Data structure for vulnerability-based remediation selection
First Claim
1. A machine-readable storage medium storing machine-readable instructions executable by a processor of a machine, the machine-readable instructions comprising instructions executable by the processor to implement variations of one remediation that is appropriate to a vulnerability which is present on an asset to be remediated, the machine-readable instructions executable by the processor to implement the variations of the one remediation by:
- arranging one or more machine-actionable records according to a data structure and representing variations of the one remediation differentiated by technology species, the data structure including links that respectively map between;
the one remediation, as represented in the data structure, and a plurality of T_ID fields, wherein the content of a T_ID field denotes an identification (ID) of a technology species (T),for each of the T_ID fields, a plurality of ACT_ID fields, wherein the content of an ACT_ID field denotes an ID of an action (ACT),wherein implementation of the one remediation upon the asset mitigates against the vulnerability present on the asset as a function of a T_ID of the asset to be remediated and at least one action respectively mapped to the one remediation selected as a function of the T_ID of the asset.
4 Assignments
0 Petitions
Accused Products
Abstract
A machine-actionable memory comprises one or more machine-actionable records arranged according to a data structure. Such a data structure may include links that respectively map between a remediation, at least one action, and at least two vulnerabilities. A method of selecting a remediation, that is appropriate to a vulnerability which is present on a machine to be remediated, may include: providing a machine-actionable memory as mentioned above; and indexing into the memory using: a given vulnerability identifier to determine (A) at least one of a remediation mapped thereto and (B) at least one action mapped to the given vulnerability identifier; and/or a given remediation to determine at least two vulnerabilities mapped thereto.
42 Citations
22 Claims
-
1. A machine-readable storage medium storing machine-readable instructions executable by a processor of a machine, the machine-readable instructions comprising instructions executable by the processor to implement variations of one remediation that is appropriate to a vulnerability which is present on an asset to be remediated, the machine-readable instructions executable by the processor to implement the variations of the one remediation by:
-
arranging one or more machine-actionable records according to a data structure and representing variations of the one remediation differentiated by technology species, the data structure including links that respectively map between; the one remediation, as represented in the data structure, and a plurality of T_ID fields, wherein the content of a T_ID field denotes an identification (ID) of a technology species (T), for each of the T_ID fields, a plurality of ACT_ID fields, wherein the content of an ACT_ID field denotes an ID of an action (ACT), wherein implementation of the one remediation upon the asset mitigates against the vulnerability present on the asset as a function of a T_ID of the asset to be remediated and at least one action respectively mapped to the one remediation selected as a function of the T_ID of the asset. - View Dependent Claims (2, 3, 4, 5, 6, 7, 10, 11, 12, 13, 14, 15, 16)
-
-
8. A method of selecting a remediation that is appropriate to a vulnerability which is present on a machine to be remediated, the method comprising:
-
providing a machine-actionable memory that includes one or more machine-actionable records arranged according to a data structure and representing variations of remediations differentiated by technology species, the data structure including links within the one or more machine-actionable records that respectively map between; one remediation and a plurality of T_ID fields, wherein the content of a T_ID field denotes an identification (ID) of a technology species (T), for each of the T_ID fields, a plurality of ACT_ID fields, wherein the content of an ACT_ID field denotes an ID of an action (ACT), wherein implementation of the one remediation upon an asset mitigates against a vulnerability, indexing into the memory to select at least one machine-actionable record using a given vulnerability identifier (V_ID) and a remediation mapped to the given vulnerability identifier of the at least one selected machine-actionable record to determine (A) at least one of a remediation mapped thereto and (B) at least one action mapped to the given vulnerability identifier, the at least one action selected as a function of a T_ID of the machine to be remediated; wherein the indexing into the memory and selecting the at least one machine-actionable record are performed according to an instruction set executed by a processor. - View Dependent Claims (9, 19, 20)
-
-
17. A machine-readable storage medium storing machine-readable instructions executable by a processor of a machine, the machine-readable instructions comprising instructions executable by the processor to select a remediation that is appropriate to a vulnerability which is present on an asset to be remediated, the machine-readable instructions executable by the processor to select the remediation by:
-
providing one or more machine-actionable records arranged according to a data structure and representing variations of remediations differentiated by technology species, the data structure including links within the one or more machine-actionable records that respectively map between; one remediation and a plurality of T_ID fields, wherein the content of a T_ID field denotes an identification (ID) of a technology species (T), for each of the T_ID fields, a plurality of ACT_ID fields, wherein the content of an ACT_ID field denotes an ID of an action (ACT), wherein implementation of the one remediation upon an asset mitigates against a vulnerability; indexing into the memory to select at least one machine-actionable record using a given vulnerability identifier (V_ID) and a technology species mapped to the given vulnerability identifier to determine (A) at least one of a remediation of the at least one selected machine-actionable record mapped thereto and (B) at least one action of the at least one selected machine-actionable record mapped to the given vulnerability identifier, the at least one action selected as a function of a T_ID of the asset to be remediated. - View Dependent Claims (18)
-
-
21. An apparatus for selecting a remediation that is appropriate to a vulnerability which is present on a machine to be remediated, comprising:
-
a processor; a machine-readable memory in communication with the processor, the machine-readable memory storing one or more machine-actionable records arranged according to a data structure and representing variations of remediations differentiated by technology species, the data structure including links within the one or more machine-actionable records that respectively map between; one remediation and a plurality of T_ID fields, wherein the content of a T_ID field denotes an identification (ID) of a technology species (T), and for each of the T_ID fields, a plurality of ACT_ID fields, wherein the content of an ACT_ID field denotes an ID of an action (ACT), wherein implementation of the one remediation upon an asset mitigates against a vulnerability, and means for indexing into the memory to select at least one machine-actionable record using a given vulnerability identifier (V_ID) and a technology species mapped to the given vulnerability identifier to determine (A) at least one of a remediation of the at least one selected machine-actionable record mapped thereto and (B) at least one action of the at least one selected machine-actionable record mapped to the given vulnerability identifier, the at least one action selected as a function of the T_ID of the asset to be remediated. - View Dependent Claims (22)
-
Specification