Standards compliance for computing data
First Claim
1. A computer-implemented method for providing and configuring and monitoring computing resources, comprising:
- receiving, by one or more configured computing server systems of a computer infrastructure services provider, a request from a user of the computer infrastructure services provider for an indicated quantity of virtual machines, and an identifier representing a set of one or more governmental regulatory requirements;
providing, by the computer infrastructure services provider in response to the request, multiple virtual machines of the indicated quantity using computers provided by the computer infrastructure services provider;
determining, by the one or more configured computing server systems and based at least in part on the received identifier, a plurality of configuration settings for the multiple virtual machines that comply with the set of one or more governmental regulatory requirements;
configuring, by the one or more configured computing server systems, the multiple virtual machines according to the determined plurality of configuration settings;
providing, by the computer infrastructure services provider and to the user, access to the configured multiple virtual machines;
detecting, by the one or more configured computing server systems and during operation of the configured multiple virtual machines, an event that occurs at one or more of the configured multiple virtual machines;
evaluating, by the one or more configured computing server systems and in response to the detected event, the detected event and the determined plurality of configuration settings for compliance with the one or more governmental regulatory requirements;
determining, by the one or more configured computing server systems and based at least in part on the evaluating, whether the user is compliant with the one or more governmental regulatory requirements; and
if the user is determined to be compliant, generating and transmitting, by the one or more configured computing server systems and to one or more other computer systems, compliance information for the user that is specific to the one or more governmental regulatory requirements, and otherwise taking, by the one or more configured computing server systems, an action to correct non-compliance of the user with the one or more governmental regulatory requirements.
1 Assignment
0 Petitions
Accused Products
Abstract
Systems and methods are provided for configuring and monitoring computing resources of an entity for compliance with one or more standards. In one implementation, a server receives one or more identifiers of one or more standards and determines a plurality of configuration settings for the computing resources of the entity, based on the received one or more identifiers. The plurality of configuration settings comply with the one or more standards. The computing resources of the entity are configured according to the plurality of configuration settings. The server detects an event related to the computing resources. The detected event and the plurality of configuration settings are evaluated for compliance with the one or more standards. A determination is made whether the entity is compliant with the one or more standards, based on the evaluation, and an action is taken, based on the determination.
62 Citations
29 Claims
-
1. A computer-implemented method for providing and configuring and monitoring computing resources, comprising:
-
receiving, by one or more configured computing server systems of a computer infrastructure services provider, a request from a user of the computer infrastructure services provider for an indicated quantity of virtual machines, and an identifier representing a set of one or more governmental regulatory requirements; providing, by the computer infrastructure services provider in response to the request, multiple virtual machines of the indicated quantity using computers provided by the computer infrastructure services provider; determining, by the one or more configured computing server systems and based at least in part on the received identifier, a plurality of configuration settings for the multiple virtual machines that comply with the set of one or more governmental regulatory requirements; configuring, by the one or more configured computing server systems, the multiple virtual machines according to the determined plurality of configuration settings; providing, by the computer infrastructure services provider and to the user, access to the configured multiple virtual machines; detecting, by the one or more configured computing server systems and during operation of the configured multiple virtual machines, an event that occurs at one or more of the configured multiple virtual machines; evaluating, by the one or more configured computing server systems and in response to the detected event, the detected event and the determined plurality of configuration settings for compliance with the one or more governmental regulatory requirements; determining, by the one or more configured computing server systems and based at least in part on the evaluating, whether the user is compliant with the one or more governmental regulatory requirements; and if the user is determined to be compliant, generating and transmitting, by the one or more configured computing server systems and to one or more other computer systems, compliance information for the user that is specific to the one or more governmental regulatory requirements, and otherwise taking, by the one or more configured computing server systems, an action to correct non-compliance of the user with the one or more governmental regulatory requirements. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A computer-implemented method comprising:
-
providing, by a server computer of a computer infrastructure services provider, and using a plurality of computers provided by the computer infrastructure services provider for use by multiple entities, multiple virtual machines of an indicated quantity for use by a user of the computer infrastructure services provider, and configuring the multiple virtual machines to comply with one or more governmental regulations for one or more standards that are identified based on a received identifier; detecting, by the server computer and during operation of the configured multiple virtual machines, an event involving one or more of the configured multiple virtual machines; evaluating, by the server computer, the detected event and a plurality of configuration settings of the configured multiple virtual machines for compliance with the one or more governmental regulations; determining, by the server computer and based at least in part on the evaluating, that whether the user is compliant with the one or more governmental regulations; and if the user is determined to be compliant, taking, by the server computer, a first action that includes transmitting to one or more other computer systems a certification that is specific to the one or more governmental regulations and that indicates the user is compliant, and otherwise taking, by the server computer, a second action to correct non-compliance of the user with the one or more governmental regulations. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27)
-
-
28. A system comprising:
-
a processor; and a memory storing program instructions that, when executed by the processor, configure a computing system of a computer infrastructure services provider to; provide, by using a plurality of computers provided by the computer infrastructure services provider for use by multiple entities, multiple virtual machines of an indicated quantity for use by a user of the computer infrastructure services provider, and configure the multiple virtual machines to comply with one or more regulatory requirements for one or more standards that are identified based on a received identifier; detect, during operation of the configured multiple virtual machines, an event involving one or more of the configured multiple virtual machines; evaluate the detected event and a plurality of configuration settings of the configured multiple virtual machines for compliance with the one or more regulatory requirements; determine, based at least in part on the evaluating, whether the user is compliant with the one or more regulatory requirements; and if the user is determined to be compliant, transmit, to one or more other computer systems, information based on the one or more governmental regulatory requirements that certifies the user is compliant with the one or more governmental regulatory requirements, and otherwise take an action to correct non-compliance of the user. - View Dependent Claims (29)
-
Specification