| 主权项 |
1. A method of controlling access to a resource, comprising:
setting one or more security policies for controlling access to the resource of an application, wherein the one or more security policies associate each of a plurality of access levels with a corresponding value for a threat level attribute; receiving at an access control server, threat detection data from a security system or process via a communication interface, wherein the security system or process monitors network traffic received at a firewall; determining, by a processor, based at least in part on the threat detection data received from the security system or process, a value for the threat level attribute, wherein the value for the threat level attribute is determined at least in part by performing a computation on the threat detection data and is determined based at least in part on comparing a degree to which recently observed behavior deviates from a baseline of normal behavior, wherein the normal behavior observed in a prior learning period; receiving from the application, an access request that identifies a user of a client terminal, the resource of the application subject to the access request, and one or more actions requested associated with the resource of the application in response to the client terminal attempting to perform one or more actions with respect to the resource of the application over the communication network; and determining, by the access control server, an access level of the plurality of access levels to apply to the resource of the application in response to receiving a request from the client terminal to access the resource over a communication network, wherein the access level is determined based at least in part on the determined value for the threat level attribute, the identity of the user, the resource of the application subject to the request, the one or more actions requested associated with the resource of the application, and at least one of the one or more security policies. |
