Scan Engine Manager with Updates

US 20110072514A1
Filed: 11/06/2009
Published: 03/24/2011
Est. Priority Date: 09/23/2009
Status: Abandoned Application

First Claim

Patent Images

1. A scan management system operable on a computer system comprising a processor, said scan management system comprising:

a data stream interceptor associated with a data stream within a workload, said data stream interceptor capable of passing contents of said data stream to a scan engine, said scan engines being capable of scanning said contents of said data stream;

a first catalog comprising metadata identifying a plurality of said scan engines and further identifying at least one data stream type to which said scan engine may be associated; and

a scan manager configured to receive a policy and said catalog and to determine configuration settings for each of said data stream interceptors, said configuration settings comprising assigning at least one of said scan engines to each of said data streams.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A scan management system may configure various workloads and data streams within those workloads to be directed to various scan engines. The scan management system may be updatable and configurable by receiving a catalog of available scan engines and configuring the workloads and scan engines according to a policy that may be locally created and managed. The scan management system may be capable of reconfiguring the scan engines, including upgrading, adding, deprecating, and changing scan engines while being fully operational. In some cases, a single data stream may be scanned by two or more different scan engines, and a single scan engine may be used to scan two or more different data streams.

27 Citations

View as Search Results

20 Claims

1. A scan management system operable on a computer system comprising a processor, said scan management system comprising:
- a data stream interceptor associated with a data stream within a workload, said data stream interceptor capable of passing contents of said data stream to a scan engine, said scan engines being capable of scanning said contents of said data stream;
  
  a first catalog comprising metadata identifying a plurality of said scan engines and further identifying at least one data stream type to which said scan engine may be associated; and
  
  a scan manager configured to receive a policy and said catalog and to determine configuration settings for each of said data stream interceptors, said configuration settings comprising assigning at least one of said scan engines to each of said data streams.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. The scan management system of claim 1, said policy defining a first type of scan to be performed on a first type of data stream, said scan manager further configured to:
    - select a first scan engine corresponding to said first type of scan from said catalog;
      
      select a first data stream corresponding to said first type of data stream; and
      
      cause said first scan engine to receive contents from said first data stream.
  - 3. The scan management system of claim 2, said scan manager further configured to:
    - receive an updated catalog;
      
      determine differences between said first catalog and said updated catalog;
      
      determine that said first scan engine is replaced by a second scan engine;
      
      cause said second scan engine to receive contents from said first data stream; and
      
      cause said first scan engine to not receive said contents when said second scan engine is receiving said contents.
  - 4. The scan management system of claim 2, said scan manager further configured to:
    - receive an updated catalog;
      
      determine differences between said first catalog and said updated catalog;
      
      determine that said first scan engine is replaced by an updated version of said first scan engine in said updated catalog;
      
      cause said updated version of said first scan engine to be installed;
      
      cause said updated version of said first scan engine to receive contents from said first data stream; and
      
      cause said first scan engine to not receive said contents when said second scan engine is receiving said contents.
  - 5. The scan management system of claim 2, said first scan engine being further configured to receive contents from a second data stream.
  - 6. The scan management system of claim 1, said policy defining a first type of scan to be performed on a first type of data stream, said scan manager further configured to:
    - select a first scan engine corresponding to said first type of scan from said catalog;
      
      select a second scan engine corresponding to said first type of scan from said catalog;
      
      select a first data stream corresponding to said first type of data stream; and
      
      cause said first scan engine and said second scan engine to receive contents from said first data stream.
  - 7. The scan management system of claim 6, said first scan engine and said second scan engine receiving said contents in serial.
  - 8. The scan management system of claim 1, said policy defining a first type of scan to be performed on a first type of data stream, said scan manager further configured to:
    - select a first scan engine corresponding to said first type of scan from said catalog;
      
      select a first data stream corresponding to said first type of data stream;
      
      select a second data stream corresponding to said first type of data stream; and
      
      cause said first scan engine to receive contents from said first data stream and said second data stream.
  - 9. The scan management system of claim 8, said first data stream being associated with a first workload and said second data stream being associated with a second workload.
  - 10. The scan management system of claim 8, said first data stream and said second data stream being associated with a first workload.
  - 11. The scan management system of claim 1, at least one of said workloads being operable on said computer system.
  - 12. The scan management system of claim 1, at least one of said workloads being operable on a second computer system.
  - 13. The scan management system of claim 1, at least one of said scan engines being operable on said computer system.
  - 14. The scan management system of claim 1, at least one of said scan engines being operable on a second computer system.

15. A method comprising:
- receiving a catalog comprising metadata defining a plurality of scan engines, said metadata further comprising configurable parameters for at least some of said scan engines;
  
  receiving a policy definition comprising a desired security level for a first type of data stream;
  
  identifying a first data stream as being a first type of data stream;
  
  selecting a first scan engine from said catalog as meeting said desired security level and being capable of scanning said first data type; and
  
  configuring a data stream interceptor to pass contents from said first data stream to said first scan engine.
- View Dependent Claims (16, 17)
- - 16. The method of claim 15 further comprising:
    - determining a configuration setting from said metadata to cause said first scan engine to operate in accordance with said desired security level; and
      
      configuring said first scan engine with said configuration setting such that said first scan engine operates in accordance with said desired security level.
  - 17. The method of claim 15, said catalog being received over a wide area network connection and said policy definition being received from a local source within a local area network.

18. A system comprising:
- a processor;
  
  a plurality of workloads, each of said workload comprising at least one data stream;
  
  for each data stream, a data stream interceptor configured to capture contents from said data stream and transfer said contents to a scan engine;
  
  a plurality of scan engines, each of said scan engines being capable of receiving content and performing a scan on said content;
  
  a scan manager configured to;
  
  receive a catalog comprising metadata defining a plurality of said scan engines, said metadata further comprising configurable parameters for at least some of said scan engines;
  
  receive a policy definition comprising a desired security level for a first type of data stream;
  
  identify a first data stream as being a first type of data stream;
  
  select a first scan engine from said catalog as meeting said desired security level and being capable of scanning said first data type; and
  
  configure a first data stream interceptor to pass contents from said first data stream to said first scan engine.
- View Dependent Claims (19, 20)
- - 19. The system of claim 18, said first scan engine being configurable with at least one configuration setting.
  - 20. The system of claim 18, said first data stream being associated with a first workload, said first workload being configurable with at least one configuration setting by said scan manager.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Herbst, Robert, Shah, Shrey, Gilder, Ari

Application Number

US12/613,569
Publication Number

US 20110072514A1
Time in Patent Office

Days
Field of Search
US Class Current

726/22
CPC Class Codes

G09G 2320/0271   Adjustment of the gradation...

G09G 2320/0626   for control of overall brig...

G09G 2320/066   for control of contrast

G09G 2330/021   Power management, e.g. powe...

G09G 2360/16   Calculation or use of calcu...

G09G 3/3208   organic, e.g. using organic...

Scan Engine Manager with Updates

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

27 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Scan Engine Manager with Updates

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

27 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links