| 发明名称 |
Role Engineering Scoping and Management |
| 摘要 |
Mechanisms are provided for performing a role engineering project for applying security roles to access operations targeting resources. A plurality of data objects representing one or more user identities, permissions, and resources of an organization computing system are received. One or more filter criteria for filtering the plurality of data objects to generate a subset of data objects for consideration during the role engineering project are received. The one or more filter criteria specify a scope of the role engineering project. The one or more filter criteria are applied to generate the subset of data objects. Role engineering project operations are performed on the subset of data objects to generate one or more security roles. The one or more security roles are deployed to the organization computing system to control access operations targeting resources of the organization computing system.
|
| 申请公布号 |
US2013104046(A1) |
申请公布日期 |
2013.04.25 |
| 申请号 |
US201113278441 |
申请日期 |
2011.10.21 |
| 申请人 |
CASCO-ARIAS SANCHEZ LUIS B.;JORDAN TODD D.;KUEHR-MCLAREN DAVID G.;LOVE ORIANA J.;PALMIERI DAVID W.;PLACHCO CHRYSTIAN L.;RAJAMANI MAGESH;ROBKE JEFFREY T.;INTERNATIONAL BUSINESS MACHINES CORPORATION |
发明人 |
CASCO-ARIAS SANCHEZ LUIS B.;JORDAN TODD D.;KUEHR-MCLAREN DAVID G.;LOVE ORIANA J.;PALMIERI DAVID W.;PLACHCO CHRYSTIAN L.;RAJAMANI MAGESH;ROBKE JEFFREY T. |
| 分类号 |
G06F21/00;G06F3/01 |
主分类号 |
G06F21/00 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
|
| 地址 |
|
