System and method of verifying security best practices

US 20030236994A1
Filed: 06/21/2002
Published: 12/25/2003
Est. Priority Date: 06/21/2002
Status: Abandoned Application

First Claim

Patent Images

1. A computer system, comprising:

a plurality of computers;

a master test engine configured to request that a test be conducted regarding a security practice of the plurality of computers; and

a plurality of local test engines, at least one each associated with each the plurality of computers, each of the local test engines being configured to conduct the test.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for verifying security best practices on a computer or for multiple computers on a network. A master test engine drives the verification process. The master test engine accesses a primary manifest data file which describes verification tests to be performed by each of the computers to be tested. To execute the tests within the primary manifest data file, one or more test executables are created. The text executables are run by local test engines which are located on each one of the computers on which tests are conducted. The local test engines drive the security tests on the computers, and access locally stored manifest data files, which are created and updated via the primary manifest data file.

31 Citations

View as Search Results

22 Claims

1. A computer system, comprising:
- a plurality of computers;
  
  a master test engine configured to request that a test be conducted regarding a security practice of the plurality of computers; and
  
  a plurality of local test engines, at least one each associated with each the plurality of computers, each of the local test engines being configured to conduct the test.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
- - 2. The computer system of claim 1, wherein each of the local test engines is configured to conduct the test by executing a test executable associated with the test.
  - 3. The computer system of claim 2, further comprising a plurality of local data manifests, at least one each associated with each of the plurality of computers, and each having information regarding the test therein, the information being supplied by the master test engine.
  - 4. The computer system of claim 3, wherein each of the local test engines is configured to conduct the test by accessing the local data manifest.
  - 5. The computer system of claim 1, further comprising a plurality of local data manifests, at least one each associated with each of the plurality of computers, and each having information regarding the test therein, the information being supplied by the master test engine.
  - 6. The computer system of claim 5, wherein each of the local test engines is configured to conduct the test by accessing the local data manifest.
  - 7. The computer system of claim 1, further comprising a primary data manifest associated with the master test engine and having information about the test therein, and wherein the master test engine is configured to request that the test be conducted by accessing the information about the test.
  - 8. The computer system of claim 7, wherein the master test engine is configured to request that the test be conducted by providing the information about the test to the plurality of computers.
  - 9. The computer system of claim 1, further comprising a plurality of local data manifests, at least one each associated with each of the plurality of computers, and each having information regarding the test therein, the information being supplied by the primary data manifest.
  - 10. The computer system of claim 1, wherein each of the local test engines is configured to generate a portable local test result file describing a result of the test.
  - 11. The computer system of claim 10, wherein each of the local test engines is configured to forward its respective local test result file to the master test engine.
  - 12. The computer system of claim 11, wherein the master test engine is configured to generate a portable global test file from information in each local test result file.
  - 13. The computer system of claim 10, wherein the master test engine is configured to generate a portable global test file from information in each local test result file.

14. A computer-readable medium having computer-executable instructions comprising:
- accessing a test to be run to verify a security practice on a computer;
  
  executing the test on the computer to create a result; and
  
  creating a portable results file including the result.
- View Dependent Claims (15, 16, 17, 18)
- - 15. The computer-readable medium of claim 14, wherein the portable results file comprises an XML file.
  - 16. The computer-readable medium of claim 14, wherein accessing a test comprises accessing a local data manifest.
  - 17. The computer-readable medium of claim 14, wherein executing the test on the computer comprises executing a test executable associated with the test.
  - 18. The computer-readable medium of claim 14, having further computer executable instructions for forwarding the portable results file to a remote computer.

19. A method verifying security practices for a plurality of computers, comprising:
- maintaining information in a data manifest about tests for verifying the security practices of the plurality of computers;
  
  providing tests for verifying the security practices to the plurality of computers based upon the information;
  
  receiving a call to update the information in the data manifest; and
  
  updating the information in the data manifest in accordance with the call.
- View Dependent Claims (20, 21, 22)
- - 20. The method of claim 19, further comprising:
    - maintaining information in the data manifest about specific tests to be conducted on each of the plurality of computers; and
      
      receiving a call to update the information in the data manifest for a particular computer; and
      
      updating the information for the particular computer in accordance with the call.
  - 21. The method of claim 19, further comprising:
    - receiving a call to turn off a test in the data manifest; and
      
      not providing the test in response to the call.
  - 22. The method of claim 19, further comprising:
    - receiving a call to turn off all tests in the data manifest; and
      
      not providing the tests in response to the call.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Cedar, Cy, Raden, Gary Paul, Fishman, Neil S., Passuello, Luciano

Application Number

US10/177,038
Publication Number

US 20030236994A1
Time in Patent Office

Days
Field of Search
US Class Current

726/25
CPC Class Codes

G06F 21/552 involving long-term monitor...

System and method of verifying security best practices

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

31 Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

System and method of verifying security best practices

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

31 Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links