| CPC H04L 63/20 (2013.01) [H04L 47/80 (2013.01)] | 20 Claims |
|
1. A Logically Composed System (LCS) resource policy enforcement system, comprising:
a plurality of resource devices;
a Logically Composed System (LCS) provisioning administrator device that is coupled to the plurality of resource devices;
a first client system; and
an orchestrator device that is coupled to the plurality of resource devices and the first client system, wherein the orchestrator device is configured to:
provide, to the first client system using a first subset of the plurality of resource devices and based on a workload intent provided by the first client system, a first LCS;
associate the first LCS with a first client identifier for the first client system;
tag, with the first client identifier, each of the first subset of the plurality of resource devices being used to provide the first LCS;
identify at least one first LCS policy for the first LCS; and
apply the at least one first LCS policy to each of the first subset of the plurality of resource devices tagged with the first client identifier to cause the at least one first LCS policy to be enforced on the first client system and the LCS provisioning administrator device, wherein the enforcement of the at least one first LCS policy on the first client system and the LCS provisioning administrator device includes:
allowing a first subsystem in the first client system to access client data that is generated by the first LCS at the instruction of the first subsystem during the provisioning of the first LCS; and
preventing the LCS provisioning administrator device from accessing the client data.
|