Zum Hauptinhalt springen
UB Siegen

METHOD FOR PROVIDING SECURITY POSTURE, FUNCTIONAL UPDATES FOR ENTERPRISE ITDM

2024
Online Patent
Zugriff:
Zum Volltext

A disclosed method for managing enterprise security posture includes maintaining a security system repository (SSR) including information mapping one or more software libraries to vulnerability information indicative of one or more identified vulnerabilities, providing one or more library scanning tools configured to scan the one or more software libraries and provide notifications indicative of one or more new vulnerabilities, generating an SSR catalog indicative of vulnerability information pertaining to the one or more software libraries, and an enhanced plugin module (EPM) is provided wherein the EPM is configured to consume installed application metadata enabling to produce an inventory indicative of updates to deploy.

Titel:
METHOD FOR PROVIDING SECURITY POSTURE, FUNCTIONAL UPDATES FOR ENTERPRISE ITDM
Link:
Veröffentlichung: 2024
Medientyp: Patent
Sonstiges:
  • Nachgewiesen in: USPTO Patent Applications
  • Sprachen: English
  • Document Number: 20240037244
  • Publication Date: February 1, 2024
  • Appl. No: 17/877359
  • Application Filed: July 29, 2022
  • Assignees: Dell Products L.P. (Round Rock, TX, US)
  • Claim: 1. A method comprising: maintaining a security system repository (SSR) including information mapping one or more software libraries to vulnerability information indicative of one or more identified vulnerabilities; providing one or more library scanning tools configured to scan the one or more software libraries and provide notifications indicative of one or more new vulnerabilities; generating an SSR catalog indicative of vulnerability information pertaining to the one or more software libraries; and providing an enhanced plugin module (EPM) configured to consume installed application metadata enabling to produce an inventory indicative of updates to deploy.
  • Claim: 2. The method of claim 1, wherein the vulnerability information included in entries of the SSR catalog comprise one or more of: version information, a common vulnerability scoring system (CVSS) score, and Common Vulnerabilities and Enumeration (CVE) details.
  • Claim: 3. The method of claim 1, further comprising updating the SSR catalog responsive to detecting resolution of an identified vulnerability.
  • Claim: 4. The method of claim 3, further comprising, deploying a fix associated with the resolution to applications that leverage the vulnerable library.
  • Claim: 5. The method of claim 1, wherein the SSR catalog includes information mapping applications to libraries used by them.
  • Claim: 6. The method of claim 1, wherein the installed application metadata includes one or more of: a current security posture of available updates, system level heat maps, fleet level heat maps, and upcoming fixes and functional enhancement timelines.
  • Claim: 7. The method of claim 1, further comprising: providing information technology decision makers (ITDMs) with the identifying information.
  • Claim: 8. An information handling system, comprising: a central processing unit (CPU); a computer readable memory including processor executable program instructions that, when executed by the CPU, cause the information handling system to perform operations comprising: maintaining a security system repository (SSR) including information mapping one or more software libraries to vulnerability information indicative of one or more identified vulnerabilities; providing one or more library scanning tools configured to scan the one or more software libraries and provide notifications indicative of one or more new vulnerabilities; generating an SSR catalog indicative of vulnerability information pertaining to the one or more software libraries; and providing an enhanced plugin module (EPM) configured to consume installed application metadata enabling to produce an inventory indicative of updates to deploy.
  • Claim: 9. The information handling system of claim 8, wherein the vulnerability information included in entries of the SSR catalog comprise one or more of: version information, a common vulnerability scoring system (CVSS) score, and Common Vulnerabilities and Enumeration (CVE) details.
  • Claim: 10. The information handling system of claim 8, further comprising updating the SSR catalog responsive to detecting resolution of an identified vulnerability.
  • Claim: 11. The information handling system of claim 10, further comprising, deploying a fix associated with the resolution to applications that leverage the vulnerable library.
  • Claim: 12. The information handling system of claim 8, wherein the SSR catalog includes information mapping applications to libraries used by them.
  • Claim: 13. The information handling system of claim 8, wherein the installed application metadata includes one or more of: a current security posture of available updates, system level heat maps, fleet level heat maps, and upcoming fixes and functional enhancement timelines.
  • Claim: 14. The information handling system of claim 8, further comprising: providing information technology decision makers (ITDMs) with the identifying information.
  • Current International Class: 06

Klicken Sie ein Format an und speichern Sie dann die Daten oder geben Sie eine Empfänger-Adresse ein und lassen Sie sich per Email zusenden.

oder
oder

Wählen Sie das für Sie passende Zitationsformat und kopieren Sie es dann in die Zwischenablage, lassen es sich per Mail zusenden oder speichern es als PDF-Datei.

oder
oder

Bitte prüfen Sie, ob die Zitation formal korrekt ist, bevor Sie sie in einer Arbeit verwenden. Benutzen Sie gegebenenfalls den "Exportieren"-Dialog, wenn Sie ein Literaturverwaltungsprogramm verwenden und die Zitat-Angaben selbst formatieren wollen.

xs 0 - 576
sm 576 - 768
md 768 - 992
lg 992 - 1200
xl 1200 - 1366
xxl 1366 -