Server security schema

US 20070204346A1
Filed: 02/27/2006
Published: 08/30/2007
Est. Priority Date: 02/27/2006
Status: Active Grant

First Claim

Patent Images

1. A system that facilitates organizing server security-related information, comprising:

a server security schema configuration component that facilitates identification of expertise related to the server-related information; and

a server security schema component that groups the sever-related information into a plurality of server security-related categories associated with a server.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A server security schema that can incorporate server security-related expertise into an information model is provided. The novel server security schema component can be applied to an application server, a web server and/or a database server to converge knowledge into securing the server by identifying categories, vulnerabilities, threats, attacks and countermeasures. The novel schema can create a common framework that converges knowledge with respect to any server type. More particularly, the novel server security schema can address server categories including a share, a service, an account, an audit and log, a file and directory, a registry, a protocol, a port, and a patch and update category.

Citations

20 Claims

1. A system that facilitates organizing server security-related information, comprising:
- a server security schema configuration component that facilitates identification of expertise related to the server-related information; and
  
  a server security schema component that groups the sever-related information into a plurality of server security-related categories associated with a server.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The system of claim 1, each of the plurality of security-related categories identifies a vulnerability component, a threat/attack component and a countermeasure component.
  - 3. The system of claim 2, the plurality of security-related categories includes a share, a service, an account, an audit and log, a file and directory, a registry, a protocol, a port, and a patch and update category.
  - 4. The system of claim 2, the plurality of security-related categories includes at least one of an operating system category, a network category and a patch and update category.
  - 5. The system of claim 2, the plurality of security-related categories includes a share, a service, an account, an audit and log, a file and directory, and registry category.
  - 6. The system of claim 2, the plurality of security-related categories includes a protocol and a port category.
  - 7. The system of claim 2, the plurality of security-related categories includes a patch and update category.
  - 8. The system of claim 1, the server is a web server.
  - 9. The system of claim 1, the server is an application server.
  - 10. The system of claim 1, the server is a database server.
  - 11. The system of claim 1, further comprising an artificial intelligence (AI) component that facilitates identifying the expertise based at least in part upon a machine learning mechanism.

12. A computer-implemented method of modeling security of a server, comprising:
- identifying a server security category component related to the server; and
  
  incorporating the server security category component into a server security schema component that leverages security-related expertise.
- View Dependent Claims (13, 14, 15, 16, 17)
- - 13. The computer-implemented method of claim 12, further comprising:
    - identifying a vulnerability component related to the security category;
      
      identifying a threat/attack component related to the vulnerability component;
      
      identifying a countermeasure component related to the vulnerability component; and
      
      incorporating the vulnerability component, the threat/attack component and the countermeasure component into the server security schema component.
  - 14. The computer implemented method of claim 13, the server security category is at least one of a share, a service, an account, an audit and log, a file and directory, a registry, a protocol, a port, and a patch and update category.
  - 15. The computer-implemented method of claim 13, the server is a web server and the server security schema component is a web server security schema component.
  - 16. The computer-implemented method of claim 13, the server is an application server and the server security schema is an application server security schema component.
  - 17. The computer-implemented method of claim 13, the server is a database server and the server schema component is a database server security schema component.

18. A computer-executable system that facilitates organizing server security-related information into a schema, comprising:
- means for identifying a type of a server;
  
  means for identifying a plurality of security category components based at least in part upon the type;
  
  means for identifying a plurality of vulnerability components based at least in part upon the plurality of security category components;
  
  means for identifying a plurality of threat/attack components based at least in part upon the plurality of vulnerability components;
  
  means for identifying a plurality of countermeasure components based at least in part upon the plurality of threat/attack components; and
  
  means for incorporating a subset of the plurality of security category components, the vulnerability components, the threat/attack components and the countermeasure components into a server security schema.
- View Dependent Claims (19, 20)
- - 19. The computer-executable system of claim 18, the type is at least one of an application server, a web server and a database server.
  - 20. The computer-executable system of claim 19, the plurality of security category components includes at least one of a share, a service, an account, an audit and log, a file and directory, a registry, a protocol, a port, and a patch and update category.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Meier, John

Granted Patent

US 7,712,137 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/25
CPC Class Codes

H04L 63/1433 Vulnerability analysis

H04L 63/20 for managing network securi...

Server security schema

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Server security schema

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links