System and method of monitoring and controlling application files
First Claim
1. A system for collecting program data for use in updating a monitoring system which controls programs operating on a workstation, comprising:
- a workstation having a database of categorized application programs along with one or more policies associated with each program, the workstation being configured for a user to request execution of a program;
a workstation management module coupled to the workstation and configured to detect the program requested by the user, determine whether the program is in the categorized application database, send the program and program data associated with the program to an application server module if the program is not in the categorized application database, and apply one or more policies that are associated with the program, wherein the one or more policies are received from the application server module;
an application server module coupled to the workstation and configured to receive the program data from the workstation management module if the program was not in the categorized application database at the workstation management module, determine whether the program was previously categorized at the application server module, if the program was not previously categorized at the application server module, then send the program data to an application database factory, if the program was previously categorized at the application server module, then provide the one or more policies associated with one or more categories that were previously associated with the program to the workstation management module.
19 Assignments
0 Petitions
Accused Products
Abstract
A system and method for updating a system that controls files executed on a workstation. The workstation includes a workstation management module configured to detect the launch of an application. A workstation application server receives data associated with the application from the workstation. This data can include a hash value. The application server module can determine one or more categories to associate with the application by referencing an application inventory database or requesting the category from an application database factory. The application database factory can receive applications from multiple application server modules. The application database factory determines whether the application was previously categorized by the application database factory and provides the category to the application server module. Once the application server module has the category, it forwards a hash/policy table to the workstation management module. Upon receipt of the hash/policy table, the workstation management module applies the policy that is associated with the launched application to control access to the application on the workstation.
180 Citations
60 Claims
-
1. A system for collecting program data for use in updating a monitoring system which controls programs operating on a workstation, comprising:
-
a workstation having a database of categorized application programs along with one or more policies associated with each program, the workstation being configured for a user to request execution of a program;
a workstation management module coupled to the workstation and configured to detect the program requested by the user, determine whether the program is in the categorized application database, send the program and program data associated with the program to an application server module if the program is not in the categorized application database, and apply one or more policies that are associated with the program, wherein the one or more policies are received from the application server module;
an application server module coupled to the workstation and configured to receive the program data from the workstation management module if the program was not in the categorized application database at the workstation management module, determine whether the program was previously categorized at the application server module, if the program was not previously categorized at the application server module, then send the program data to an application database factory, if the program was previously categorized at the application server module, then provide the one or more policies associated with one or more categories that were previously associated with the program to the workstation management module. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
-
-
23. A method of updating a system which controls operation of programs on a workstation, the method comprising:
-
detecting a launch of an application on the workstation;
generating an application digest for the launched application;
determining whether the application is categorized, wherein a categorized application is associated with one or more policies;
if the application is categorized, then applying the one or more policies that are associated with the application;
if the application is not categorized, then posting the application to a logging database;
uploading the logging database to an application server module;
determining whether the application is in an application inventory database of categorized applications, wherein a categorized application is associated with one or more categories; and
if the application is not in the application inventory database of the application server module, then posting the application to an uncategorized application database, if the application is in the application inventory database, then applying one or more policies associated with the application. - View Dependent Claims (24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36)
-
-
37. A method of collecting collection data for use in updating a system which controls execution of programs on a workstation, the method comprising:
-
launching a program at the workstation;
determining whether the program is stored in a table;
if the program is stored, applying a first rule that is associated with the program; and
if the program is not stored, posting the program to a database. - View Dependent Claims (38)
-
-
39. A method of processing and uploading identifiers for use in updating an application control system which determines if a program can run on a workstation, the method comprising:
-
requesting a download of identifiers and their associated categories from an application database factory;
determining whether at least one identifier from a database of identifiers are to be uploaded to the application database factory;
if the at least one identifier is to be uploaded to the application database factory, retrieving the at least one identifier from the database of identifiers; and
uploading the at least one identifier to the application database factory. - View Dependent Claims (40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53)
-
-
54. A method of updating a system which controls operation of programs on a workstation, the method comprising:
-
detecting a launch of an application on the workstation;
generating a hash value for the launched application;
comparing the generated hash value to one or more hash values in a hash/policy table that includes one or more policies associated with the one or more hash values;
if the generated hash value matches one or more of the hash values in the hash/policy table, then applying the one or more policies that are associated with the one or more hash values;
if the generated hash value does not match one or more hash values in the hash/policy table, then posting the application to a logging database;
uploading the logging database to an application server module;
determining whether the application from the logging database is in an application inventory database; and
if the application is not in the application inventory database, then posting the application to an uncategorized application database. - View Dependent Claims (55, 56)
-
-
57. A method of controlling applications on a computer, the method comprising:
-
identifying an application on the computer;
determining whether the application is in a database; and
if the application is in the database, then applying one or more predetermined policies that are associated with the application. - View Dependent Claims (58)
-
-
59. A method of controlling applications on a workstation, the method comprising:
-
detecting a running application on a workstation;
determining whether the running application is in a database; and
if the running application is not in the database, then storing the running application to the database. - View Dependent Claims (60)
-
Specification