Method and system for verification of an endpoint security scan
First Claim
Patent Images
1. A method of granting a node access to resources based on information about the node, comprising:
- (a) receiving, by a receiver of a gateway, a request from a node operated by a user to access a resource;
(b) selecting, by an agent constructor of the gateway, a subset of scan routines from a plurality of available scan routines to include in a scanning agent, the subset of scan routines identifying information about the node to gather;
(c) embedding, by an encryption function generator of the gateway, at least one encryption module in the scanning agent, the at least one encryption module comprising at least one encryption key;
(d) transmitting, by a transmitter of the gateway, the scanning agent to the node;
(e) receiving, by the receiver of the gateway, information gathered about the node by the subset of scan routines executing on the node, the gathered information encrypted by the at least one encryption module in the scanning agent;
(f) decrypting, by a decryptor of the gateway, the received information; and
(g) granting, by a policy engine of the gateway, one of a plurality of levels of access to the node based on the decrypted information.
7 Assignments
0 Petitions
Accused Products
Abstract
A method of granting access to resources includes the step of receiving a request from a node to access a resource. A scanning agent is generated to gather information about the node. A key is generated and embedded in the scanning agent. The scanning agent is transmitted to the node and gathers information regarding the node. The scanning agent encrypts the gathered information using the at least one generated key. The encrypted gathered information is received from the scanning agent and decrypted.
418 Citations
20 Claims
-
1. A method of granting a node access to resources based on information about the node, comprising:
-
(a) receiving, by a receiver of a gateway, a request from a node operated by a user to access a resource; (b) selecting, by an agent constructor of the gateway, a subset of scan routines from a plurality of available scan routines to include in a scanning agent, the subset of scan routines identifying information about the node to gather; (c) embedding, by an encryption function generator of the gateway, at least one encryption module in the scanning agent, the at least one encryption module comprising at least one encryption key; (d) transmitting, by a transmitter of the gateway, the scanning agent to the node; (e) receiving, by the receiver of the gateway, information gathered about the node by the subset of scan routines executing on the node, the gathered information encrypted by the at least one encryption module in the scanning agent; (f) decrypting, by a decryptor of the gateway, the received information; and (g) granting, by a policy engine of the gateway, one of a plurality of levels of access to the node based on the decrypted information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A gateway for granting a node access to resources based on information about the node, comprising:
-
a receiver, receiving a request from a node operated by a user to access a resource; an agent constructor, executing on a processor of the gateway, selecting a subset of scan routines from a plurality of available scan routines to include in a scanning agent, the subset of scan routines identifying information about the node to gather; an encryption function generator embedding at least one encryption module in the scanning agent, the at least one encryption module comprising at least one encryption key; a transmitter transmitting the scanning agent to the node; a decryptor decrypting information gathered about the node by the subset of scan routines executing on the node, the gathered information encrypted by the at least one encryption module in the scanning agent; and a policy engine granting one of a plurality of levels of access to the node based on the decrypted information. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification