-
公开(公告)号:US11163552B2
公开(公告)日:2021-11-02
申请号:US16383838
申请日:2019-04-15
Applicant: International Business Machines Corporation
Inventor: Shripad Nadgowda , Priya Ashok Nagpurkar
Abstract: Embodiments relate to a system, program product, and method for evaluating and controlling configuration of a build manifest. An application build manifest is discovered and is subjected to parsing process in which one or more components that comprise the application are identified. The build manifest is monitored for changes to the identified components, and a change notification is generated in response to a change in an identified component. Each generated change notification is assigned a classification. The change notifications are applied selectively to update the manifest, wherein the selective update is based on the classification of the change notification.
-
公开(公告)号:US20210304063A1
公开(公告)日:2021-09-30
申请号:US16834463
申请日:2020-03-30
Applicant: International Business Machines Corporation
Inventor: Muhammed Fatih Bulut , Jinho Hwang , Ali Kanso , Shripad Nadgowda
Abstract: Embodiments relate to a computer system, computer program product, and computer-implemented method to train a machine learning (ML) model using artificial intelligence to learn an association between (regulatory) compliance requirements and features of micro-service training datasets. The trained ML model is leveraged to determine the compliance requirements of a micro-service requiring classification. In an exemplary embodiment, once the micro-service has been classified with respect to applicable compliance requirements, the classified micro-service may be used as an additional micro-service training dataset to further train the ML model and thereby improve its performance.
-
公开(公告)号:US11075983B2
公开(公告)日:2021-07-27
申请号:US16689322
申请日:2019-11-20
Applicant: International Business Machines Corporation
Inventor: Canturk Isci , Shripad Nadgowda
IPC: G06F15/173 , H04L29/08 , H04L29/06 , G06F9/30 , H04L12/803
Abstract: Techniques facilitating compliance aware service registry and load balancing are provided. A system can comprise a memory that stores computer executable components and a processor that executes computer executable components stored in the memory. The computer executable components can comprise an extraction component that removes a service from a load balancer ring based on a first determination by a verification component that a compliance state of the service is a non-compliant state. Further, the computer executable components can comprise an insertion component that adds the service to the load balancer ring based on a second determination by the verification component that, after a defined amount of time, the compliance state of the service is a compliant state.
-
44.发明授权公开(公告)号:US11074055B2
公开(公告)日:2021-07-27
申请号:US16441386
申请日:2019-06-14
Applicant: International Business Machines Corporation
Inventor: Anthony C. Byrne , Shripad Nadgowda , Seetharami R. Seelam
Abstract: Systems, computer-implemented methods, and computer program products that facilitate identifying computer software vulnerabilities, and more specifically, execute an approximate representation of software to produce a fingerprint are provided. In one example, a system is provided. The system can comprise a memory that stores computer executable components and a processor that executes the computer executable components stored in the memory. The computer executable components can include a filter component and an execution component. The filter component can filter a platform-independent intermediate representation to a filtered representation. The execution component can execute the filtered representation on a virtual machine to produce an output vector which can be used to identify computer software vulnerabilities.
-
公开(公告)号:US20210126949A1
公开(公告)日:2021-04-29
申请号:US16667471
申请日:2019-10-29
Applicant: International Business Machines Corporation
Inventor: Shripad Nadgowda , Alessandro Morari , James R. Doran
Abstract: A method provides for collecting data source images from multiple repositories. Application dependencies are discovered from the data source images. Status results are determined based on vulnerability and compliance scanning of all dependent sources for each data source image. The status results are aggregated across all data source images for each of the multiple repositories. Remediations are determined for violations indicated by the aggregated status results. Each of the remediations is aggregated and ordered to define a single global remediation solution.
