利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

49 条记录 (耗时 0.011 秒)

    SYSTEMS AND METHODOLOGIES FOR CONTROLLING ACCESS TO A FILE SYSTEM
    1.
    发明公开
    SYSTEMS AND METHODOLOGIES FOR CONTROLLING ACCESS TO A FILE SYSTEM 审中-公开
    系统及其控制方法访问文件系统

    公开(公告)号:EP2959424A4

    公开(公告)日:2016-10-19

    申请号:EP13875796

    申请日:2013-11-07

    申请人: VARONIS SYSTEMS INC

    发明人: FAITELSON YAKOV KORKUS OHAD

    IPC分类号: G06F21/62 G06F21/60

    CPC分类号: H04L63/102 G06F17/3007 G06F17/30171 G06F21/604 G06F21/6218 G06F2221/2101 G06F2221/2141 H04L63/101

    摘要: A method for controlling access to a file system having data elements, including the steps of maintaining a record of respective actual accesses by users of the file system to the data elements, defining a proposed removal of a set of the users from a superset of the users, wherein members of the superset have common access privileges to a portion of the data elements, and wherein following an implementation of the proposed removal, members of the set retain respective proposed residual access permissions, ascertaining, prior to the implementation of the proposed removal, that at least one of the respective actual accesses are disallowed to the members of the set, or to non-members of the set having actual access profiles which are similar to the actual access profiles of the members of the set, by the respective proposed residual access permissions, and generating an error indication, responsively to the ascertaining.

    ENTERPRISE LEVEL DATA MANAGEMENT
    2.
    发明公开
    ENTERPRISE LEVEL DATA MANAGEMENT 审中-公开
    数据管理在企业

    公开(公告)号:EP2476052A4

    公开(公告)日:2016-05-11

    申请号:EP10815067

    申请日:2010-01-27

    申请人: VARONIS SYSTEMS INC

    发明人: KORKUS OHAD FAITELSON YAKOV KRETZER OPHIR BASS DAVID

    IPC分类号: G06F7/00

    CPC分类号: G06F17/30091 G06F21/6218 G06F2221/2101 G06F2221/2141 H04L63/10

    摘要: A system for identifying data of interest from among a multiplicity of data elements residing on multiple platforms in an enterprise, the system including background data characterization functionality characterizing the data of interest at least by at least one content characteristic thereof and at least one access metric thereof, the at least one access metric being selected from data access permissions and actual data access history and near real time data matching functionality selecting the data of interest by considering only data elements which have the at least one content characteristic thereof and the at least one access metric thereof from among the multiplicity of data elements.

    ENTERPRISE LEVEL DATA COLLECTION SYSTEMS AND METHODOLOGIES
    3.
    发明公开
    ENTERPRISE LEVEL DATA COLLECTION SYSTEMS AND METHODOLOGIES 审中-公开
    数据收集系统和企业方法

    公开(公告)号:EP2834751A1

    公开(公告)日:2015-02-11

    申请号:EP12873565.1

    申请日:2012-04-04

    申请人: Varonis Systems, Inc.

    发明人: FAITELSON, Yakov KORKUS, Ohad BASS, David KAYSAR, Yzhar

    IPC分类号: G06F17/00

    CPC分类号: G06F17/30575 G06F11/3006 G06F11/3065 G06F11/3089 G06F2201/805 G06F2201/86 G06Q10/06

    摘要: An enterprise data collection system including at least one database for receiving over a network and storing data collected from data resources at a plurality of physical sites located at disparate locations, a plurality of remotely synchronizable probes (RSPs) located at the plurality of physical sites, the remotely synchronizable probes (RSPs) performing at least one of the following data collection functions: real time event collection, file system crawling for data structure and permissions, data content analysis, data indexing, data tagging and event triggered alerts, and at least one RSP manager located remotely from at least one of the plurality of remotely synchronizable probes and being operative to govern the operation of and orchestrate data collection and transmission by the plurality of remotely synchronizable probes (RSPs).

