06202157 is referenced by 197 patents and cites 18 patents.

A computer network security system and method utilizes digitally signed and centrally assigned policy data, such as password length rules, that is unilaterally enforced at network nodes by node policy enforcement engines. The policy data may be variable on a per client or network node basis through a centralized authority, such as a certification authority. The computer network security system provides variable security policy rule data for distribution to at least one network node through a central security policy rule data distribution source, such as the certification authority. The central security policy rule data distribution source associates a digital signature to the variable security policy rule data to ensure the integrity of the policies in the system. Each network node uses a policy rule data engine and policy rule table to decode policy rule data and enforce the policy rules as selectively determined through the central authority.

Title
Computer network security system and method having unilateral enforceable security policy provision
Application Number
8/986457
Publication Number
6202157 (B1)
Application Date
December 8, 1997
Publication Date
March 13, 2001
Inventor
Paul C Van Oorschot
Ottawa
US
Stephen Hillier
Ottawa
US
Michael Brownlie
Ottawa
US
Agent
Markison & Reckamp P C
US
Assignee
Entrust Technologies
US
IPC
G06F 13/00
View Original Source