Notifications in a computer system
First Claim
Patent Images
1. A method in a computer system, comprising:
- configuring an analyzer provided in the computer system for detection of at least one adverse condition based at least in part on information of usage of or actions on at least one authentication credential obtained from the computer system,obtaining, by the analyzer provided in the computer system, the information of the usage of or the actions on the at least one authentication credential, by at least one host for authentication with at least one other host, wherein the computer system has received the at least one authentication credential from the at least one host and generated the information of the usage of or the actions on the at least one authentication credential,detecting, by the analyzer provided in the computer system and based at least in part on the information of the usage of or the actions on the at least one authentication credential, the at least one adverse condition relating to the at least one authentication credential, andtriggering, by the analyzer provided in the computer system, a notification in response to the detecting of the at least one adverse condition.
1 Assignment
0 Petitions
Accused Products
Abstract
Certain embodiments provide means for managing automated access to computers, e.g., using SSH user keys and other kinds of trust relationships. Certain embodiments also provide for managing certificates, Kerberos credentials, and cryptographic keys. Certain embodiments provide for remediating legacy SSH key problems and for automating configuration of SSH keys, as well as for continuous monitoring.
115 Citations
20 Claims
-
1. A method in a computer system, comprising:
-
configuring an analyzer provided in the computer system for detection of at least one adverse condition based at least in part on information of usage of or actions on at least one authentication credential obtained from the computer system, obtaining, by the analyzer provided in the computer system, the information of the usage of or the actions on the at least one authentication credential, by at least one host for authentication with at least one other host, wherein the computer system has received the at least one authentication credential from the at least one host and generated the information of the usage of or the actions on the at least one authentication credential, detecting, by the analyzer provided in the computer system and based at least in part on the information of the usage of or the actions on the at least one authentication credential, the at least one adverse condition relating to the at least one authentication credential, and triggering, by the analyzer provided in the computer system, a notification in response to the detecting of the at least one adverse condition. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. An apparatus for a computer system, the apparatus comprising at least one processor, and at least one memory for storing instructions that, when executed, cause the apparatus to:
-
obtain information associated with usage of or actions on at least one authentication credential by at least one host for authentication with at least one other host, wherein the computer system has received the at least one authentication credential and generated the information associated with the usage of or the actions on the at least one authentication credential, detect, based at least in part on the information associated with the usage of or the actions on the at least one authentication credential, at least one adverse condition relating to the at least one authentication credential, and trigger a notification in response to the detecting of the at least one adverse condition. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
-
-
20. A non-transitory computer readable media comprising program code for causing a processor of an analyzer to perform instructions in a computer system, the instructions performing a method comprising:
-
obtaining information associated with usage of or actions on at least one authentication credential by at least one host for authentication with at least one other host, wherein the computer system has received the at least one authentication credential and generated the information associated with the usage of or the actions on the at least one authentication credential, detecting, by the analyzer and based at least in part on the information associated with the usage of or the actions on the at least one authentication credential, at least one adverse condition relating to the at least one authentication credential, and triggering a notification in response to the detecting of the at least one adverse condition.
-
Specification