Flexible security requirements in an enterprise network
First Claim
Patent Images
1. A method, comprising:
- determining, by at least one of a policy agent and a policy enforcement server in an enterprise network, that a selected stimulus has occurred, the stimulus being one or more of a passage of a selected time interval, an an occurrence of an event relevant to a degree of sensitivity of a selected communication, and/or content, to an enterprise corresponding to the enterprise network;
in response to the determined stimulus, changing, by at least one of the policy agent and the policy enforcement server, a security requirement associated with the selected communication and/or content;
determining, by the policy agent, that a nonsubscriber of the enterprise network is a member of a trusted group, the trusted group comprising, as members, at least one subscriber of the enterprise network and at least one nonsubscriber and each member of the trusted group being trusted by the enterprise; and
in response to the nonsubscriber being a member of the trusted group, the policy agent at least one of (a) sending the selected communication and/or content and (b) providing the nonsubscriber access to the selected communication and/or content, wherein the trusted group is no longer recognized after at least one of (a) occurrence of a predetermined event adversely impacting a degree of trust between the enterprise and nonsub scriber and (b) passage of a determined period of time and wherein a security mechanism is at least one of deleted, disabled, and denied permission to execute in response to the at least one of (a) occurrence of a predetermined event and (b) passage of a determined period of time.
18 Assignments
0 Petitions
Accused Products
Abstract
A system and method are provided to monitor and prevent potential enterprise policy and/or rule violations by subscribers.
-
Citations
15 Claims
-
1. A method, comprising:
-
determining, by at least one of a policy agent and a policy enforcement server in an enterprise network, that a selected stimulus has occurred, the stimulus being one or more of a passage of a selected time interval, an an occurrence of an event relevant to a degree of sensitivity of a selected communication, and/or content, to an enterprise corresponding to the enterprise network; in response to the determined stimulus, changing, by at least one of the policy agent and the policy enforcement server, a security requirement associated with the selected communication and/or content; determining, by the policy agent, that a nonsubscriber of the enterprise network is a member of a trusted group, the trusted group comprising, as members, at least one subscriber of the enterprise network and at least one nonsubscriber and each member of the trusted group being trusted by the enterprise; and in response to the nonsubscriber being a member of the trusted group, the policy agent at least one of (a) sending the selected communication and/or content and (b) providing the nonsubscriber access to the selected communication and/or content, wherein the trusted group is no longer recognized after at least one of (a) occurrence of a predetermined event adversely impacting a degree of trust between the enterprise and nonsub scriber and (b) passage of a determined period of time and wherein a security mechanism is at least one of deleted, disabled, and denied permission to execute in response to the at least one of (a) occurrence of a predetermined event and (b) passage of a determined period of time. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system, comprising:
-
at least one of a policy agent and a policy enforcement server, in an enterprise network, operable to; determine that a selected stimulus has occurred, the stimulus being one or more of a passage of a selected time interval, and an occurrence of an event relevant to a degree of sensitivity, to an enterprise corresponding to the enterprise networks, of a selected communication, and/or content; in response to the determined stimulus, change a security requirement associated with the selected communication and/or content; wherein the policy agent is operable to; determine that a nonsubscriber of the enterprise network is a member of a trusted group, the trusted group comprising, as members, at least one subscriber of the enterprise network and at least one nonsubscriber and each member of the trusted group being trusted by the enterprise; and in response to the nonsubscriber being a member of the trusted group, at least one of (a) send the selected communication and/or content and (b) provide the nonsubscriber access to the selected communication and/or content, wherein the trusted group is no longer recognized after at least one of (a) occurrence of a predetermined event adversely impacting a degree of trust between the enterprise and nonsubscriber and (b) passage of a determined period of time and wherein a security mechanism is at least one of deleted, disabled, and denied permission to execute in response to the at least one of (a) occurrence of a predetermined event and (b) passage of a determined period of time. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
Specification