×

Methods and systems for ranking, filtering and patching detected vulnerabilities in a networked system

  • US 10,284,589 B2
  • Filed: 10/31/2016
  • Issued: 05/07/2019
  • Est. Priority Date: 10/31/2016
  • Status: Active Grant
First Claim
Patent Images

1. A system for determining priority levels for addressing vulnerabilities associated with a network of computer devices, the system comprising:

  • one or more server devices communicatively coupled to a computer network including a plurality of communicatively coupled computing devices, the one or more server devices include memory storage to store, and one or more processors to execute;

    a data collection engine, upon executing on the one or more processors, configured to;

    receive a plurality of specification profiles representing architecture data of the computer network, each of the specification profiles defines one or more specification variables of the computer network or an asset thereof; and

    receive vulnerability data from a plurality of vulnerability scanners configured to scan the computer network for vulnerabilities, the vulnerability data indicative of one or more vulnerabilities associated with the computer network;

    a controller engine, upon executing on the one or more processors, configured to;

    check for discrepancies in the vulnerability data or between the vulnerability data and the plurality of specification profiles;

    identify, among a plurality of assets of the computer network and upon detecting a discrepancy, one or more assets associated with the discrepancy; and

    instruct a profiling engine to profile the one or more assets associated with the discrepancy;

    the profiling engine, upon executing on the one or more processors, configured to, for each asset of the one or more assets of the computer network associated with the discrepancy,;

    establish, with a computing device associated with the asset, a respective communication channel;

    query, via the respective communication channel, the asset for one or more corresponding profiling parameters; and

    receive, from the computing device associated with the asset via the respective communication channel, the one or more corresponding profiling parameters; and

    a ranking engine, upon executing on the one or more processors, configured to;

    compute, for each asset of the computer network affected with a vulnerability of the one or more vulnerabilities, a respective priority ranking value using the plurality of specification profiles, the vulnerability data and the profiling parameters received by the profiling engine, the priority ranking value associated with each asset affected with any of the one or more vulnerabilities indicative of a priority level, compared to other assets of the computer network, for fixing at least one vulnerability affecting that asset.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×