Dynamically accessing and configuring secured systems

US 10,419,564 B2
Filed: 04/18/2017
Issued: 09/17/2019
Est. Priority Date: 04/18/2017
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method, comprising:

obtaining, by one or more processors in a first computing environment, from a computer system in the first environment, a system message indicating an issue in the computer system, wherein the first computing environment is a secured computing environment comprising computing resources in communication with each other via an intranet connection;

evaluating, by the one or more processors, the contents of the system message, wherein the system message comprises data from the computer system to determine details of the issue;

based on determining the details of the system issue, determining, by the one or more processors, one or more recommended actions to remedy the issue;

generating, by the one or more processors, a notification comprising the one or more recommended actions, wherein the one or more recommended actions comprise calls to portions of the computer system, wherein the generating comprises retaining the data in the first environment, wherein the notification comprises respective selection options to trigger the one or more processors to execute each of the one or more recommended actions in the first environment;

transmitting, by the one or more processors, the notification to a computing node in a second computing environment, wherein based on receiving the notification, the computing node communicates the notification to a computing device utilized by an authorized user in the second computing environment, via an application provided by the computing node to the computing device over an Internet connection, wherein computing resources comprising the second computing environment are not authorized to access the intranet connection and are located outside of the secured computing environment comprising the first computing environment;

receiving, by the one or more processors, via a secure protocol, from the computing device, via the computing node, a response indicating selection of a respective selection option of the respective selection options, wherein the receiving comprises authenticating, by the computing node, the authorized user of the computing device in the second environment;

translating, by the one or more processors, the respective selection option into a recommended action of the one or more recommended actions; and

issuing, by the one or more processors, based on the recommended action, calls comprising the recommended action to the computer system to remedy the issue, wherein executing the recommended action responsive to the calls comprises accessing the data in the first environment.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method, computer program product, and system includes a processor(s) in a first computing environment obtaining, from a computer system in the first environment, a system message indicating an issue in the computer system. The processor(s) evaluate the message to determine details of the issue and determine recommended action(s) to remedy the issue. The processor(s) generate a notification comprising the action(s), which include calls to portions of the computer system and the notification comprises respective selection options to trigger the processor(s) to execute each of the one or more recommended actions in the first environment. The processor(s) transmit the notification to a computing node in a second computing environment to communicate to a computing device in that environment. The processor(s) receive a response indicating selection of a respective selection option. The processor(s) translate the option into a recommended action and issue calls in the recommended action to the computer system.

22 Citations

15 Claims

1. A computer-implemented method, comprising:
- obtaining, by one or more processors in a first computing environment, from a computer system in the first environment, a system message indicating an issue in the computer system, wherein the first computing environment is a secured computing environment comprising computing resources in communication with each other via an intranet connection;
  
  evaluating, by the one or more processors, the contents of the system message, wherein the system message comprises data from the computer system to determine details of the issue;
  
  based on determining the details of the system issue, determining, by the one or more processors, one or more recommended actions to remedy the issue;
  
  generating, by the one or more processors, a notification comprising the one or more recommended actions, wherein the one or more recommended actions comprise calls to portions of the computer system, wherein the generating comprises retaining the data in the first environment, wherein the notification comprises respective selection options to trigger the one or more processors to execute each of the one or more recommended actions in the first environment;
  
  transmitting, by the one or more processors, the notification to a computing node in a second computing environment, wherein based on receiving the notification, the computing node communicates the notification to a computing device utilized by an authorized user in the second computing environment, via an application provided by the computing node to the computing device over an Internet connection, wherein computing resources comprising the second computing environment are not authorized to access the intranet connection and are located outside of the secured computing environment comprising the first computing environment;
  
  receiving, by the one or more processors, via a secure protocol, from the computing device, via the computing node, a response indicating selection of a respective selection option of the respective selection options, wherein the receiving comprises authenticating, by the computing node, the authorized user of the computing device in the second environment;
  
