AUTOMATED AND ADAPTIVE MODEL-DRIVEN SECURITY SYSTEM AND METHOD FOR OPERATING THE SAME

摘要

A system and method for managing implementation of policies in an information technologies system receives into a processor at least one policy function stored in at least one memory, receives into the processor a policy input indicating a high-level policy for the IT system, the policy input being compliant with the at least one policy function, based on the received policy input, automatically or semi-automatically generates via the processor a rule and/or configuration by replacing at least one policy function in the policy input with the at received least one policy function, the generated rule and/or configuration being compliant with the received policy input or replacing at least one value or value placeholder in the policy input with a corresponding value, and distributes the rule and/or configuration to the at least one memory of the IT system or another at least one memory to thereby enable implementation of the policies.

主权项

1. A method of managing implementation of policies in an information technologies system, the method comprising:
receiving into a processor at least one policy function stored in at least one memory; receiving into the processor a policy input indicating a high-level policy for the IT system, the policy input being compliant with the at least one policy function; based on the received policy input, automatically or semi-automatically generating via the processor a rule and/or configuration by:
replacing at least one policy function in the policy input with the at received least one policy function, the generated rule and/or configuration being compliant with the received policy input; orreplacing at least one value or value placeholder in the policy input with a corresponding value; and distributing, via the processor, the rule and/or configuration to the at least one memory of the IT system or another at least one memory to thereby enable implementation of the policies.