×

Secure configuration management system

  • US 10,805,154 B2
  • Filed: 10/16/2018
  • Issued: 10/13/2020
  • Est. Priority Date: 10/16/2018
  • Status: Active Grant
First Claim
Patent Images

1. A system to manage a secure configuration management strategy for an enterprise via an automated back-end configuration management computer server, comprising:

  • (a) a configuration benchmark data store including a plurality of secure configuration benchmarks;

    (b) a communication interface to facilitate an exchange of electronic messages, including messages exchanged via a distributed communication network, supporting interactive user interface displays at remote user devices; and

    (c) the back-end configuration management computer server, coupled to the configuration benchmark data store and the communication interface, programmed to;

    (i) retrieve one of the secure configuration benchmarks,(ii) provision, by an orchestration engine, an initial operating system software build in accordance with the retrieved secure configuration benchmark and an automation template,(iii) apply, by a provisioning tool, enterprise-specific modifications to the initial operating system software build to create an environment compliant with an enterprise standard benchmark,(iv) validate the enterprise standard benchmark via secure configuration and vulnerability checks,(v) apply at least one configuration update to the enterprise standard benchmark to create a software service instance,(vi) apply application code to the software service instance;

    (vii) label the software service instance with a build name according to a naming convention that includes an application build identifier, a version, current as of date information, a security modification identifier, a benchmark version, and a benchmark source;

    (viii) execute a reboot and refresh process; and

    (ix) execute a risk rank process to prioritize software remediation efforts by the enterprise based on said build name;

    wherein the retrieved secure configuration benchmark is associated with at least one of;

    a national institute of standards and technology checklist, and a department of defense security technical implementation guide.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×