-
Patent Agency Ranking
公开(公告)号:US10833955B2
公开(公告)日:2020-11-10
申请号:US15861274
申请日:2018-01-03
Applicant: INTERNATIONAL BUSINESS MACHINES CORPORATION
Inventor: Canturk Isci , Shripad Nadgowda
Abstract: A container cloud platform that allows software functions to be shared by multiple applications in different application containers is provided. The service functions are containerized and disaggregated from the application containers. The containerized services are delivered as a capsule for applications that invoke the service functions at application runtime. The images of the service containers are deployed at the host computing devices operating the corresponding application containers. The container cloud platform monitors the deployed service containers for their execution as well as their termination.
-
公开(公告)号:US20200326931A1
公开(公告)日:2020-10-15
申请号:US16383838
申请日:2019-04-15
Applicant: International Business Machines Corporation
Inventor: Shripad Nadgowda , Priya Ashok Nagpurkar
Abstract: Embodiments relate to a system, program product, and method for evaluating and controlling configuration of a build manifest. An application build manifest is discovered and is subjected to parsing process in which one or more components that comprise the application are identified. The build manifest is monitored for changes to the identified components, and a change notification is generated in response to a change in an identified component. Each generated change notification is assigned a classification. The change notifications are applied selectively to update the manifest, wherein the selective update is based on the classification of the change notification.
-
公开(公告)号:US10803177B2
公开(公告)日:2020-10-13
申请号:US15653676
申请日:2017-07-19
Applicant: International Business Machines Corporation
Inventor: Constantin Mircea Adam , Nikolaos Anerousis , Jinho Hwang , Shripad Nadgowda , Maja Vukovic
Abstract: Systems, computer-implemented methods and/or computer program products that facilitate compliance-aware runtime generation of containers are provided. In one embodiment, a computer-implemented method comprises: identifying, by a system operatively coupled to a processor, information used by a target application to containerize; determining whether one or more risk violations exist for the information within one or more defined thresholds; determining whether a compliance or a security violation exists in the information, wherein the determining whether the compliance or security violation exists is performed based on a determination by the risk assessment component that one or more risk violations do not exist; and generating a new container of components corresponding to defined components of the target application that allow the target application to execute without an underlying operating system, wherein the generating is based on a determination that no compliance or security violation exists in the information.
-
公开(公告)号:US10778709B2
公开(公告)日:2020-09-15
申请号:US16176499
申请日:2018-10-31
Applicant: International Business Machines Corporation
Inventor: Shripad Nadgowda , Canturk Isci
IPC: H04L29/06
Abstract: Techniques facilitating cloud-native extensibility provided to security analytics are provided. A system comprises a memory that stores, and a processor that executes, computer executable components. The computer executable components can comprise a security component that implements an instance of an encapsulated security application. The encapsulated security application can be embedded into a container image as an extended analytic script. The computer executable components can also comprise an execution component that applies the instance of the encapsulated security application to a simulated system state of a computing device during subsequent scanning operations that result in respective analytics for scanning operations of the subsequent scanning operations.
-
公开(公告)号:US10467211B2
公开(公告)日:2019-11-05
申请号:US15813437
申请日:2017-11-15
Applicant: International Business Machines Corporation
Inventor: Mustafa Bal , Canturk Isci , Shripad Nadgowda
IPC: G06F7/00 , G06F16/22 , G06F9/50 , G06F9/445 , H04L12/46 , H04L12/24 , H04L29/08 , G06Q20/22 , H04L12/911
Abstract: Techniques facilitating representing and analyzing cloud computing data as pseudo systems are provided. A system comprises a memory that stores, and a processor that executes, computer executable components. The computer executable components comprise a framework component and a generation component. The framework component can recreate a system state of a computing device as a pseudo system state for the computing device. The pseudo system state can be decoupled from an original operating state of the computing device and can comprise data abstracted from the original operating state. The data abstracted can mimic an operation of the computing device. The generation component can create the pseudo system state and can facilitate black-box execution of software over the pseudo system state. The black-box execution of software can comprise running applications in the pseudo system state as if the applications were executing in the original operating state of the computing device.
-
-
-
-
-
-
-
-
-
Search Results
51
records
(took 0.028 seconds)
