Error detection/correction and fault detection/recovery – Data processing system error or fault handling – Reliability and availability
Reexamination Certificate
2011-07-05
2011-07-05
Bonzo, Bryce P (Department: 2113)
Error detection/correction and fault detection/recovery
Data processing system error or fault handling
Reliability and availability
Reexamination Certificate
active
07975165
ABSTRACT:
Information Technology Risk to an organization is associated with a plurality of virtual machines (VMs) each running on a plurality of hosts, each host being a computer system connected to a network and in communication with a risk orchestrator, which receives threat indication messages (TIMs) from threat indicators. Each TIM indicates a status of a threat to which a hosts is vulnerable. Downtime probability (DTP) resulting from the threat and an overall host DTP for each host are calculated. For each VM, a risk value associated with the VM is calculated as a function of the host DTP for and an impact for the VM, the impact being a value reflecting a relative importance of the VM to the organization. Each VM requiring risk mitigation is identified and prioritized in accordance with a policy, and a configured mitigation control action may be carried out for each VM requiring risk mitigation.
REFERENCES:
patent: 2009/0307166 (2009-12-01), Routray et al.
patent: 2010/0100877 (2010-04-01), Greene et al.
patent: 2010/0100888 (2010-04-01), Tene et al.
patent: 2010/0175108 (2010-07-01), Protas
patent: 2010/0199351 (2010-08-01), Protas
Stonebumer, Gary et al., “Risk Management Guide for Information Technology Systems”, “Recommendations of the National Institute of Standards and Technology” National Institute of Standards and Technology, Special Publication 800-30, pp. 1-25.
Bowen, Pauline et al., “Information Security Handbook: A Guide for Managers”, National Institute of Standards and Technology, Technology Administration U.S. Department of Commerce, Special Publication 800-100, pp. 1-178.
“International Convergence of Capital Measurement and Capital Standards, A Revised Framework”, Basel Committee on Banking Supervision, Bank for International Settlements, Basel, Switzerland, Jun. 2004, Section V, Operational Risk.
“One Hundred Seventh Congress of the United States of America at the Second Session” City of Washington, Wednesday, Jan. 23, 2002, Sarbanes-Oxley Act of 2002, Sections 302, 404 and 409, pp. 33-34, p. 45 and p. 47.
Caudle Corey Pace
Hanson Jeffrey J.
Shneorson Oren
Bonzo Bryce P
Heyman Leonard E.
VMware, Inc.
LandOfFree
Management of information technology risk using virtual... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Management of information technology risk using virtual..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Management of information technology risk using virtual... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2635826