, 15, 16, 17)
-
-
18. A computer-readable memory device with instructions stored thereon to automate production of certification controls by translating framework controls, the instructions comprising:
-
receiving, at a compliance application that is being executed on a first server computing device, a request to view a compliance certification of a service from a device that is executing the service, wherein the request includes one or more attributes of the compliance certification; selecting, by the compliance application, the framework controls from a framework data store by matching metadata of the framework controls to the one or more attributes of the compliance certification; retrieving, by the compliance application, certification parity data associated with the metadata from a parity data store; producing, by the compliance application, the certification controls based on the framework controls and the certification parity data through a translation layer of the compliance application; enabling, by the compliance application, an automation component that is being executed on a second server computing device to establish a connection with the translation layer to execute a compliance test on the framework controls; and providing, by the compliance application, a view of the compliance certification including the certification controls to the device that is executing the service for display through a user interface. - View Dependent Claims (19, 20)
-
Specification