  translating, by the one or more processors, the respective selection option into a recommended action of the one or more recommended actions; and
  
  issuing, by the one or more processors, based on the recommended action, calls comprising the recommended action to the computer system to remedy the issue, wherein executing the recommended action responsive to the calls comprises accessing the data in the first environment.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The computer-implemented method of claim 1, wherein authenticating the authorized user of the computing device in the second environment comprises:
    - receiving, by the one or more processors, the response, further comprising a username and a password associated with a user of the computing device; and
      
      accepting, by the one or more processors, the response, based on validating the username and a password.
  - 3. The computer-implemented method of claim 2, wherein receiving the response further comprises decrypting the response to extract the username and the password.
  - 4. The computer-implemented method of claim 1, wherein the notification comprises a push notification.
  - 5. The computer-implemented method of claim 1, wherein executing the recommended action comprises:
    - based on receiving the response indicating the selection, generating, by the one or more processors, a dynamic rule linking the system message to the selection.
  - 6. The computer-implemented method of claim 1, further comprising:
    - obtaining, by one or more processors in the first computing environment, from the computer system in the first environment, a new system message indicating another issue in the computer system;
      
      evaluating, by the one or more processors, the contents of the new system message, wherein the new system message comprises additional data from the computer system to determine details of the other issue, wherein the details of the other issue comprise identifying a similarity between the new system message and the system message;
      
      based on determining the details of the new system issue, determining, by the one or more processors, a recommended action to remedy the other issue, the determining the recommended action to remedy the other issue comprising assigning the recommended action to remedy the other issue based on the dynamic rule;
      
      generating, by the one or more processors, a new notification comprising the recommended action to remedy the other issue, wherein the notification comprises the respective selection option;
      
      transmitting, by the one or more processors, the new notification to the computing node in the second computing environment, wherein based on receiving the new notification, the computing node communicates the notification to the computing device in the second computing environment;
      
      receiving, by the one or more processors, via the secure protocol, from the computing device, a response indicating selection of the respective selection option;
      
      translating, by the one or more processors, the respective selection option into the recommended actions to remedy the other issue; and
      
      issuing, by the one or more processors, based on the recommended action, calls comprising the recommended action to the computer system to remedy the other issue.
  - 7. The computer-implemented method of claim 1, wherein the one or more recommended actions are selected from the group consisting of:
    - system reset, system reboot, and system move.
  - 8. The computer-implemented method of claim 1, wherein an application executing on a middleware server comprises the one or more processors in the first computing environment.
  - 9. The computer-implemented method of claim 1, wherein the computer system comprises a mainframe executing a host process monitoring at least one guest process, wherein the obtaining comprises obtaining the system message from the at least one guest process.
  - 10. The computer-implemented method of claim 9, wherein the issuing comprises, issuing calls to the host process of the computer system.
  - 11. The computer-implemented method of claim 1, wherein the computing node provides the notification to the computing device as a service.

12. A computer program product comprising:
- a computer readable storage medium readable by one or more processors and storing instructions for execution by the one or more processors for performing a method comprising;
  
  obtaining, by the one or more processors in a first computing environment, from a computer system in the first environment, a system message indicating an issue in the computer system, wherein the first computing environment is a secured computing environment comprising computing resources in communication with each other via an intranet connection;
  
  evaluating, by the one or more processors, the contents of the system message, wherein the system message comprises data from the computer system to determine details of the issue;
  
  based on determining the details of the system issue, determining, by the one or more processors, one or more recommended actions to remedy the issue;
  
  generating, by the one or more processors, a notification comprising the one or more recommended actions, wherein the one or more recommended actions comprise calls to portions of the computer system, wherein the generating comprises retaining the data in the first environment, wherein the notification comprises respective selection options to trigger the one or more processors to execute each of the one or more recommended actions in the first environment;
  
