摘要 |
This invention relates to a method for creating and/or updating a security policy within a computerized system protected by at least one security package, comprising: (a). Providing at least one trusted source within the system, capable of issuing a report detailing the structure and/or attribute s of the system and/or attributes of the system and/or security flaws within t he system; (b) Periodically operating said at least one trusted source in order to periodically issue said report; (c) Importing each trusted source report into a security correcting unit, and forming one consolidated file containin g the details from all said reports; (d) Importing into said security correcti ng unit the attributes files of all the security packages; (e) Separately comparing the content of said consolidated file with each of the imported attributes files, and updating each attributes file with the security information included within said consolidated file, information which is missing from the said attributes file, and is relevant to said attributes file; and (f) Separately exporting said updated attributes files and effecti ng each of them as the active attributes file of the corresponding security package, thereby effecting an updated security policy.
|