Method and system for providing an external trusted agent for one or more computer systems

US 20050091494A1
Filed: 10/23/2003
Published: 04/28/2005
Est. Priority Date: 10/23/2003
Status: Abandoned Application

First Claim

Patent Images

1. A monitor that monitors the security state of a remote computer system, the monitor comprising:

a computing device;

a communications medium interconnecting the computing device with the remote computer system;

a pair of data-storage media each containing a sequence of encryption keys, one data-storage medium local to the monitor, and the other data-storage medium local to the remote computer system; and

a program, running on the computing device, that exchanges with the remote computer system, over the communications medium, messages encrypted using one or more encryption keys extracted from the data-storage medium local to the computer system in order to monitor the security state of the computer system.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An external personal computer or other computing device is employed as an external security-state monitor to monitor the security state of one or more computer systems. The security-state monitor creates pairs of write-once CDs containing an identical sequence of encryption keys. One CD of a pair remains with the security-state monitor, and the other CD of the pair is provided to the system administrator of a computer system. Keys are employed by the security-state monitor and computer system one time only, and the current key employed can be specified by an index into the sequence of keys stored on the duplicate CDs. When the computer system carries out an initial boot into a secure state, the computer system informs the security-state monitor using the current key from the computer system'"'"'s CD. The security-state monitor accordingly determines that the computer system is currently secure. Prior to loading the executing the first untrusted software, the secure software executing on the computer system sends a message to the security-state monitor indicating that the computer system is transitioning to an insecure state.

Citations

18 Claims

1. A monitor that monitors the security state of a remote computer system, the monitor comprising:
- a computing device;
  
  a communications medium interconnecting the computing device with the remote computer system;
  
  a pair of data-storage media each containing a sequence of encryption keys, one data-storage medium local to the monitor, and the other data-storage medium local to the remote computer system; and
  
  a program, running on the computing device, that exchanges with the remote computer system, over the communications medium, messages encrypted using one or more encryption keys extracted from the data-storage medium local to the computer system in order to monitor the security state of the computer system.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The monitor of claim 1 wherein, following power on or reset of the computer system, while the computer system is in a relatively high-security state, the computer system sends an initial-authentication message to the monitor, encrypted with a next key extracted from the data-storage medium local to the computer system.
  - 3. The monitor of claim 2 wherein the monitor receives the initial-authentication message, decrypts the initial-authentication message using a next key extracted from the data-storage medium local to the monitor, and stores an indication that the computer system is in a relatively high-security state.
  - 4. The monitor of claim 2 wherein the computer collects security metrics and includes the security metrics in the initial-authentication message.
  - 5. The monitor of claim 4 wherein the monitor receives the initial-authentication message and extracts the security metrics in order to determine the security state of the computer system.
  - 6. The monitor of claim 1 wherein, while the computer system is in a relatively high-security state, prior to loading and/or executing an untrusted software program into memory, the computer system sends a going-insecure message to the monitor, encrypted with a current key extracted from the data-storage medium local to the computer system.
  - 7. The monitor of claim 1 wherein the monitor receives the going-insecure message, decrypts the initial-authentication message using a current key extracted from the data-storage medium local to the monitor, and stores an indication that the computer system is in a relatively low-security state.
  - 8. The monitor of claim 1 wherein the data-storage media both contain identical sequences of encryption keys, and each of the data-storage media are one of:
    - a compact disc;
      
      a DVD disc;
      
      an electronic memory; and
      
      a magnetic disk.

9. A method for monitoring and reporting the security state of a remote computer system, the method comprising:
- providing a monitor computing device interconnected with the remote computer system by a communications medium;
  
  providing a pair of data-storage media, each containing a sequence of encryption keys, one data-storage medium local to the monitor computing device, and the other data-storage medium local to the remote computer system; and
  
  receiving messages from the remote computer system over the communications medium by the monitor and storing an indication, by the monitor, of the security state of the computer system determined by the monitor from the received messages.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17, 18)
- - 10. The method of claim 9 further including receiving, by the monitor, a request for information about the security state of the computer system, and replying with a security-status-inquiry-response message by the monitor based on a determined security state of the computer system.
  - 11. The method of claim 9 further including, following power on or reset of the computer system, while the computer system is in a relatively high-security state, sending, by the computer system, an initial-authentication message to the monitor, encrypted with a next key extracted from the data-storage medium local to the computer system.
  - 12. The method of claim 11 further including receiving, by the monitor, the initial-authentication message, decrypting the initial-authentication message using a next key extracted from the data-storage medium local to the monitor, and storing an indication that the computer system is in a relatively high-security state.
  - 13. The method of claim 11 further including collecting, by the computer system, security metrics and including the security metrics in the initial-authentication message.
  - 14. The method of claim 13 further including receiving, by the monitor, the initial-authentication message and extracting the security metrics in order to determine the security state of the computer system.
  - 15. The method of claim 9 further including sending, by the computer system, a going-insecure message to the monitor, encrypted with a current key extracted from the data-storage medium local to the computer system, while the computer system is in a relatively high-security state, prior to loading and/or executing an untrusted software program into memory.
  - 16. The method of claim 15 further including receiving, by the monitor, the going-insecure message, decrypting the going-insecure message using a current key extracted from the data-storage medium local to the monitor, and storing an indication that the computer system is in a relatively low-security state.
  - 17. Computer instructions implementing the method of claim 9 encoded in a computer-readable medium.
  - 18. A monitor that monitors the security state of a computer system by the method of claim 9.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Chris D. Hyser
Original Assignee
Chris D. Hyser
Inventors
Hyser, Chris D.

Application Number

US10/693,182
Publication Number

US 20050091494A1
Time in Patent Office

Days
Field of Search
US Class Current

713/171
CPC Class Codes

G06F 21/52 during program execution, e...

G06F 21/57 Certifying or maintaining t...

Method and system for providing an external trusted agent for one or more computer systems

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for providing an external trusted agent for one or more computer systems

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links