System and method for policy based adaptive application capability management and device attestation
First Claim
1. A method of providing policy based adaptive application capability management during application programming interface invocations by an application executing on a device, the method comprising:
- sending, by a remote policy management service, the device policy to a local attestation agent on the device;
registering a security descriptor with the trusted services platform module, wherein the security descriptor includes at least authentication and authorization attributes;
negotiating protocol-based capabilities with a remote service to establish a session for secure communications;
sending an operation request through an application programming interface (“
API”
) to the trusted services platform module;
querying the interface access management module for action directives;
processing, by the interface handler, the received action directives to issue a function request to a security module to execute a trusted function in a trusted execution environment;
generating an operation response to the application, wherein the operation response indicates a denial or completion of the operation request; and
processing the operation response to determine whether to generate an alternative operation request.
2 Assignments
0 Petitions
Accused Products
Abstract
A method provides policy based adaptive application capability management and device attestation for dynamic control of remote device operations. The method includes instrumenting applications installed on a remote device to examine their runtime application programming interface (API) invocations to trusted functions abstracted by a trusted services platform anchored to an underlying firmware, software or hardware root of trust, and managing the application security operations based on the execution context and dynamic privilege controls to restrict their capabilities. The invention also provides a local attestation agent to perform state measurements for platform trust, configuration and operational metrics, and generates device policy based platform and application level alerts. These alerts allow operations technology (OT) administrators to dynamically control the operational capabilities of applications, to deal with discovered vulnerabilities and exploits, before requiring distribution of application software upgrades or patches onto a large number of distributed remote devices.
32 Citations
19 Claims
-
1. A method of providing policy based adaptive application capability management during application programming interface invocations by an application executing on a device, the method comprising:
-
sending, by a remote policy management service, the device policy to a local attestation agent on the device; registering a security descriptor with the trusted services platform module, wherein the security descriptor includes at least authentication and authorization attributes; negotiating protocol-based capabilities with a remote service to establish a session for secure communications; sending an operation request through an application programming interface (“
API”
) to the trusted services platform module;querying the interface access management module for action directives; processing, by the interface handler, the received action directives to issue a function request to a security module to execute a trusted function in a trusted execution environment; generating an operation response to the application, wherein the operation response indicates a denial or completion of the operation request; and processing the operation response to determine whether to generate an alternative operation request. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method of providing policy-based local attestation and event reporting on a device the method comprising:
-
sending the device policy to the local attestation agent on the device; performing state measurements to generate platform trust, configuration and operational metrics; generating synchronous platform alerts based on the state measurements and the device policy; sending asynchronous application alerts based on the operation requests by the application and the received action directives based on the device policy; receiving, by the local attestation agent service, indicators generated by local third party applications executing on the device of safety threats, behavior patterns, anomalies and machine learning, wherein the indicators are transmitted via a provider application programming interface of the local attestation agent; processing, by the policy engine of the local attestation agent, the received alerts and indicators to generate event log messages based on the device policy, wherein the event log message may be encrypted and signed using content encryption and signing keys respectively; signing the generated event log message; and sending the signed event log message to a remote device management service for device analytics. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
-
Specification