    AUTOMATIC REMOVAL OF GLOBAL USER SECURITY GROUPS
    5.
    发明公开
    AUTOMATIC REMOVAL OF GLOBAL USER SECURITY GROUPS 审中-公开
    自动距离全局用户安全组

    公开(公告)号:EP2577496A4

    公开(公告)日:2014-02-05

    申请号:EP11786223

    申请日:2011-01-23

    申请人: VARONIS SYSTEMS INC

    发明人: FAITELSON YAKOV KORKUS OHAD KRETZER-KATZIR OPHIR BASS DAVID

    IPC分类号: G06F17/00 G06F21/62 G06Q10/10 H04L29/06

    CPC分类号: G06F21/6218 G06F21/6263 G06F2221/2101 G06F2221/2141 G06F2221/2149 G06Q10/103 H04L63/105

    摘要: A system for automatically replacing a user security group-based computer security policy by a computer security policy based at least partially on actual access, including a learned access permissions subsystem operative to learn current access permissions of users to network objects in an enterprise computer environment and to provide an indication of which users are members of which user security groups having access permissions to which network objects, a learned actual access subsystem operative to learn actual access history of users in the enterprise to the network objects and to provide indications of which users have had actual access to which network objects, and a computer security policy administration subsystem, receiving indications from the learned access permission subsystem and the learned actual access subsystem and being operative to automatically replace pre-selected user-security group-based access permissions with at least partially actual access-based access permissions without disrupting access to network objects.

    ACCESS PERMISSIONS MANAGEMENT SYSTEM AND METHOD
    8.
    发明公开
    ACCESS PERMISSIONS MANAGEMENT SYSTEM AND METHOD 审中-公开
    系统和方法来管理访问权限

    公开(公告)号:EP2700028A4

    公开(公告)日:2016-06-01

    申请号:EP12774249

    申请日:2012-04-18

    申请人: VARONIS SYSTEMS INC

    发明人: FAITELSON YAKOV KORKUS OHAD KRETZER-KATZIR OPHIR KEYSAR YZHAR

    IPC分类号: H04L29/06 G06F21/60

    CPC分类号: H04L63/101 G06F21/41 G06F21/45 G06F21/604 G06F21/6218

    摘要: An access permissions management system including a hierarchical access permissions repository including access permissions relating to data elements arranged in a data element hierarchy, wherein some of the data elements have only access permissions which are inherited from ancestral data elements, some of the multiplicity of data elements are prevented from having inherited access permissions and thus have only unique access permissions which are not inherited and some of the data elements are not prevented from having inherited access permissions and have not only inherited access permissions but also unique access permissions which are not inherited, some of which unique access permissions possibly being redundant with inherited access permissions, and an access permissions redundancy prevention engine operative to ascertain which of the unique access permissions are redundant with inherited access permissions and not to store the unique access permissions which are redundant with inherited access permissions in the repository.

    SYSTEMS AND METHODS OF AUTOMATIC GENERATION AND EXECUTION OF DATABASE QUERIES
    9.
    发明公开
    SYSTEMS AND METHODS OF AUTOMATIC GENERATION AND EXECUTION OF DATABASE QUERIES 审中-公开
    系统以及用于自动生成和数据库查询的执行方法

    公开(公告)号:EP2783306A4

    公开(公告)日:2015-07-29

    申请号:EP11876371

    申请日:2011-11-24

    申请人: VARONIS SYSTEMS INC

    发明人: FAITELSON YAKOV KORKUS OHAD KRETZER-KATZIR OPHIR

    IPC分类号: G06F17/30

    CPC分类号: G06F17/30477 G06F17/30398

    摘要: There is thus provided in accordance with a preferred embodiment of the present invention a system for automatically generating and executing database queries, the system including a user interface operative to allow a user to select at least one selected predefined database report from a list of predefined database reports and automatic database query generation functionality operative to automatically generate a database query corresponding to the at least one selected predefined database report, the database query including at least one predefined combinable page.