公开(公告)号：US08099767B2

公开(公告)日：2012-01-17

申请号：US12166252

申请日：2008-07-01

申请人： Enrica Alberti ,  Luigi Pichetti ,  Marco Secchi ,  Antonio Secomandi

发明人： Enrica Alberti ,  Luigi Pichetti ,  Marco Secchi ,  Antonio Secomandi

IPC分类号： H04L9/32 ,  H04L9/00 ,  G06F7/04

CPC分类号： H04L63/102 ,  G06F21/6218

摘要： Mechanisms for securing dynamic discovery of an enterprise computing infrastructure is provided. One implementation involves maintaining enterprise credential information in a secured trust store, receiving an access request through a secure connection for access to a remote infrastructure component, determining the type of the access request, for a root-level type access request, responding to the request via the secure connection with enterprise root credentials from the trust store, and for an unprivileged type access request, responding to the request via the secure connection with unprivileged access enterprise credentials from the trust store.

摘要翻译： 提供了确保企业计算基础设施动态发现的机制。 一个实现涉及在安全的信任存储中维护企业凭证信息，通过用于访问远程基础架构组件的安全连接来接收访问请求，确定针对根级别类型访问请求的访问请求的类型，以响应请求 通过来自信任存储的企业根凭证的安全连接以及非特权类型访问请求，通过来自信任存储的非特权访问企业凭证的安全连接来响应该请求。

公开(公告)号：US20090282097A1

公开(公告)日：2009-11-12

申请号：US12306311

申请日：2007-03-13

申请人： Enrica Alberti ,  Mauro Arcese ,  Fabio Cerri ,  Rosario Gangemi

发明人： Enrica Alberti ,  Mauro Arcese ,  Fabio Cerri ,  Rosario Gangemi

IPC分类号： G06F15/16

CPC分类号： H04L67/1095 ,  G06F17/30371 ,  G06F17/30575

摘要： A method for keeping synchronized data collected by a first and at least one second software applications from respective information sources and stored in a respective first and second data repositories. The method comprises: a) receiving a request to refresh data stored in the first data repository; b) causing the at least one second software application to collect data from the respective information source; c) receiving the data collected by the first and the at least one second software applications from the respective information sources, and d) uploading the received data to the respective first and second repositories.

摘要翻译： 一种用于保持来自相应信息源的第一和至少一个第二软件应用程序收集的并存储在相应的第一和第二数据存储库中的同步数据的方法。 该方法包括：a）接收刷新存储在第一数据仓库中的数据的请求; b）使所述至少一个第二软件应用程序从相应的信息源收集数据; c）从相应的信息源接收由第一和至少一个第二软件应用收集的数据，以及d）将接收到的数据上传到相应的第一和第二存储库。

公开(公告)号：US20110126187A1

公开(公告)日：2011-05-26

申请号：US13020471

申请日：2011-02-03

申请人： ENRICA ALBERTI ,  Mauro Arcese ,  Gianluca Bernardini ,  Rosario Gangemi ,  Luigi Pichetti

发明人： ENRICA ALBERTI ,  Mauro Arcese ,  Gianluca Bernardini ,  Rosario Gangemi ,  Luigi Pichetti

IPC分类号： G06F9/44

CPC分类号： G06F8/65

摘要： A software patch management solution (200) is proposed. The devised solution is based on the idea of automating the installation of the patches through a software distribution infrastructure. For this purpose, an automation engine (225) is added to a distribution server (110). The automation engine interfaces with a patch provider (125) acting as a proxy, which stores a local copy of the patches (210) and of a patch catalogue (215) for detecting corresponding vulnerabilities. The automation engine automatically builds a distribution plan for deploying the patches to the relevant endpoints (115), according to a vulnerability catalogue (230) that stores the actual exposures of the endpoints. The distribution plan arranges the required activities in the correct order, so as to minimize the number of rebooting of the endpoints; the distribution plan ends with an activity for scanning the endpoints, so as to update the vulnerability catalogue accordingly.

