Policy-based selection of remediation
DCFirst Claim
1. A method of automatically determining one or more remediations for a device that includes a processor, the method comprising:
- receiving values of a plurality of parameters which collectively characterize an operational state of the device, there being at least one policy associated with at least a given one of the plurality of parameters, the at-least-one policy defining as a condition thereof one or more potential values of, or based upon, the given parameter, violation of the condition potentially being indicative of unauthorized activity or manipulation of the device;
automatically determining, from the received parameter values, whether the conditions for any policies are violated, respectively;
automatically selecting one or more remediations for the device according to the violated policies, respectively; and
deploying the one or more selected remediations to the device, wherein the deploying of the one or more selected remediations includes automatically mapping the one or more selected remediations to one or more actions the execution of which carries out the one or more selected remediations, respectively.
7 Assignments
Litigations
0 Petitions
Accused Products
Abstract
A method, of automatically determining one or more remediations for a device that includes a processor, may include: receiving values of a plurality of parameters which collectively characterize an operational state of the device, there being at least one policy associated with at least a given one of the plurality of parameters, policy defining as a condition thereof one or more potential values of, or based upon, the given parameter, satisfaction of the condition potentially being indicative of unauthorized activity or manipulation of the device; automatically determining, from the received parameter values, whether the conditions for any policies are satisfied, respectively; and automatically selecting one or more remediations for the device according to the satisfied policies, respectively.
-
Citations
38 Claims
-
1. A method of automatically determining one or more remediations for a device that includes a processor, the method comprising:
-
receiving values of a plurality of parameters which collectively characterize an operational state of the device, there being at least one policy associated with at least a given one of the plurality of parameters, the at-least-one policy defining as a condition thereof one or more potential values of, or based upon, the given parameter, violation of the condition potentially being indicative of unauthorized activity or manipulation of the device; automatically determining, from the received parameter values, whether the conditions for any policies are violated, respectively; automatically selecting one or more remediations for the device according to the violated policies, respectively; and deploying the one or more selected remediations to the device, wherein the deploying of the one or more selected remediations includes automatically mapping the one or more selected remediations to one or more actions the execution of which carries out the one or more selected remediations, respectively. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25)
-
-
26. A machine-readable medium comprising instructions, execution of which by a machine determines one or more remediations for a device that includes a processor, the machine-readable instructions including:
-
a first code segment to receive values of a plurality of parameters which collectively characterize an operational state of the device, there being at least one policy associated with at least a given one of the plurality of parameters, policy defining as a condition thereof one or more potential values of, or based upon, the given parameter, violation of the condition potentially being indicative of unauthorized activity or manipulation of the device; a second code segment to automatically determine, from the received parameter values, whether the conditions for any policies are violated, respectively; a third code segment to automatically select one or more remediations for the device according to the violated policies, respectively; and a fourth code segment to automatically create, for each violated policy, a machine-actionable map between the policy, the corresponding one or more selected remediations and the device. - View Dependent Claims (27, 28, 29, 30, 31, 32, 33, 34, 35, 36)
-
-
37. An apparatus for determining one or more remediations for a device that includes a processor, the apparatus comprising:
-
means for receiving values of a plurality of parameters which collectively characterize an operational state of the device, there being at least one policy associated with at least a given one of the plurality of parameters, policy defining as a condition thereof one or more potential values of, or based upon, the given parameter, violation of the condition potentially being indicative of unauthorized activity or manipulation of the device; means for automatically determining, from the received parameter values, whether the conditions for any policies are violated, respectively; and means for automatically selecting one or more remediations for the device according to the violated policies, respectively and means for deploying the one or more selected remediations to the device, wherein the deploying of the one or more selected remediations includes automatically mapping the one or more selected remediations to one or more actions the execution of which carries out the one or more selected remediations, respectively. - View Dependent Claims (38)
-
Specification