CPC G06F 21/57 (2013.01) [G06F 21/32 (2013.01); G06F 21/84 (2013.01); G06F 2221/034 (2013.01); G06F 2221/2111 (2013.01)] | 20 Claims |
1. An Information Handling System (IHS), comprising:
a plurality of hardware devices, each operated at least in part according to one or more security policies and each operated by one or more registered participants of a platform framework;
a processor; and
a memory coupled to the processor, the memory having program instructions stored thereon that, upon execution, cause the platform framework of the IHS to:
collect context information describing logical and physical environments in which the IHS is operating, wherein the context information is used to determine a security state for the IHS;
detect a launch of a resource of the IHS;
in response to the detected resource launch, collect updated context information further describing the logical and physical environments in which the IHS is operating;
based on the security state, the launched resource and the updated context information, determine an updated security state for the IHS;
based on the updated security state for the IHS, determine changes to one or more security policies that are used to operate the hardware devices of the IHS;
identify platform framework participants that are registered users of the security polices affected by the changes resulting from the updated security state; and
notify the identified platform framework participants of changes to the security policies that are to be used to operate the hardware devices of the IHS.
|