logo

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 8689282 B1

PDFFull Text
Date of Patent:
Apr. 01, 2014

Filed:

Dec. 23, 2011

Security policy enforcement framework for cloud-based information processing systems

Applicants:

Alina M. Oprea, Arlington, MA (US);

Yinqian Zhang, Chapel Hill, NC (US);

Vijay Ganti, Lexington, MA (US);

John P. Field, Chatham, NJ (US);

Ari Juels, Brookline, MA (US);

Michael Kendrick Reiter, Chapel Hill, NC (US);

Inventors:

Alina M. Oprea, Arlington, MA (US);

Yinqian Zhang, Chapel Hill, NC (US);

Vijay Ganti, Lexington, MA (US);

John P. Field, Chatham, NJ (US);

Ari Juels, Brookline, MA (US);

Michael Kendrick Reiter, Chapel Hill, NC (US);

Assignees:

EMC Corporation, Hopkinton, MA (US);

University of North Carolina at Chapel Hill, Chapel Hill, NC (US);

Attorney:

Ryan, Mason & Lewis, LLP

Primary Examiner:

Kambiz Zand

Assistant Examiner:

Michael Guirguis

Int. Cl.
CPC ...
H04L 29/06 (2006.01);
U.S. Cl.
CPC ...
Abstract

Cloud infrastructure of a cloud service provider comprises a processing platform implementing a security policy enforcement framework. The security policy enforcement framework comprises a policy analyzer that is configured to identify at least one security policy associated with at least one tenant of the cloud service provider, to analyze the security policy against configuration information characterizing the cloud infrastructure of the cloud service provider, and to control execution of one or more applications of said at least one tenant within the cloud infrastructure in accordance with the security policy, based at least in part on one or more results of the analysis of the security policy. The security policy enforcement framework may be implemented in a platform-as-a-service (PaaS) layer of the cloud infrastructure, and may comprise a runtime controller, an operating system controller, a hypervisor controller and a PaaS controller.

Find Patent Forward Citations

Loading…