DETECTING AND REPORTING CHANGES ON NETWORKED COMPUTERS
First Claim
1. A method for centrally administering a network that includes a plurality of computing devices, to detect changes on the computing devices, comprising the steps of:
- (a) maintaining structured data for each of a plurality of different predefined types of entities, the structured data being updated from time-to-time, using data that are produced by a local agent running on each of the plurality of computing devices;
(b) using the structured data for detecting any new entities on any of the computing devices that are coupled to the network, where the new entities are entities that have recently been added to the computing devices since the structured data were last updated; and
(c) reporting the new entities as new unknown entities if not previously detected on any of the computing devices that are coupled to the network.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system detects changes to the computers on a computer network, and reports these changes in a simple and useful format. Two compatible components are used, including a Local Agent that runs locally on each computer, and a Digester that is run centrally by a system administrator. Changes in the system are detected and classified, and a report is produced that arranges data from several tables for different types of entities detected on the computers into a work order format for output to a text file. Any entities that are new and correspond to previously identified flagged exceptions are so identified, and any new unknown entities that were not previously found on a computer in the network are indicated so that they can be evaluated. Changes that may be undesirable can thus be readily identified for evaluation and possible removal before indicated by other third party sources.
42 Citations
29 Claims
-
1. A method for centrally administering a network that includes a plurality of computing devices, to detect changes on the computing devices, comprising the steps of:
-
(a) maintaining structured data for each of a plurality of different predefined types of entities, the structured data being updated from time-to-time, using data that are produced by a local agent running on each of the plurality of computing devices;
(b) using the structured data for detecting any new entities on any of the computing devices that are coupled to the network, where the new entities are entities that have recently been added to the computing devices since the structured data were last updated; and
(c) reporting the new entities as new unknown entities if not previously detected on any of the computing devices that are coupled to the network. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for detecting and reporting changes on a plurality of computing devices connected to a network, comprising the steps of:
-
(a) for each of the plurality of computing devices that is connected to the network, from time-to-time automatically;
(i) detecting any of a plurality of different predefined types of entities on the computing device; and
(ii) storing data identifying the different types of entities detected on the computing device, at a designated location accessible over the network, in association with an identification of the computing device; and
(b) at a central computing device, automatically periodically;
(i) updating and storing a data aggregation for each different predefined type of entity, wherein the data aggregation includes the data stored by the computing devices for that predefined type of entity; and
(ii) comparing the data aggregation for each different predefined type of entity to data for entities of that predefined type that have been previously detected on any computing device connected to the network, to identify any new unknown entities that have not been previously detected on any computing device connected to the network, and reporting to a user each computing device on which any new unknown entity was detected. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
-
-
25. A system for centrally administering a plurality of computing devices that are coupled to a network, to detect changes on the computing devices, comprising:
-
(a) a memory storing machine instructions and data produced by each of the computing devices;
(b) a network interface that enables communication with over the network; and
(c) a processor coupled to the network interface and the memory, the processor executing the machine instructions to carry out a plurality of functions, including;
(i) creating and maintaining structured data for each of a plurality of different predefined types of entities, the structured data being updated from time-to-time, using data that are produced by a local agent on each of the plurality of computing devices;
(ii) using the structured data for detecting any new entities on any of the computing devices that are coupled to the network, where the new entities are entities that have recently been added to the computing devices since the structured data were last updated; and
(iii) reporting the new entities as new unknown entities if not previously detected on any of the computing devices that are coupled to the network. - View Dependent Claims (26, 27, 28, 29)
-
Specification