摘要翻译： 提出了一种软件补丁管理解决方案（200）。 设计的解决方案基于通过软件分发基础设施自动安装补丁的想法。 为此，将自动化引擎（225）添加到分发服务器（110）。 所述自动化引擎与作为代理的补丁提供程序（125）接口，所述补丁提供程序（125）存储所述补丁（210）和补丁目录（215）的本地副本，用于检测相应的漏洞。 根据存储端点的实际暴露的漏洞目录（230），自动化引擎自动构建用于将补丁部署到相关端点（115）的分发计划。 分配方案按正确的顺序排列所需的活动，以最大限度地减少端点的重新启动次数; 分发计划以扫描端点的活动结束，以便相应地更新漏洞目录。

公开(公告)号：US20060069744A1

公开(公告)日：2006-03-30

申请号：US11217865

申请日：2005-09-01

申请人： Enrica Alberti ,  Salvatore D'Alo ,  Alessandro Donatelli ,  Luigi Pichetti ,  Alessandro Scotti

发明人： Enrica Alberti ,  Salvatore D'Alo ,  Alessandro Donatelli ,  Luigi Pichetti ,  Alessandro Scotti

IPC分类号： G06F15/16

CPC分类号： H04L51/063

摘要： A method for transmitting information (from a source computer to one or more target computers) is proposed. The solution of the invention applies to a message (300o) that includes a main body (310) with possible attachments (315), each one identified by a corresponding internal link (320i) The attachments including bulk data are removed and placed onto a location (125s) of a distribution service wherein they are available for downloading; at the same time, the internal links of the removed attachments are replaced with external links (320e), which point to the corresponding downloading locations. The resulting compacted message (300c) is transmitted to each target computer directly. The target computer downloads the desired removed attachments (from the locations pointed by the corresponding external links); the message can then be reconstructed by restoring the downloaded attachments.

摘要翻译： 提出了一种从源计算机向一个或多个目标计算机发送信息的方法。 本发明的解决方案适用于包括具有可能的附件（315）的主体（310）的消息（300o），每个由相应的内部链接（320i）标识的消息（320）。包括批量数据的附件被移除并放置在 分发服务的位置（125s），其中它们可用于下载; 同时，删除的附件的内部链接被替换为外部链接（320 e），其指向相应的下载位置。 所得到的压缩消息（300c）被直接发送到每个目标计算机。 目标计算机下载所需删除的附件（从相应的外部链接指向的位置）; 然后可以通过恢复下载的附件来重建消息。

公开(公告)号：US08495615B2

公开(公告)日：2013-07-23

申请号：US13020471

申请日：2011-02-03

申请人： Enrica Alberti ,  Mauro Arcese ,  Gianluca Bernardini ,  Rosario Gangemi ,  Luigi Pichetti

发明人： Enrica Alberti ,  Mauro Arcese ,  Gianluca Bernardini ,  Rosario Gangemi ,  Luigi Pichetti

IPC分类号： G06F9/44

CPC分类号： G06F8/65

摘要： A software patch management solution (200) is proposed. The devised solution is based on the idea of automating the installation of the patches through a software distribution infrastructure. For this purpose, an automation engine (225) is added to a distribution server (110). The automation engine interfaces with a patch provider (125) acting as a proxy, which stores a local copy of the patches (210) and of a patch catalogue (215) for detecting corresponding vulnerabilities. The automation engine automatically builds a distribution plan for deploying the patches to the relevant endpoints (115), according to a vulnerability catalogue (230) that stores the actual exposures of the endpoints. The distribution plan arranges the required activities in the correct order, so as to minimize the number of rebooting of the endpoints; the distribution plan ends with an activity for scanning the endpoints, so as to update the vulnerability catalogue accordingly.

摘要翻译： 提出了一种软件补丁管理解决方案（200）。 设计的解决方案基于通过软件分发基础设施自动安装补丁的想法。 为此，将自动化引擎（225）添加到分发服务器（110）。 所述自动化引擎与作为代理的补丁提供程序（125）接口，所述补丁提供程序（125）存储所述补丁（210）和补丁目录（215）的本地副本，用于检测相应的漏洞。 根据存储端点的实际暴露的漏洞目录（230），自动化引擎自动构建用于将补丁部署到相关端点（115）的分发计划。 分配方案按正确的顺序排列所需的活动，以最大限度地减少端点的重新启动次数; 分发计划以扫描端点的活动结束，以便相应地更新漏洞目录。

