17541864. DISCOVERING AND USING APPLICATION DEPLOYMENT DEPENDENCIES TO AUGMENT GOVERNANCE AND COMPLIANCE POLICY simplified abstract (INTERNATIONAL BUSINESS MACHINES CORPORATION)
Contents
- 1 DISCOVERING AND USING APPLICATION DEPLOYMENT DEPENDENCIES TO AUGMENT GOVERNANCE AND COMPLIANCE POLICY
- 1.1 Organization Name
- 1.2 Inventor(s)
- 1.3 DISCOVERING AND USING APPLICATION DEPLOYMENT DEPENDENCIES TO AUGMENT GOVERNANCE AND COMPLIANCE POLICY - A simplified explanation of the abstract
- 1.4 Simplified Explanation
- 1.5 Potential Applications
- 1.6 Problems Solved
- 1.7 Benefits
- 1.8 Original Abstract Submitted
DISCOVERING AND USING APPLICATION DEPLOYMENT DEPENDENCIES TO AUGMENT GOVERNANCE AND COMPLIANCE POLICY
Organization Name
INTERNATIONAL BUSINESS MACHINES CORPORATION
Inventor(s)
Anca Sailer of Scarsdale NY (US)
Christopher John Butler of Hawthorne East (AU)
Malgorzata Steinder of Leonia NJ (US)
James R. Doran of New Milford CT (US)
Philippe Mulet of Saint-Nazaire (FR)
DISCOVERING AND USING APPLICATION DEPLOYMENT DEPENDENCIES TO AUGMENT GOVERNANCE AND COMPLIANCE POLICY - A simplified explanation of the abstract
This abstract first appeared for US patent application 17541864 titled 'DISCOVERING AND USING APPLICATION DEPLOYMENT DEPENDENCIES TO AUGMENT GOVERNANCE AND COMPLIANCE POLICY
Simplified Explanation
The patent application describes a process for ensuring compliance with regulations and policies in a cloud-based security and compliance platform.
- The process is designed to address the problem of misalignment between compliance policies and the actual regulation posture of a product after deployment.
- It provides tools and methods to proactively augment governance and compliance policies during the pre-deployment phase.
- This allows for the regulation posture of the product to be consistent with the compliance policy when it is deployed in the future.
- The process can be applied to any DevOps-based deployment of a product, such as an enterprise application.
Potential Applications
- Cloud-based security and compliance platforms
- DevOps-based deployments of enterprise applications
Problems Solved
- Misalignment between compliance policies and regulation posture after deployment
- Lack of proactive augmentation of governance and compliance policies during the pre-deployment phase
Benefits
- Ensures consistency between compliance policies and regulation posture
- Proactively addresses compliance issues before deployment
- Streamlines the compliance discovery and integration process
Original Abstract Submitted
A compliance discovery and integration process is implemented in association with a cloud-based security and compliance platform and associated CI/CD framework. The process assumes an existing DevOps-based deployment of a product, such as an enterprise application that executes in a runtime production environment. The technique of this disclosure addresses the problem of misalignment between a compliance policy and the product’s post-deployment regulation posture by providing tools and methods that enable pro-active augmentation of governance and compliance policy during the pre-deployment phase and with respect to a next deployment of the product (e.g., a next or updated version). Thus, when the product is later deployed in its next deployment, its regulation posture (post-deployment) is already consistent with the compliance policy.
