MANAGING RELATIONSHIPS IN A COMPUTER SYSTEM
First Claim
Patent Images
1. A method in a computer network system, the method comprising:
- obtaining information on trust relationships between entities in the computer network system,determining transitive reachability information for a selected entity based on the information on trust relationships,generating a transitive reachability graph describing at least one access relation of the entity based on the transitive reachability information, andperforming a management action based on the on the generated transitive reachability graph.
1 Assignment
0 Petitions
Accused Products
Abstract
Certain embodiments provide means for managing automated access to computers, e.g., using SSH user keys and other kinds of trust relationships. Certain embodiments also provide for managing certificates, Kerberos credentials, and cryptographic keys. Certain embodiments provide for remediating legacy SSH key problems and for automating configuration of SSH keys, as well as for continuous monitoring.
-
Citations
22 Claims
-
1. A method in a computer network system, the method comprising:
-
obtaining information on trust relationships between entities in the computer network system, determining transitive reachability information for a selected entity based on the information on trust relationships, generating a transitive reachability graph describing at least one access relation of the entity based on the transitive reachability information, and performing a management action based on the on the generated transitive reachability graph. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. An apparatus comprising at least one processor, and at least one memory including computer program code, wherein the at least one memory and the computer program code are configured, with the at least one processor, to cause the apparatus to
obtain information on trust relationships between entities in a computer network system, determine transitive reachability information for a selected entity based on the information on trust relationships, generate a transitive reachability graph describing at least one access relation of the entity based on the transitive reachability information, and cause a management action based on the on the generated transitive reachability graph.
-
22. A non-transitory computer readable media comprising program code for causing a processor to perform instructions in a computer network system, the method performed comprising:
-
obtaining information on trust relationships between entities in the computer network system, determining transitive reachability information for a selected entity based on the information on trust relationships, generating a transitive reachability graph describing at least one access relation of the entity based on the transitive reachability information, and performing a management action based on the on the generated transitive reachability graph.
-
Specification