Scan Engine Manager with Updates
First Claim
1. A scan management system operable on a computer system comprising a processor, said scan management system comprising:
- a data stream interceptor associated with a data stream within a workload, said data stream interceptor capable of passing contents of said data stream to a scan engine, said scan engines being capable of scanning said contents of said data stream;
a first catalog comprising metadata identifying a plurality of said scan engines and further identifying at least one data stream type to which said scan engine may be associated; and
a scan manager configured to receive a policy and said catalog and to determine configuration settings for each of said data stream interceptors, said configuration settings comprising assigning at least one of said scan engines to each of said data streams.
2 Assignments
0 Petitions
Accused Products
Abstract
A scan management system may configure various workloads and data streams within those workloads to be directed to various scan engines. The scan management system may be updatable and configurable by receiving a catalog of available scan engines and configuring the workloads and scan engines according to a policy that may be locally created and managed. The scan management system may be capable of reconfiguring the scan engines, including upgrading, adding, deprecating, and changing scan engines while being fully operational. In some cases, a single data stream may be scanned by two or more different scan engines, and a single scan engine may be used to scan two or more different data streams.
27 Citations
20 Claims
-
1. A scan management system operable on a computer system comprising a processor, said scan management system comprising:
-
a data stream interceptor associated with a data stream within a workload, said data stream interceptor capable of passing contents of said data stream to a scan engine, said scan engines being capable of scanning said contents of said data stream; a first catalog comprising metadata identifying a plurality of said scan engines and further identifying at least one data stream type to which said scan engine may be associated; and a scan manager configured to receive a policy and said catalog and to determine configuration settings for each of said data stream interceptors, said configuration settings comprising assigning at least one of said scan engines to each of said data streams. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A method comprising:
-
receiving a catalog comprising metadata defining a plurality of scan engines, said metadata further comprising configurable parameters for at least some of said scan engines; receiving a policy definition comprising a desired security level for a first type of data stream; identifying a first data stream as being a first type of data stream; selecting a first scan engine from said catalog as meeting said desired security level and being capable of scanning said first data type; and configuring a data stream interceptor to pass contents from said first data stream to said first scan engine. - View Dependent Claims (16, 17)
-
-
18. A system comprising:
-
a processor; a plurality of workloads, each of said workload comprising at least one data stream; for each data stream, a data stream interceptor configured to capture contents from said data stream and transfer said contents to a scan engine; a plurality of scan engines, each of said scan engines being capable of receiving content and performing a scan on said content; a scan manager configured to; receive a catalog comprising metadata defining a plurality of said scan engines, said metadata further comprising configurable parameters for at least some of said scan engines; receive a policy definition comprising a desired security level for a first type of data stream; identify a first data stream as being a first type of data stream; select a first scan engine from said catalog as meeting said desired security level and being capable of scanning said first data type; and configure a first data stream interceptor to pass contents from said first data stream to said first scan engine. - View Dependent Claims (19, 20)
-
Specification