Method and apparatus for real-time security verification of on-line services

US 20030188194A1
Filed: 03/29/2002
Published: 10/02/2003
Est. Priority Date: 03/29/2002
Status: Abandoned Application

First Claim

Patent Images

1. An apparatus for providing verification of a security status of an on-line service, comprising:

a database that stores a profile of devices and services comprising the on-line service and a corresponding indication of their vulnerability; and

a verification engine that provides verification to visitors of the on-line service via a network by displaying an indication of the security status of the on-line service to the visitor in accordance with the stored profile.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A unique combination of several functions achieves a system by which consumers can validate the actual security status of a website before they decide to trust it, and therefore transact with it. In one example implementation, a security system includes a scanning engine that periodically and thoroughly scans the network and connected components of an on-line service such as a website. The results are stored and perhaps reported back to the service via alerts and the like. The website includes a “bug” which visitors can click on. By clicking, the visitors are also displayed web pages showing the security status of the website. Based on their review of such web pages, visitors can then decide whether to trust the website for further transactions.

114 Citations

View as Search Results

38 Claims

1. An apparatus for providing verification of a security status of an on-line service, comprising:
- a database that stores a profile of devices and services comprising the on-line service and a corresponding indication of their vulnerability; and
  
  a verification engine that provides verification to visitors of the on-line service via a network by displaying an indication of the security status of the on-line service to the visitor in accordance with the stored profile.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
- - 2. An apparatus according to claim 1, further comprising a scanning engine that detects the devices and services comprising the on-line service.
  - 3. An apparatus according to claim 2, wherein the scanning engine further performs a comparison between vulnerability fingerprints and the devices and services to obtain the corresponding vulnerability indications.
  - 4. An apparatus according to claim 1, wherein the apparatus is remote from the on-line service on the network.
  - 5. An apparatus according to claim 4, wherein the apparatus is remote from the on-line service on the network.
  - 6. An apparatus according to claim 1, wherein the displayed indication is made in response to the visitor clicking a bug displayed by the on-line service.
  - 7. An apparatus according to claim 3, further comprising an alert engine that sends alerts to the on-line service in accordance with the comparison performed by the scanning engine.
  - 8. An apparatus according to claim 7, wherein the alert engine further determines whether new vulnerabilities potentially affect the on-line service.
  - 9. An apparatus according to claim 8, wherein the alert engine is operative to further determine whether new vulnerabilities potentially affect the on-line service based on information in the stored profile and newly received vulnerability information without requiring a new scan by the scanning engine to detect devices and services comprising the on-line service.
  - 10. An apparatus according to claim 1, wherein the verification engine further receives requests for registration of new on-line services, the verification engine registering the new on-line services in accordance with a determination that a bug exists at a pre-defined URL.
  - 11. An apparatus according to claim 1, wherein the on-line service is a website.
  - 12. An apparatus according to claim 10, wherein the on-line service is a website.
  - 13. An apparatus according to claim 1, wherein the network is the Internet.

14. An apparatus for providing verification of a security status of one or more on-line services, comprising:
- a database that stores respective profiles of devices and services comprising the on-line services and corresponding indications of their vulnerability; and
  
  a security website that receives requests for verification from actual or potential visitors of a selected one of the on-line services via a network and provides a graphical indication of the security status of the selected on-line service to the visitor in accordance with the stored profile.
- View Dependent Claims (15, 16, 17, 18, 19, 20)
- - 15. An apparatus according to claim 14, wherein the graphical indication is a security meter.
  - 16. An apparatus according to claim 14, wherein the security website is further operative to provide graphical indicators of the security status of a plurality of the on-line services in accordance with the stored profiles and requests by the visitors.
  - 17. An apparatus according to claim 14, further comprising a scanning engine that detects the devices and services comprising the on-line services.
  - 18. An apparatus according to claim 17, wherein the scanning engine further performs a comparison between vulnerability fingerprints and the devices and services to obtain the corresponding vulnerability indications.
  - 19. An apparatus according to claim 14, wherein the apparatus is remote from each of the on-line services on the network.
  - 20. An apparatus according to claim 18, wherein the apparatus is remote from each of the on-line services on the network.

