Title:
セキュリティポリシーを管理するための方法及びシステム
Document Type and Number:
Japanese Patent JP2006521598
Kind Code:
A
Abstract:
Methods, machines, and systems manage security policies of heterogeneous infrastructure and computing devices of a network. Security policy repository houses security policies that are pushed over the network by a policy decision point PDP to appropriate security-enabled devices (policy enforcement points (PEPs)) for enforcement. Using a closed feedback loop, a policy feedback point (PFP) collects and processes data from intrusions, alerts, violations, and other abnormal behaviors from a variety of PEPs or logs produced from PEPs. This data is sent as feedback to the policy repository. The PDP detects the data and analyzes it to determine if policy updates (which can be dynamic and automatic) need to be adaptively made and dynamically pushed to PEPs. The PDP can also send console messages or alerts to consoles or administrators.
Inventors:
Li Hong
Sahita, Ravi
Yadav, Satiendra
Sahita, Ravi
Yadav, Satiendra
Application Number:
JP2005518877A
Publication Date:
September 21, 2006
Filing Date:
February 09, 2004
Export Citation:
Assignee:
Intel Corporation
International Classes:
G06F21/20; G06F21/00; H04L12/24; H04L29/06; G06F13/00
Attorney, Agent or Firm:
Tadahiko Ito
Shinsuke Onuki
Tadashige Ito
Shinsuke Onuki
Tadashige Ito