Information security – Monitoring or scanning of software or data including attack...
Reexamination Certificate
2007-12-11
2007-12-11
Song, Hosuk (Department: 2135)
Information security
Monitoring or scanning of software or data including attack...
C726S023000, C726S025000
Reexamination Certificate
active
11009782
ABSTRACT:
A system and process for addressing computer security vulnerabilities. The system and process generally comprise aggregating vulnerability information on a plurality of computer vulnerabilities; constructing a remediation database of said plurality of computer vulnerabilities; constructing a remediation signature to address the computer vulnerabilities; and deploying said remediation signature to a client computer. The remediation signature essentially comprises a sequence of actions to address a corresponding vulnerability. A managed automated approach to the process is contemplated in which the system is capable of selective deployment of remediation signatures; selective resolution of vulnerabilities; scheduled deployment of remediation signatures; and scheduled scanning of client computers for vulnerabilities.
REFERENCES:
patent: 5931946 (1999-08-01), Terada et al.
patent: 6279113 (2001-08-01), Vaidya
patent: 6298445 (2001-10-01), Shostack et al.
patent: 6324656 (2001-11-01), Gleichauf et al.
patent: 6347375 (2002-02-01), Reinert et al.
patent: 6751661 (2004-06-01), Geddes
patent: 6766458 (2004-07-01), Harris et al.
patent: 6990660 (2006-01-01), Moshir
patent: 2002/0026591 (2002-02-01), Hartley et al.
patent: 2002/0087882 (2002-07-01), Schneier et al.
patent: 2003/0135749 (2003-07-01), Gales et al.
CERT® Advisories, “CERT/CC Adivisories 1988-2000,” http://web.archive.org/web/20000815055129/http://www.cert.org/advisories/, 2000, 34 pgs.
Moshir, “Non-invasive Automatic Offsite Updating System and Method”, U.S. Appl. No. 60/234,680, filed Sep. 22, 2000.
“Review SPQUERY”, in Network Computing, Nov. 2000, www.networkcomputer.co.uk/back—iss/prod—update/reviews/spquery4.1,htm.
“Ready for Windows 2000 Service pack 1? St. Bernard Software's SPQuery 4.0 is Here Just in Time,” in Business Wire, Aug. 2, 2000, www.findarticles.com/p/articles/mi—m0EIN/is—Augsut—2/ai—63819686/print.
“Useful SPQuery 3.0 automates finding, installing hotfixes,” Mark Joseph Edward, in Infoworld, Jun. 21, 1999, www.infoworld.com/cgi-bin/displayArchive.pl?/99/25/c04-25.46.htm.
SPQuery Users Manual, 1st quarter 2001.
WebConsole Core 4.0 for NetWare, archived May 11, 2000, in Web Archive.org, web.archive.org/web/20000511133746/www.patchlink.com/products/wcnw—product.
Gravitix The Patch Finder, archived Aug. 15, 2000, in Web Archive.org., web.archive.org/web/2000815094824/www.patchlink.com/proudcts/gravitix.asp.
Manzuik, Steve, “Ultimate Security Toolkit”, in NTSecurity, May 16, 2000, web.archive.org/web/2001160751/www.ntsecurity.net/Articles/Index.cfm?ArticleId=92902&SearchString=cyber.
“Network Vulnerability Assessment Report”, archived Sep. 17, 2000 in Web.archive.org., web.archive.org/web/20000917072109/documents.iss.net/literature/InternetScanner/reports/Line—Mgmt—Vulnerability—Assessment—Report.pdf.
“Host Vulnerability Summary Report”, archived Sep. 17, 2000 in Web.archive.org., web.archive.org/web/20000917072216/document.iss.net/literature/InternetScanner/reports/Technician—Host—Vulnerability—Summary—Report.pdf.
ISS SAFEsuite products: Internet Scanner, archived Aug. 20, 2000 in Web.archive.org., web.archive.org/web/20000820203428/www.iss.net/securing—e-business/security—pr . . . .
“Internet Security Systems Internet Scanner”, archived Jun. 6, 2001 in Web.archive.org., web.archive.org/web/2001060422406/documents.iss.net/literature/InternetScanner/is—ps.pdf.
“To Setup Secure PC Network”, archives Aug. 16, 2000 in Web.archive.org., web.archive.org/web/20000816192628/www.citadel.com/downloads/SPC+readme.txt.
“Microsoft Security Glossary”, www.microsoft.com/security/glossary.mspx, published Oct. 29, 2002, updated Dec. 19, 2005.
Banzhof, Carl E., Automated Computer Vulnerability Resolution System, U.S. Reexam Control No. 90/007,955, reexam filing date Mar. 2, 2006.
Conley & Rose, P.C.
McAfee, Inc.
LandOfFree
Automated computer vulnerability resolution system does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Automated computer vulnerability resolution system, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Automated computer vulnerability resolution system will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3897938