Abstract: Methods, systems, apparatuses, and computer-readable storage mediums are described for assigning a security risk score to a resource. In one example, resource access data is collected for a resource. Based at least on the resource access data, a data risk index (DRI) score is generated for the resource. The DRI score comprises a value that is indicative of a level of risk that the resource will be compromised. At least one of the DRI score, an alert based at least on the DRI score, or a policy change for the resource based at least on the generated DRI score is reported to an administrator.

Abstract: Methods, systems, apparatuses, and computer-readable storage mediums described herein are configured to automatically detect inadvertent, unauthorized account access. For example, a user account may be analyzed to identify roles thereof that permit identities of other accounts to assume the roles of the user account. The analysis is performed for each identified account, including any accounts having roles that permit identities of further accounts to assume the roles of the identified accounts. Accordingly, a chain of roles may be determined that indicates how one account may have access to another account via one or more intervening role assignments. This circuitous path of account access may be represented and displayed to a user, e.g., via a tree structure. Upon identifying an unauthorized account, an appropriate action may be performed to adjust permissions.

Abstract: Methods, systems, apparatuses, and computer-readable storage mediums described herein are configured to automatically detect inadvertent, unauthorized account access. For example, a user account may be analyzed to identify roles thereof that permit identities of other accounts to assume the roles of the user account. The analysis is performed for each identified account, including any accounts having roles that permit identities of further accounts to assume the roles of the identified accounts. Accordingly, a chain of roles may be determined that indicates how one account may have access to another account via one or more intervening role assignments. This circuitous path of account access may be represented and displayed to a user, e.g., via a tree structure. Upon identifying an unauthorized account, an appropriate action may be performed to adjust permissions.

Abstract: Access privileges of at least one identity to resources are adjusted within an authorization system of a computing environment. Over a detection period, accesses by the identity to the resources are detected and a usage score is computed as a usage function of a measure of use by the identity of access privilege(s) it has been granted to at least one of the resources relative to a measure of a set of possible grantable privileges. In accordance with a least privilege security policy, and according to the usage score, the set of access privileges granted to the identity may then be adjusted.

Abstract: Access privileges of at least one identity to resources are adjusted within an authorization system of a computing environment. Over a detection period, accesses by the identity to the resources are detected and a usage score is computed as a usage function of a measure of use by the identity of access privilege(s) it has been granted to at least one of the resources relative to a measure of a set of possible grantable privileges. In accordance with a least privilege security policy, and according to the usage score, the set of access privileges granted to the identity may then be adjusted.

Abstract: A security server provides dynamic permissions for an enterprise data source. The security server establishes permissions rules for a data source of the enterprise. For example, the permissions rules describe permissions policies applicable to users of the enterprise in given contexts. The security server evaluates the permissions rules in view of a context to produce a dynamic permissions policy for the data source. The context describes the environment of the data source at a point in time (e.g., a current time). The dynamic permissions policy describes permissions of users of the enterprise with respect to the data source and the context. The security server transmits the dynamic permissions policy to the enterprise such that the enterprise is able to implement the dynamic permissions policy at the data source.

Abstract: Methods, systems, apparatuses, and computer-readable storage mediums are described for assigning a security risk score to a resource. In one example, resource access data is collected for a resource. Based at least on the resource access data, a data risk index (DRI) score is generated for the resource. The DRI score comprises a value that is indicative of a level of risk that the resource will be compromised. At least one of the DRI score, an alert based at least on the DRI score, or a policy change for the resource based at least on the generated DRI score is reported to an administrator.

Abstract: Methods, systems, apparatuses, and computer-readable storage mediums described herein are configured to automatically detect inadvertent, unauthorized account access. For example, a user account may be analyzed to identify roles thereof that permit identities of other accounts to assume the roles of the user account. The analysis is performed for each identified account, including any accounts having roles that permit identities of further accounts to assume the roles of the identified accounts. Accordingly, a chain of roles may be determined that indicates how one account may have access to another account via one or more intervening role assignments. This circuitous path of account access may be represented and displayed to a user, e.g., via a tree structure. Upon identifying an unauthorized account, an appropriate action may be performed to adjust permissions.

Abstract: Access privileges of at least one identity to resources are adjusted within an authorization system of a computing environment. Over a detection period, accesses by the identity to the resources are detected and a usage score is computed as a usage function of a measure of use by the identity of access privilege(s) it has been granted to at least one of the resources relative to a measure of a set of possible grantable privileges. In accordance with a least privilege security policy, and according to the usage score, the set of access privileges granted to the identity may then be adjusted.

Abstract: A security server provides dynamic permissions for an enterprise data source. The security server establishes permissions rules for a data source of the enterprise. For example, the permissions rules describe permissions policies applicable to users of the enterprise in given contexts. The security server evaluates the permissions rules in view of a context to produce a dynamic permissions policy for the data source. The context describes the environment of the data source at a point in time (e.g., a current time). The dynamic permissions policy describes permissions of users of the enterprise with respect to the data source and the context. The security server transmits the dynamic permissions policy to the enterprise such that the enterprise is able to implement the dynamic permissions policy at the data source.