21. An apparatus for providing verification of a security status of an on-line service, comprising:
- a scanning engine that periodically detects devices and services comprising the on-line service and compares the detected devices and services against vulnerability fingerprints to obtain a corresponding indication of their vulnerability; and
  
  an alert engine that provides an alert to the on-line service in accordance with the comparison performed by the scanning engine, wherein the apparatus is remote from the on-line service on the network.
- View Dependent Claims (22, 23)
- - 22. An apparatus according to claim 21, wherein the alert engine further determines whether new vulnerabilities potentially affect the on-line service.
  - 23. An apparatus according to claim 22, wherein the alert engine is operative to further determine whether new vulnerabilities potentially affect the on-line service based on information in the stored profile and newly received vulnerability information without requiring a new scan by the scanning engine to detect devices and services comprising the on-line service.

24. An apparatus for providing verification of a security status of an on-line service, comprising:
- a scanning engine that periodically detects devices and services comprising the on-line service and compares the detected devices and services against vulnerability fingerprints to obtain a corresponding indication of their vulnerability; and
  
  a reporting engine that displays scan results to the on-line service in accordance with the comparison performed by the scanning engine and allows the on-line service to identify an obtained vulnerability as a false positive, wherein the apparatus is remote from the on-line service on the network.
- View Dependent Claims (25, 26)
- - 25. An apparatus according to claim 24, further comprising a verification engine that provides an indication of a security status to visitors of the on-line service in accordance with the comparison performed by the scanning engine and the identified false positive.
  - 26. An apparatus according to claim 24, further comprising an alert engine that provides an alert to the on-line service in accordance with the comparison performed by the scanning engine and the identified false positive.

27. An apparatus for providing verification of a security status of an on-line service, comprising:
- means for detecting devices and services comprising the on-line service;
  
  means for comparing the detected devices and services against vulnerability fingerprints;
  
  means for receiving requests for verification from visitors of the on-line service via a network; and
  
  means for providing an indication of the security status of the on-line service to the visitor in accordance with the comparison performed by the comparing means.
- View Dependent Claims (28, 29, 30, 31, 32)
- - 28. An apparatus according to claim 27, wherein the apparatus is remote from the on-line service on the network.
  - 29. An apparatus according to claim 27, further comprising means for allowing the visitor to make the requests by clicking a bug displayed by the on-line service.
  - 30. An apparatus according to claim 27, further comprising means for sending alerts to the on-line service in accordance with the comparison performed by the scanning engine.
  - 31. An apparatus according to claim 30, wherein the alerting means includes means for determining whether new vulnerabilities potentially affect the on-line service.
  - 32. An apparatus according to claim 27, further comprising:
    - means for receiving a requests for registration of a new on-line service;
      
      means for determining whether a bug exists at a pre-defined URL in the request; and
      
      means for registering the new on-line services in accordance with the determination that the bug exists at the pre-defined URL.

33. A method for providing verification of a security status of an on-line service, comprising:
- detecting devices and services comprising the on-line service;
  
  comparing the detected devices and services against vulnerability fingerprints;
  
  receiving requests for verification from visitors of the on-line service via a network; and
  
  providing an indication of the security status of the on-line service to the visitor in accordance with a result of the comparing step.
- View Dependent Claims (34, 35, 36, 37, 38)
- - 34. A method according to claim 33, wherein the comparing step includes scanning the on-line service from a remote address on the network.
  - 35. A method according to claim 33, further comprising allowing the visitor to make the requests by clicking a bug displayed by the on-line service.
  - 36. A method according to claim 33, further comprising sending alerts to the on-line service in accordance with the comparison performed by the scanning engine.
  - 37. A method according to claim 36, wherein the alerting step includes determining whether new vulnerabilities potentially affect the on-line service.
  - 38. A method according to claim 33, further comprising:
    - receiving a request for registration of a new on-line service;
      
      determining whether a bug exists at a pre-defined URL in the request; and
      
      registering the new on-line services in accordance with the determination that the bug exists at the pre-defined URL.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
ScanAlert Co.
Original Assignee
ScanAlert Co.
Inventors
Currie, David, Tyler, Benjamin, Leonard, Kenneth

Application Number

US10/113,875
Publication Number

US 20030188194A1
Time in Patent Office

Days
Field of Search
US Class Current

713/201
CPC Class Codes

G06Q 30/0601   Electronic shopping [e-shop...

G06Q 40/04   Trading; Exchange, e.g. sto...

H04L 63/1433   Vulnerability analysis

Method and apparatus for real-time security verification of on-line services

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

114 Citations

38 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus for real-time security verification of on-line services

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

114 Citations

38 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links