公开(公告)号：WO2022039925A1

公开(公告)日：2022-02-24

申请号：PCT/US2021/044456

申请日：2021-08-04

Applicant: ORACLE INTERNATIONAL CORPORATION

Inventor： DOZORETS, Igor ,  ALRAHEM, Thoulfekar ,  TONG, Jun ,  KUPERMAN, Leonid ,  POTLAPALLY, Nachiketh Rao ,  CHANDRAN, Bala Ganesh ,  PRATT, Brian ,  GLASS, Nathaniel ,  NAGARAJA, Girish ,  NADAL, Jonathan Jorge

IPC: H04W12/08 ,  H04L29/06

Abstract: A cloud-based security solution that provides a robust and secure framework for managing and enforcing security policies related to various resources managed in the cloud is disclosed. The cloud-based security solution is implemented by a security zone policy enforcement system in a cloud service provider infrastructure. The system receives a request to perform an operation on a resource and determines a compartment associated with the resource. The system determines that the compartment is associated with a security zone and determines a set of one or more security zone policies applicable to the resource. The system then determines that the operation on the resource is permitted based on the set of one or more security zone policies and responsive to determining that the operation on the resource is permitted, allows the operation to be performed on the resource.