Cloud-based security profiling, threat analysis and intelligence
First Claim
Patent Images
1. An apparatus for providing an automated notification regarding a software vulnerability, comprising:
- a processor; and
one or more stored sequences of instructions which, when executed by the processor, cause the processor to;
obtain software vulnerability information;
periodically scan at least one of a network application and a network server on which the network application runs for information about software associated with the network application and the network server, the network application and network server having an associated operator and operating within a cloud-based database system;
evaluate the periodic scans relative to the software vulnerability information to detect software vulnerabilities;
periodically scan the network application and the network server for new information about upgraded versions of the software associated with the network application and the network server;
store both the new information about the upgraded versions of the software and previous information for previous versions of the software used by the network application and the network server, the new information and the previous information including information for versions of the software with undetected and undisclsosed vulnerabilities;
periodically evaluate the new information and the previous information relative to the software vulnerability information to detect software vulnerabilities in both the upgraded and previous versions of the software; and
upon detection of a software vulnerability, automatically provide a notification message to the operator regarding the software vulnerability.
1 Assignment
0 Petitions
Accused Products
Abstract
An automated software vulnerability scanning and notification system and method provide an automated detection and notification regarding a software vulnerability. The operation of the system and the method includes obtaining software vulnerability information, periodically scanning a web application and a corresponding web server associated with an operator, and evaluating the periodic scans relative to the software vulnerability information to detect software vulnerabilities. Upon detection of a software vulnerability, a notification message is provided automatically to the operator regarding the software vulnerability.
183 Citations
17 Claims
-
1. An apparatus for providing an automated notification regarding a software vulnerability, comprising:
-
a processor; and one or more stored sequences of instructions which, when executed by the processor, cause the processor to; obtain software vulnerability information; periodically scan at least one of a network application and a network server on which the network application runs for information about software associated with the network application and the network server, the network application and network server having an associated operator and operating within a cloud-based database system; evaluate the periodic scans relative to the software vulnerability information to detect software vulnerabilities; periodically scan the network application and the network server for new information about upgraded versions of the software associated with the network application and the network server; store both the new information about the upgraded versions of the software and previous information for previous versions of the software used by the network application and the network server, the new information and the previous information including information for versions of the software with undetected and undisclsosed vulnerabilities; periodically evaluate the new information and the previous information relative to the software vulnerability information to detect software vulnerabilities in both the upgraded and previous versions of the software; and upon detection of a software vulnerability, automatically provide a notification message to the operator regarding the software vulnerability. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A non-transitory machine-readable medium carrying one or more sequences of instructions, when executed by one or more processors, cause the one or more processors to carry out the steps of:
-
obtaining software vulnerability information; periodically scanning a web application and a corresponding web server for information about types and versions of software associated with the web application and web server, wherein the web application and corresponding web server operate within a cloud-based database system; storing the information about the types and versions of the software associated with the web application and web server including types and versions of the software with undetected or undisclosed vulnerabilities; periodically scanning the web application and corresponding web server for new information about upgraded types and versions of the software associated with the web application and web server; storing both the new information about the upgraded types and versions of the software and previously stored information for previous types and versions of the software associated with the web application and web server; periodically evaluating the new information and the previously stored information relative to the software vulnerability information to detect software vulnerabilities in both the upgraded types and versions of the software and the previous types and versions of the software; and upon detection of a software vulnerability, automatically providing a notification message to an operator regarding the software vulnerability. - View Dependent Claims (8, 9, 10, 11)
-
-
12. A method for providing an automated notification regarding a software vulnerability, comprising:
-
obtaining software vulnerability information; periodically scanning a web application and a corresponding web server that operate within a cloud-based database system for information about types and versions of software associated with the web application and web server; periodically scanning the web application and corresponding web server for new information about upgraded types and versions of the software associated with the web application and web server; storing the scanned information about previous types and versions of the software associated with the web application and web server and the scanned information about the upgraded types and versions of the software associated with web application and web server including types and versions of the software with undetected or undisclosed vulnerabilities; periodically evaluating the stored information about the previous types and versions of the software and the upgraded types and versions of the software relative to the software vulnerability information to detect software vulnerabilities; and upon detection of a software vulnerability, automatically providing a notification message to an operator regarding the software vulnerability. - View Dependent Claims (13, 14, 15, 16, 17)
-
Specification