SYSTEM AND METHOD FOR MAINTAINING SERVER DATA INTEGRITY

US 20160019122A1
Filed: 07/28/2014
Published: 01/21/2016
Est. Priority Date: 10/14/2002
Status: Active Grant

First Claim

Patent Images

1. A system comprising:

a repository interface operative to make a copy of an original object and to store the object copy in a safe object storage;

a monitor agent interface operative to monitor the original object to detect a change and send a notification to the repository interface when the change occurs; and

wherein said repository interface is further operative to receive the notification from the monitor agent interface, determine that the change to the original object was unauthorized, and restore the object copy from the safe object storage.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The System Integrity Guardian can protect any type of object and repairs and restores the system back to its original state of integrity. The Client component is the user interface for administering the System Integrity Guardian environment. An administrator can determine which servers to protect, which objects to protect, and what actions will be taken when an event that breaches integrity occurs. The Monitor Agent component is the watchdog of the System Integrity Guardian that captures and addresses any event that occurs on any object being protected. The Server component includes the server and the Protected Object Central Repository. The authoritative copies are maintained, digital signatures are created and stored, objects are validated, and communication between the three units is performed.

21 Citations

View as Search Results

20 Claims

1. A system comprising:
- a repository interface operative to make a copy of an original object and to store the object copy in a safe object storage;
  
  a monitor agent interface operative to monitor the original object to detect a change and send a notification to the repository interface when the change occurs; and
  
  wherein said repository interface is further operative to receive the notification from the monitor agent interface, determine that the change to the original object was unauthorized, and restore the object copy from the safe object storage.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The system of claim 1, wherein said repository interface determines that the change to the original object was unauthorized at least in part by comparing a digital signature of the object after the change with a digital signature of the object copy.
  - 3. The system of claim 1, wherein the repository interface is further operative to retain a copy of the changed object that can be reviewed after the object copy is restored from the safe object storage.
  - 4. The system of claim 1, wherein the repository interface is further operative to send a notification to a user indicating that the unauthorized change to the object occurred and that the object copy was automatically restored from the safe object storage.
  - 5. The system of claim 1, further comprising:
    - a client interface operative to allow a user to select the at least one object to indicate the object is to be protected.
  - 6. The system of claim 1, wherein the repository interface is further operative to provide retrieval of the object copy from the safe object storage and to restore the object copy to a new location.
  - 7. The system of claim 6, wherein the restoration to the new location is performed in a disaster recovery situation.

8. A method comprising:
- receiving a selection of at least one object to be protected;
  
  generating a baseline copy of the object and storing the baseline copy in a safe object storage;
  
  monitoring the object;
  
  detecting an unauthorized modification to the object;
  
  retrieving the baseline copy of the object from the safe object storage; and
  
  replacing the modified object with the baseline copy of the object.
- View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16, 17)
- - 9. The method of claim 8, wherein the baseline copy includes a digital signature of the object and a compressed snapshot of the object.
  - 10. The method of claim 8, wherein said detecting the unauthorized modification is determined at least in part by comparing a digital signature of the modified object with a digital signature of the baseline copy.
  - 11. The method of claim 8, wherein the object to be protected is a file residing on a server.
  - 12. The method of claim 8, wherein the object to be protected is a directory containing a plurality of files.
  - 13. The method of claim 8, wherein the object to be protected is a file residing on a device.
  - 14. The method of claim 13, wherein the device is a firewall.
  - 15. The method of claim 13, wherein the device is a router.
  - 16. The method of claim 8, further comprising:
    - sending a notification to a user to indicate that the unauthorized modification occurred and that the baseline copy was automatically restored.
  - 17. The method of claim 16, wherein the notification is sent by a communication mechanism selected from the group consisting of email, internal messaging, and web paging.

18. A method comprising:
- storing in a safe object storage a copy of a plurality of objects from at least one directory to be protected;
  
  detecting a modification to the directory;
  
  determining if the modification was made to one of the objects stored in the safe object storage, and if so, restoring the copy of the corresponding object from the safe object storage; and
  
  determining if the modification included adding a new file to the directory that is not stored in the safe object storage, and if so, deleting the added file from the directory.
- View Dependent Claims (19, 20)
- - 19. The method of claim 18, wherein the objects are files residing on a computer.
  - 20. The method of claim 18, wherein the objects are entries in a database and wherein the directory to be protected is the database.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Cimcor, Inc.
Original Assignee
Cimcor, Inc.
Inventors
Johnson, Robert E. III

Granted Patent

US 9,727,424 B2
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 11/00   Error detection; Error corr...

G06F 11/1456   Hardware arrangements for b...

G06F 11/1464   for networked environments

G06F 11/1469   Backup restoration techniques

G06F 11/3034   where the computing system ...

G06F 11/3055   Monitoring arrangements for...

G06F 11/3409   for performance assessment

G06F 21/00   Security arrangements for p...

G06F 2201/82   Solving problems relating t...

G06F 2201/84   Using snapshots, i.e. a log...

SYSTEM AND METHOD FOR MAINTAINING SERVER DATA INTEGRITY

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

21 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

SYSTEM AND METHOD FOR MAINTAINING SERVER DATA INTEGRITY

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

21 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links