Method, Apparatus, and Program Product for Autonomic Patch Risk Assessment
First Claim
Patent Images
1. A method for automatic patch risk assessment, the method comprising:
- receiving a patch to be installed to upgrade an application on an endpoint device;
collecting activity information from a monitor of the endpoint device;
identifying a list of files that would be affected by the patch; and
determining a risk level for the patch based on the collected activity information and the list of files that would be affected by the patch.
0 Assignments
0 Petitions
Accused Products
Abstract
An automatic risk assessment system is provided that determines a risk for the patch based on collected activity metrics, file weights, a list of files affected by the patch, and other factors. An application monitor collects metrics from the application to determine the level of activity of the application or other component to be patched. The patch may have associated therewith metadata including a list of files that will be affected by the patch. Policies may store information about how risk is to be assessed. This information may include, for example, file weights and information defining categories of risk.
34 Citations
20 Claims
-
1. A method for automatic patch risk assessment, the method comprising:
-
receiving a patch to be installed to upgrade an application on an endpoint device; collecting activity information from a monitor of the endpoint device; identifying a list of files that would be affected by the patch; and determining a risk level for the patch based on the collected activity information and the list of files that would be affected by the patch. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. An automatic patch risk assessment system comprising:
-
a monitor that collects activity information for an endpoint device; and an analysis component that receives a patch to be installed to upgrade an application on the endpoint device, identifies a list of files that would be affected by the patch, and determines a risk level for the patch based on the collected activity information and the list of files that would be affected by the patch. - View Dependent Claims (10, 11, 12)
-
-
13. A computer program product comprising:
-
a computer usable medium having computer usable program code for automatic patch risk assessment, the computer program product including; computer usable code for receiving a patch to be installed to upgrade an application on an endpoint device; computer usable code for collecting activity information from a monitor of the endpoint device; computer usable code for identifying a list of files that would be affected by the patch; and computer usable code for determining a risk level for the patch based on the collected activity information and the list of files that would be affected by the patch. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
-
Specification