Agentless Enforcement of Application Management through Virtualized Block I/O Redirection
First Claim
1. A computer implemented method for providing application management without installation of an agent at an operating system level, the method comprising the steps of:
- running a component outside of the operating system in an AMT environment;
utilizing AMT to examine the operating system for applications;
performing a security check on identified applications; and
responsive to determining that an identified application is not authorized, using AMT to redirect corresponding input/output requests to an alternative image.
2 Assignments
0 Petitions
Accused Products
Abstract
Application authorization management is provided without installation of an agent at an operating system level. A component runs outside of the operating system, in an AMT environment. AMT is utilized to examine the operating system for applications. Identified applications are checked against a whitelist or a blacklist. Responsive to determining that an identified application is not authorized, AMT is used to redirect input/output requests targeting the application to an alternative image, which can, for example, warn the user that the application is not authorized.
95 Citations
20 Claims
-
1. A computer implemented method for providing application management without installation of an agent at an operating system level, the method comprising the steps of:
-
running a component outside of the operating system in an AMT environment; utilizing AMT to examine the operating system for applications; performing a security check on identified applications; and responsive to determining that an identified application is not authorized, using AMT to redirect corresponding input/output requests to an alternative image. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. At least one computer readable medium containing a computer program product for providing application management without installation of an agent at an operating system level, the computer program product comprising:
-
program code for running a component outside of the operating system in an AMT environment; program code for utilizing AMT to examine the operating system for applications; program code for performing a security check on identified applications; and program code for responsive to determining that an identified application is not authorized, using AMT to redirect corresponding input/output requests to an alternative image. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A computer system for providing application management without installation of an agent at an operating system level, the computer system comprising:
-
means for running a component outside of the operating system in an AMT environment; means for utilizing AMT to examine the operating system for applications; means for performing a security check on identified applications; and means for responsive to determining that an identified application is not authorized, using AMT to redirect corresponding input/output requests to an alternative image. - View Dependent Claims (20)
-
Specification