System and method for providing remediation management
First Claim
1. A system for managing remediations for a plurality of assets in an enterprise network, the system comprising:
- a remediation server configured to;
receive asset information from at least one asset to be protected from the plurality of assets, the asset information including information associated with configuration settings of the at least one asset to be protected and information associated with one or more components of the at least one asset to be protected;
generate an asset profile for the at least one asset to be protected, the asset profile including at least the received asset information for the at least one asset to be protected;
transmit, to a content management server, a content request for content associated with one or more vulnerabilities of the plurality of assets in the enterprise network, wherein the content associated with the one or more vulnerabilities of the plurality of assets in the enterprise network is retrieved from one or more of a plurality of content providers that are external to the enterprise network;
in response to the content request, receive, from the content management server, the content associated with the one or more vulnerabilities of the plurality of assets in the enterprise network;
identify one or more vulnerabilities of the at least one asset to be protected by comparing the received asset information in the asset profile of the at least one asset to be protected to the received content from the content management server;
identify one or more remediations for at least one of the identified one or more vulnerabilities of the at least one asset to be protected, wherein each of the one or more remediations includes at least particular content of the received content associated with the one or more vulnerabilities of the plurality of assets in the enterprise network, wherein the particular content is associated with an identified vulnerability of the at least one asset to be protected, and wherein the particular content is operable to remediate the at least one vulnerability; and
generate a remediation task list associated with the at least one asset to be protected, the remediation task list including the one or more identified remediations.
2 Assignments
0 Petitions
Accused Products
Abstract
In one embodiment, software for remediation management is operable to automatically identify an asset in an enterprise network. One or more vulnerabilities of the identified asset is automatically identified based on comparing the identified asset to content associated with the one or more vulnerabilities. At least a portion of the content is collected from a plurality of third party content providers. Other example software for remediation management may be operable to identify one or more vulnerabilities of an asset based on comparing the asset to content associated with the one or more vulnerabilities and automatically generate remediations for the asset based on the content associated with the one or more vulnerabilities.
-
Citations
34 Claims
-
1. A system for managing remediations for a plurality of assets in an enterprise network, the system comprising:
a remediation server configured to; receive asset information from at least one asset to be protected from the plurality of assets, the asset information including information associated with configuration settings of the at least one asset to be protected and information associated with one or more components of the at least one asset to be protected; generate an asset profile for the at least one asset to be protected, the asset profile including at least the received asset information for the at least one asset to be protected; transmit, to a content management server, a content request for content associated with one or more vulnerabilities of the plurality of assets in the enterprise network, wherein the content associated with the one or more vulnerabilities of the plurality of assets in the enterprise network is retrieved from one or more of a plurality of content providers that are external to the enterprise network; in response to the content request, receive, from the content management server, the content associated with the one or more vulnerabilities of the plurality of assets in the enterprise network; identify one or more vulnerabilities of the at least one asset to be protected by comparing the received asset information in the asset profile of the at least one asset to be protected to the received content from the content management server; identify one or more remediations for at least one of the identified one or more vulnerabilities of the at least one asset to be protected, wherein each of the one or more remediations includes at least particular content of the received content associated with the one or more vulnerabilities of the plurality of assets in the enterprise network, wherein the particular content is associated with an identified vulnerability of the at least one asset to be protected, and wherein the particular content is operable to remediate the at least one vulnerability; and generate a remediation task list associated with the at least one asset to be protected, the remediation task list including the one or more identified remediations. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 34)
-
12. An article of manufacture comprising a computer readable storage medium, the computer readable storage medium comprising software for remediation management, the software operable to:
-
transmit, by a remediation server to a content management server, a content request for content associated with one or more vulnerabilities of a plurality of assets in an enterprise network, wherein the content associated with the one or more vulnerabilities of the plurality of assets is retrieved from a plurality of content providers that are external to the enterprise network; in response to the content request, receive at the remediation server from the content management server, the content associated with the one or more vulnerabilities of the plurality of assets in the enterprise network; identify, at the remediation server, one or more vulnerabilities of at least one asset to be protected from the plurality of assets based on comparing an asset profile of the at least one asset to be protected to the received content from the content management server, the asset profile comprising asset information that includes information associated with configuration settings and information associated with one or more components of the at least one asset to be protected, the at least one asset to be protected communicably coupled to the enterprise network; identify, at the remediation server, one or more remediations for at least one of the identified one or more vulnerabilities of the at least one asset to be protected, wherein each of the one or more remediations includes at least particular content of the received content associated with the one or more vulnerabilities of the plurality of assets in the enterprise network, wherein the particular content is associated with an identified vulnerability of the at least one asset to be protected, and wherein the particular content is operable to remediate the identified vulnerability; generate, at the remediation server, a remediation task list associated with the at least one asset to be protected, the remediation task list including the one or more identified remediations; and communicate, from the remediation server, the identified remediations to the at least one asset to be protected. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 33)
-
-
23. A method for remediation management, the method comprising:
-
transmitting, by a remediation server to a content management server, a content request for content associated with one or more vulnerabilities of a plurality of assets in an enterprise network, wherein the content associated with the one or more vulnerabilities of the plurality of assets is retrieved from a plurality of content providers that are external to the enterprise network; in response to the content request, receiving at the remediation server from the content management server, the content associated with the one or more vulnerabilities of the plurality of assets in the enterprise network; identifying, at the remediation server, one or more vulnerabilities of at least one asset to be protected from the plurality of assets based on comparing an asset profile of the at least one asset to be protected to the received content from the content management server, the asset profile comprising asset information that includes information associated with configuration settings and information associated with one or more components of the at least one asset to be protected, the at least one asset to be protected communicably coupled to an enterprise network; identifying, at the remediation server, one or more remediations for at least one of the identified one or more vulnerabilities of the at least one asset to be protected, wherein each of the one or more remediations includes at least particular content of the received content associated with the one or more vulnerabilities of the of assets in the enterprise network, wherein the particular content is associated with an identified vulnerability of the at least one asset to be protected, and wherein the particular content is operable to remediate the identified vulnerability; generating at the remediation server, a remediation task list associated with the at least one asset to be protected, the remediation task list including the one or more identified remediations; and communicating, from the remediation server, the identified remediations to the at least one asset to be protected. - View Dependent Claims (24, 25, 26, 27, 28, 29, 30, 31, 32)
-
Specification