  transmitting, by the one or more processors, the notification to a computing node in a second computing environment, wherein based on receiving the notification, the computing node communicates the notification to a computing device utilized by an authorized user in the second computing environment, via an application provided by the computing node to the computing device over an Internet connection, wherein computing resources comprising the second computing environment are not authorized to access the intranet connection and are located outside of the secured computing environment comprising the first computing environment;
  
  receiving, by the one or more processors, via a secure protocol, from the computing device, via the computing node, a response indicating selection of a respective selection option of the respective selection options, wherein the receiving comprises authenticating, by the computing node, the authorized user of the computing device in the second environment;
  
  translating, by the one or more processors, the respective selection option into a recommended action of the one or more recommended actions; and
  
  issuing, by the one or more processors, based on the recommended action, calls comprising the recommended action to the computer system to remedy the issue, wherein executing the recommended action responsive to the calls comprises accessing the data in the first environment.
- View Dependent Claims (13, 14)
- - 13. The computer program product of claim 12, wherein authenticating the authorized user of the computing device in the second environment comprises:
    - receiving, by the one or more processors, the response, further comprising a username and a password associated with a user of the computing device; and
      
      accepting, by the one or more processors, the response, based on validating the username and a password.
  - 14. The computer program product of claim 12, wherein the notification comprises a push notification.

15. A system comprising:
- a memory;
  
  one or more processors in communication with the memory; and
  
  program instructions executable by the one or more processors via the memory to perform a method, the method comprising;
  
  obtaining, by the one or more processors in a first computing environment, from a computer system in the first environment, a system message indicating an issue in the computer system, wherein the first computing environment is a secured computing environment comprising computing resources in communication with each other via an intranet connection;
  
  evaluating, by the one or more processors, the contents of the system message, wherein the system message comprises data from the computer system to determine details of the issue;
  
  based on determining the details of the system issue, determining, by the one or more processors, one or more recommended actions to remedy the issue;
  
  generating, by the one or more processors, a notification comprising the one or more recommended actions, wherein the one or more recommended actions comprise calls to portions of the computer system, wherein the generating comprises retaining the data in the first environment, wherein the notification comprises respective selection options to trigger the one or more processors to execute each of the one or more recommended actions in the first environment;
  
  transmitting, by the one or more processors, the notification to a computing node in a second computing environment, wherein based on receiving the notification, the computing node communicates the notification to a computing device utilized by an authorized user in the second computing environment, via an application provided by the computing node to the computing device over an Internet connection, wherein computing resources comprising the second computing environment are not authorized to access the intranet connection and are located outside of the secured computing environment comprising the first computing environment;
  
  receiving, by the one or more processors, via a secure protocol, from the computing device, via the computing node, a response indicating selection of a respective selection option of the respective selection options, wherein the receiving comprises authenticating, by the computing node, the authorized user of the computing device in the second environment;
  
  translating, by the one or more processors, the respective selection option into a recommended action of the one or more recommended actions; and
  
  issuing, by the one or more processors, based on the recommended action, calls comprising the recommended action to the computer system to remedy the issue, wherein executing the recommended action responsive to the calls comprises accessing the data in the first environment.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Mild, Wilhelm, Noorshams, Omar-Qais, Parameshwaran, Pradeep, Vater, Guenter, Vaupel, Robert, Zrianina, Mariia
Primary Examiner(s)
Dennison, Jerry B

Application Number

US15/490,166
Publication Number

US 20180302483A1
Time in Patent Office

882 Days
Field of Search
US Class Current
CPC Class Codes

H04L 41/06   Management of faults, event...

H04L 63/0272   Virtual private networks

H04L 63/0428   wherein the data content is...

H04L 63/083   using passwords cryptograph...

H04L 63/166   at the transport layer

H04L 67/55   Push-based network services

Dynamically accessing and configuring secured systems

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

22 Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

Dynamically accessing and configuring secured systems

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

22 Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links