A security policy system is disclosed. The security policy system processes policy messages that request policy information according to a predetermined security policy protocol (SPP) and query messages received from the policy client and other servers by using the security policy protocol (SPP). A host, including a policy server that provides policy information to the requester, a master file that stores local policies in a particular security zone and specific information about that security zone, and a plurality of security policy information databases that hold policy information. It operates as a distributed system providing security policy information necessary for establishing secure communication between security gateways.;According to the present invention, it is possible to centrally manage and negotiate policy information defined differently according to the security domain.
展开▼