Abstract: A graphical user interface for controlling and configuring a remote catheter guidance system having the graphical user interface is displayed concurrently with the mapping and navigation display of the remote catheter guidance system and the graphical user interface being configured to allows a user full control of all the remote catheter guidance system movement functions without leaving the mapping and navigation display. The graphical user interface further allows the physician to quickly configure and calibrate a remote catheter guidance system prior to or during a procedure.

Abstract: A control system for a medical remote catheter guidance system includes an ECU, a computer-readable memory coupled to the ECU, and user interface (UI) logic stored in the memory configured to be executed by the ECU. The user interface logic receives input from a touch screen display with respect to a view of an anatomical model, associates a user type with the input, and interprets the input according to the associated user type and input. The user interface logic may be further configured to receive simultaneous inputs from at least two different users and to associate different user types with each of said simultaneous inputs. The user interface logic may associate each input with a user type according to a location of the input on the touch screen display.

Abstract: A robotic catheter system includes a robotic controller; a robotic manipulator; and in input controller. The input controller includes communication circuitry configured to receive a signal from a user input device; memory having stored therein a plurality of device drivers associated with a different type of input device or a differently configured input device; and a processor configured to recognize an input device connected with the communications circuitry, load a device driver according to the recognized input device, initialize the input device, and/or one of reject and notify an end user, and deliver an image to a display or graphical user interface.

Abstract: A user-guided configuration routine for use with a remote catheter guidance system configured to calibrate of one or more medical devices of the remote catheter guidance system with minimal user input. The user-guided configuration routine being configured to determine the appropriate configuration steps from diagnostic data received from the remote catheter guidance system or from a user.

Abstract: A control system for a medical remote catheter guidance system includes an ECU, a computer-readable memory coupled to the ECU, and user interface (UI) logic stored in the memory configured to be executed by the ECU. The user interface logic receives input from a touch screen display with respect to a view of an anatomical model, associates a user type with the input, and interprets the input according to the associated user type and input. The user interface logic may be further configured to receive simultaneous inputs from at least two different users and to associate different user types with each of said simultaneous inputs. The user interface logic may associate each input with a user type according to a location of the input on the touch screen display.

Abstract: A control system for a medical remote catheter guidance system includes an ECU, a computer-readable memory coupled to the ECU, and user interface (UI) logic stored in the memory configured to be executed by the ECU. The user interface logic receives input from a touch screen display with respect to a view of an anatomical model, associates a user type with the input, and interprets the input according to the associated user type and input. The user interface logic may be further configured to receive simultaneous inputs from at least two different users and to associate different user types with each of said simultaneous inputs. The user interface logic may associate each input with a user type according to a location of the input on the touch screen display.

Abstract: A control system for a medical remote catheter guidance system includes an ECU, a computer-readable memory coupled to the ECU, and user interface (UI) logic stored in the memory configured to be executed by the ECU. The user interface logic receives input from a touch screen display with respect to a view of an anatomical model, associates a user type with the input, and interprets the input according to the associated user type and input. The user interface logic may be further configured to receive simultaneous inputs from at least two different users and to associate different user types with each of said simultaneous inputs. The user interface logic may associate each input with a user type according to a location of the input on the touch screen display.

Abstract: An apparatus for a robotically controlled medical device guidance system comprises a manipulator assembly and a medical device cartridge. The manipulator assembly includes a housing, an electrical port having a first end configured for mating with a complementary electrical connector of a cable, and a manipulation base disposed within the housing and including an electrical interface. The electrical interface is electrically connected to a second end of the electrical port. The cartridge is configured to be removably attached to the manipulation base. The cartridge includes an electrical interface configured to electrically contact the electrical interface of the manipulation base when the cartridge is attached to the base, and a medical device associated therewith. The medical device includes a sensor and a corresponding lead wire. The lead wire is electrically connected to and between the sensor and the electrical interface of the cartridge.

Abstract: A user-guided configuration routine for use with a remote catheter guidance system configured to calibrate of one or more medical devices of the remote catheter guidance system with minimal user input. The user-guided configuration routine being configured to determine the appropriate configuration steps from diagnostic data received from the remote catheter guidance system or from a user.

Abstract: A graphical user interface for controlling and configuring a remote catheter guidance system having the graphical user interface is displayed concurrently with the mapping and navigation display of the remote catheter guidance system and the graphical user interface being configured to allows a user full control of all the remote catheter guidance system movement functions without leaving the mapping and navigation display. The graphical user interface further allows the physician to quickly configure and calibrate a remote catheter guidance system prior to or during a procedure.