Enforcing compliance with a policy on a client
First Claim
Patent Images
1. A computer-implemented method in a gateway node device for enforcement of client computer policy compliance on a communication network, the method comprising the steps of:
- receiving, on the communication network, a data transmission from a client computer comprising status information, the status information associated with a configuration and operational status of the client computer and including hashed representations of the client computer configuration and operational status data of a license for at least one program installed on the client computer;
determining if a temporary policy for the client computer is active, the temporary policy generated for the data transmission;
responsive to a determination that the temporary policy for the client computer is active, permitting the data transmission to continue;
responsive to a determination that the temporary policy for the client computer is not active, determining whether the status information meets a criteria, the criteria determined through a matching of the hashed representations of the client computer configuration and operational status data of a license for at least one program installed on the client computer with desired hash values; and
responsive to a determination that the status information does not meet the criteria;
preventing the data transmission from continuing; and
sending, on the communication network, a message to the client computer indicating an invalid license for the at least one program installed on the client computer and providing information to network resources for remediation of the invalid license.
0 Assignments
0 Petitions
Accused Products
Abstract
A method and system for enforcing compliance with a policy on a client computer in communication with a network is disclosed. The method involves receiving a data transmission from the client computer on the network. The data transmission includes status information associated with the client computer. The data transmission is permitted to continue when the status information meets a criterion.
-
Citations
17 Claims
-
1. A computer-implemented method in a gateway node device for enforcement of client computer policy compliance on a communication network, the method comprising the steps of:
-
receiving, on the communication network, a data transmission from a client computer comprising status information, the status information associated with a configuration and operational status of the client computer and including hashed representations of the client computer configuration and operational status data of a license for at least one program installed on the client computer; determining if a temporary policy for the client computer is active, the temporary policy generated for the data transmission; responsive to a determination that the temporary policy for the client computer is active, permitting the data transmission to continue; responsive to a determination that the temporary policy for the client computer is not active, determining whether the status information meets a criteria, the criteria determined through a matching of the hashed representations of the client computer configuration and operational status data of a license for at least one program installed on the client computer with desired hash values; and responsive to a determination that the status information does not meet the criteria; preventing the data transmission from continuing; and sending, on the communication network, a message to the client computer indicating an invalid license for the at least one program installed on the client computer and providing information to network resources for remediation of the invalid license. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A non-transitory computer-readable medium storing computer instructions that, when executed by a processor, perform a method in a gateway node device for enforcement of client computer policy compliance on a communication network, the method comprising the steps of:
-
receiving, on the communication network, a data transmission from a client computer comprising status information, the status information associated with a configuration and operational status of the client computer and including hashed representations of the client computer configuration and operational status data of a license for at least one program installed on the client computer; determining if a temporary policy for the client computer is active; responsive to a determination that the temporary policy for the client computer is active, permitting the data transmission to continue; responsive to a determination that the temporary policy for the client computer is not active, determining whether the status information meets a criteria, the criteria determined through a matching of the hashed representations of the client computer configuration and operational status data of a license for at least one program installed on the client computer with desired hash values; and responsive to a determination that the status information does not meet the criteria; preventing the data transmission from continuing; and sending, on the communication network, a message to the client computer indicating an invalid license for the at least one program installed on the client computer and providing information to network resources for remediation of the invalid license. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A gateway node device for enforcement of client computer policy compliance on a communication network, the gateway node device comprising:
-
a processor; and a memory, the memory storing; a first module to receive, on the communication network, a data transmission from a client computer comprising status information, the status information associated with a configuration and operational status of the client computer and including hashed representations of the client computer configuration and operational status data of a license for at least one program installed on the client computer; a second module to, determine if a temporary policy for the client computer is active; a third module to, responsive to a determination that the temporary policy for the client computer is active, permit the data transmission to continue; a fourth module to, responsive to a determination that the temporary policy for the client computer is not active, determine whether the status information meets a criteria, the criteria determined through a matching of the hashed representations of the client computer configuration and operational status data of a license for at least one program installed on the client computer with desired hash values; and a fifth module to, responsive to a determination that the status information does not meet the criteria, prevent the data transmission to continue, and send, on the communication network, a message to the client computer indicating an invalid license for the at least one program installed on the client computer and providing information to network resources for remediation of the invalid license.
-
Specification