Determining technology-appropriate remediation for vulnerability
First Claim
1. A method of determining one or more technology-appropriate remediations for a common aspect of vulnerability, the method comprising:
- receiving one or more vulnerability identifications (VIDs) and descriptions thereof, respectively, that have a common aspect of vulnerability;
determining a remediation identification (RID) associated with the common aspect of vulnerability;
creating, based upon the one or more VIDs and the descriptions thereof, a machine-actionable map between the RID, one or more technology identifications (TIDs), and one or more action identifications (ACTIDs) for actions that remediate the common aspect of vulnerability represented by the RID, where the map is a representation of the remediation candidate.
4 Assignments
0 Petitions
Accused Products
Abstract
A machine-actionable memory comprises one or more machine-actionable records arranged according to a data structure. Such a data structure may include links that respectively map between: a RID field, the contents of which denote an identification (ID) of a remediation (RID); at least one TID field, the contents of which denotes an ID of at least two technologies (TIDs), respectively; and at least one ACTID field, the contents of which denotes an ID of an action (ACTID). A method, of selecting a remediation that is appropriate to a technology present on a machine to be remediated, may include: providing such a machine-actionable memory; and indexing into the memory using a given RID value and a given TID value to determine values of the at-least-one ACTID corresponding to the given RID value and appropriate to the given TID value.
-
Citations
37 Claims
-
1. A method of determining one or more technology-appropriate remediations for a common aspect of vulnerability, the method comprising:
-
receiving one or more vulnerability identifications (VIDs) and descriptions thereof, respectively, that have a common aspect of vulnerability;
determining a remediation identification (RID) associated with the common aspect of vulnerability;
creating, based upon the one or more VIDs and the descriptions thereof, a machine-actionable map between the RID, one or more technology identifications (TIDs), and one or more action identifications (ACTIDs) for actions that remediate the common aspect of vulnerability represented by the RID, where the map is a representation of the remediation candidate. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A machine-actionable memory comprising:
one or more machine-actionable records arranged according to a data structure, the data structure including links that respectively map between a RID field, the contents of which denote an identification (ID) of a remediation (RID);
at least one TID field, the contents of which denotes an ID of at least two technologies (TIDs), respectively; and
at least one ACTID field, the contents of which denotes an ID of an action (ACTID). - View Dependent Claims (18, 19, 20, 21, 22, 23, 26, 27, 28, 29, 30, 31, 32)
-
24. A method of selecting a remediation that is appropriate to a technology present on a machine to be remediated, the method comprising:
-
providing a machine-actionable memory that includes one or more machine-actionable records arranged according to a data structure, the data structure including links that respectively map between a RID field, the contents of which denote an identification (ID) of a remediation (RID), at least one TID field, the contents of which denotes an ID of at least two technologies (TIDs), respectively, and at least one ACTID field, the contents of which denotes an ID of an action (ACTID); and
indexing into the memory using a given RID value and a given TID value to determine values of the at-least-one ACTID corresponding to the given RID value and appropriate to the given TID value. - View Dependent Claims (25, 35, 36)
-
-
33. A machine-readable medium comprising instructions, execution of which by a machine selects a remediation that is appropriate to a technology present on a machine to be remediated, the machine-readable instructions including:
-
a first code segment to provide a machine-actionable memory that includes one or more machine-actionable records arranged according to a data structure, the data structure including links that respectively map between a RID field, the contents of which denote an identification (ID) of a remediation (RID), at least one TID field, the contents of which denotes an ID of at least two technologies (TIDs), respectively, and a second code segment to index into the memory using a given RID value and a given TID value to determine values of the at-least-one ACTID corresponding to the given RID value and appropriate to the given TID value. - View Dependent Claims (34)
-
-
37. An apparatus for selecting a remediation that is appropriate to a technology present on a machine to be remediated, the method comprising:
-
a machine-actionable memory that includes one or more machine-actionable records arranged according to a data structure, the data structure including links that respectively map between a RID field, the contents of which denote an identification (ID) of a remediation (RID), at least one TID field, the contents of which denotes an ID of at least two technologies (TIDs), respectively, and at least one ACTID field, the contents of which denotes an ID of an action (ACTID); and
means for indexing into the memory using a given RID value and a given TID value to determine values of the at-least-one ACTID corresponding to the given RID value and appropriate to the given TID value.
-
Specification