Secure Software Deployments
First Claim
1. A method, comprising:
- preparing a software package for installation on a host device of a networked environment;
publishing the software package to an installation portion of the networked environment;
storing the software package in the installation portion;
preparing a policy and deployment information associated with the software package;
publishing the policy and deployment information to the installation portion;
storing the policy and deployment information in the installation portion;
communicating the policy and deployment information during a periodic synchronization between the host device and the installation portion;
determining that the host device is intended to receive the software package based on the policy and deployment information communicated during the periodic synchronization; and
installing the software package on the host device.
2 Assignments
0 Petitions
Accused Products
Abstract
Techniques for secure software deployments are described. In one implementation, a software package is published to an installation portion of a networked environment and stored. Similarly, an applicability rule (or policy) associated with the software package is published to the installation portion and stored. During a periodic synchronization between a host device and the installation portion, the applicability rule is communicated, and a determination is made whether the host device is intended to receive the software package based on the applicability rule communicated during the periodic synchronization. If the applicability rule is satisfied, the software package is installed on the host device. In a further implementation, the software package may be installed on the host device via a communication channel that is normally designated for non-routine communications, such as security packet updates and other administrative functions.
-
Citations
20 Claims
-
1. A method, comprising:
-
preparing a software package for installation on a host device of a networked environment; publishing the software package to an installation portion of the networked environment; storing the software package in the installation portion; preparing a policy and deployment information associated with the software package; publishing the policy and deployment information to the installation portion; storing the policy and deployment information in the installation portion; communicating the policy and deployment information during a periodic synchronization between the host device and the installation portion; determining that the host device is intended to receive the software package based on the policy and deployment information communicated during the periodic synchronization; and installing the software package on the host device. - View Dependent Claims (2, 3, 4, 5, 6, 8, 9)
-
-
7. The method of claim 7, wherein installing the software package on the host device includes installing the software package via a communication channel that is designated for non-routine communications.
-
10. A method, comprising:
-
a publication portion that includes; publishing a software package to an installation portion of a networked environment; and publishing an applicability rule to the installation portion separately from the publication of the software package; a targeting portion that includes; storing the software package; and storing the applicability rule; and an installation portion that includes; performing a synchronization of one or more host devices with the installation portion, including communicating the applicability rule; determining whether one or more of the host devices satisfies the applicability rule, and presently does not have installed, the software package; and if the determination is satisfied for at least some of the host devices, installing the software package on the at least some of the host devices. - View Dependent Claims (11, 12, 13, 14, 15, 16)
-
-
17. One or more computer-readable media storing computer-executable instructions that, when executed, perform a method comprising:
-
publishing a software package to an installation portion of the networked environment; publishing a policy to the installation portion, the publishing of the policy being decoupled from the publishing of the software package; storing the software package and the policy in the installation portion; communicating the policy during a periodic synchronization between the installation portion and at least one host device; determining whether the at least one host device satisfies the policy communicated during the periodic synchronization; and if the policy is satisfied, installing the software package on the at least one host device. - View Dependent Claims (18, 19, 20)
-
Specification