×

Method, apparatus, signals and medium for enforcing compliance with a policy on a client computer

  • US 8,935,416 B2
  • Filed: 04/21/2006
  • Issued: 01/13/2015
  • Est. Priority Date: 04/21/2006
  • Status: Active Grant
First Claim
Patent Images

1. A method for enforcing compliance with a policy on a client computer in communication with a network, the method comprising:

  • receiving a data transmission from the client computer on the network, said data transmission including status information associated with a configuration and operational status of the client computer, the status information including hashed representations of client computer configuration and operational status data, the status information including a plurality of information comprising;

    an indication of whether a client security program is running on the client computer;

    version information associated with the client security program installed on the client computer;

    configuration information associated with the client security information installed on the client computer; and

    version information associated with an intrusion protection system (IPS) signature database stored on the client computer;

    determining a temporary policy for the client computer is active, permitting said data transmission to continue;

    when a temporary policy for the client computer does not exist, generating a new temporary policy for the client computer and permitting said data transmission to continue when said status information meets a criterion as determined through a matching of the hashed representations of the client computer configuration and operational status data with desired hash values, said new temporary policy including information identifying the client computer and wherein subsequent data transmissions from the client computer are permitted to continue without reading status information included in said subsequent data transmissions, while said new temporary policy exists; and

    wherein;

    the data transmission includes a request; and

    permitting the data transmission to continue includes forwarding the data transmission for processing of the request.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×