Scanning machine images to identify potential risks
First Claim
Patent Images
1. A non-transitory computer-readable storage medium having computer-executable instructions stored thereupon which, when executed by a computer, cause the computer to:
- receive a request at a scanning service to scan machine images stored within a service provider network, wherein the scanning service is implemented within the service provider network, wherein the request does not explicitly identify which machine images to scan but the request includes a criteria used to identify machine images to scan based at least in part on machine image content;
determine content of the machine images;
identify a machine image to be scanned from the machine images based at least in part on the criteria and the machine image content;
identify scans to perform on the machine image based, at least in part, on the machine image content, wherein the scans include a first scan and a second scan;
cause the machine image to be scanned using the first scan and the second scan utilizing one or more computing devices provided by the scanning service;
record scan data associated with the first scan of the machine image and the second scan of the machine image; and
provide, from the scanning service, scan results based, at least in part, on the scan data in response to the request.
1 Assignment
0 Petitions
Accused Products
Abstract
Technologies are described herein for scanning machine images using a scanning service to identify potential risks. The scanning service may be associated with a service provider network. A scan request is received at the scanning service that requests machine images to be scanned. One or more scans may be performed on each of the machine images. An execution environment may host a machine image during a scan of the machine image. Scan result data associated with the scans is stored. The scan result data may be used to provide scan results to the requestor.
34 Citations
20 Claims
-
1. A non-transitory computer-readable storage medium having computer-executable instructions stored thereupon which, when executed by a computer, cause the computer to:
-
receive a request at a scanning service to scan machine images stored within a service provider network, wherein the scanning service is implemented within the service provider network, wherein the request does not explicitly identify which machine images to scan but the request includes a criteria used to identify machine images to scan based at least in part on machine image content; determine content of the machine images; identify a machine image to be scanned from the machine images based at least in part on the criteria and the machine image content; identify scans to perform on the machine image based, at least in part, on the machine image content, wherein the scans include a first scan and a second scan; cause the machine image to be scanned using the first scan and the second scan utilizing one or more computing devices provided by the scanning service; record scan data associated with the first scan of the machine image and the second scan of the machine image; and provide, from the scanning service, scan results based, at least in part, on the scan data in response to the request. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A system for scanning machine images, the system comprising:
one or more computing devices within a service provider network that are configured to provide a scanning service, the scanning service configured to receive a scan request to scan a plurality of machine images, wherein the scan request does not explicitly identify which of the plurality of machine images to scan but the scan request includes a criteria used to identify one or more machine images to scan based at least in part on machine image content; identify a machine image of the plurality of machine images to scan based, at least in part, on the machine image content and a search of an index comprising information about the plurality of machine images; identify scans to perform on the machine image based, at least in part, on the machine image content, wherein the scans include a first scan and a second scan; cause the machine image to be scanned using the first scan and the second scan based, at least in part, on content of the machine image; obtain scan result data associated with the scanning of the machine image; and store the scan result data in response to the request. - View Dependent Claims (8, 9, 10, 11, 12, 13, 14, 15)
-
16. A computer-implemented method, comprising:
-
receiving a scan request at a scanning service that is implemented within a service provider network, wherein the scan request does not explicitly identify machine images to scan but the scan request includes a criteria used to identify one or more machine images to scan based at least in part on machine image content; identifying a first machine image to be scanned from the machine images based at least in part on the criteria and the machine image content; identifying a first scan to perform on the first machine image and a second scan to perform on the first machine image based, at least in part, on the machine image content; causing the first scan to be performed by the scanning service on the first machine image; causing the second scan to be performed by the scanning service on the first machine image, wherein the first scan is performed substantially contemporaneously with the second scan; obtaining scan data associated with the first scan of the first machine image and the second scan of the first machine image; and storing the scan data in response to the request. - View Dependent Claims (17, 18, 19, 20)
-
Specification