公开(公告)号：US09124609B2

公开(公告)日：2015-09-01

申请号：US12306311

申请日：2007-03-13

申请人： Enrica Alberti ,  Mauro Arcese ,  Fabio Cerri ,  Rosario Gangemi

发明人： Enrica Alberti ,  Mauro Arcese ,  Fabio Cerri ,  Rosario Gangemi

IPC分类号： G06F15/16 ,  G06F7/00 ,  G06F17/00 ,  H04L29/08 ,  G06F17/30

CPC分类号： H04L67/1095 ,  G06F17/30371 ,  G06F17/30575

摘要： A method for keeping synchronized data collected by a first and at least one second software applications from respective information sources and stored in a respective first and second data repositories. The method comprises: a) receiving a request to refresh data stored in the first data repository; b) causing the at least one second software application to collect data from the respective information source; c) receiving the data collected by the first and the at least one second software applications from the respective information sources, and d) uploading the received data to the respective first and second repositories.

摘要翻译： 一种用于保持来自相应信息源的第一和至少一个第二软件应用程序收集的并存储在相应的第一和第二数据存储库中的同步数据的方法。 该方法包括：a）接收刷新存储在第一数据仓库中的数据的请求; b）使所述至少一个第二软件应用程序从相应的信息源收集数据; c）从相应的信息源接收由第一和至少一个第二软件应用收集的数据，以及d）将接收到的数据上传到相应的第一和第二存储库。

公开(公告)号：US07937697B2

公开(公告)日：2011-05-03

申请号：US11383288

申请日：2006-05-15

申请人： Enrica Alberti ,  Mauro Arcese ,  Gianluca Bernardini ,  Rosario Gangemi ,  Luigi Piciietti

发明人： Enrica Alberti ,  Mauro Arcese ,  Gianluca Bernardini ,  Rosario Gangemi ,  Luigi Piciietti

IPC分类号： G06F9/44

CPC分类号： G06F8/65

摘要： A software patch management solution is proposed. The devised solution is based on the idea of automating the installation of the patches through a software distribution infrastructure. An automation engine is added to a distribution server. The automation engine interfaces with a patch provider acting as a proxy, which stores a local copy of the patches and of a patch catalogue for detecting corresponding vulnerabilities. The automation engine automatically builds a distribution plan for deploying the patches to the relevant endpoints, according to a vulnerability catalogue that stores the actual exposures of the endpoints. The distribution plan arranges the required activities in the correct order, to minimize the number of rebooting of the endpoints; the distribution plan ends with an activity for scanning the endpoints, to update the vulnerability catalogue accordingly.

摘要翻译： 提出了一种软件补丁管理解决方案。 设计的解决方案基于通过软件分发基础设施自动安装补丁的想法。 自动化引擎添加到分发服务器。 自动化引擎与作为代理的补丁提供程序进行接口，该代理存储补丁的本地副本和用于检测相应的漏洞的补丁目录。 根据存储端点的实际暴露的漏洞目录，自动化引擎自动构建一个用于将补丁部署到相关端点的分发计划。 分配计划按正确的顺序排列所需的活动，以最大限度地减少重新启动端点数; 分发计划以扫描端点的活动结束，相应地更新漏洞目录。

公开(公告)号：US20100005516A1

公开(公告)日：2010-01-07

申请号：US12166252

申请日：2008-07-01

申请人： Enrica Alberti ,  Luigi Pichetti ,  Marco Secchi ,  Antonio Secomandi

发明人： Enrica Alberti ,  Luigi Pichetti ,  Marco Secchi ,  Antonio Secomandi

IPC分类号： G06F7/58

CPC分类号： H04L63/102 ,  G06F21/6218

摘要： A method and system for securing dynamic discovery of an enterprise computing infrastructure is provided. One implementation involves maintaining enterprise credential information in a secured trust store, receiving an access request through a secure connection for access to a remote infrastructure component, determining the type of the access request, for a root-level type access request, responding to the request via the secure connection with enterprise root credentials from the trust store, and for an unprivileged type access request, responding to the request via the secure connection with unprivileged access enterprise credentials from the trust store.

摘要翻译： 提供了用于确保企业计算基础设施的动态发现的方法和系统。 一个实现涉及在安全的信任存储中维护企业凭证信息，通过用于访问远程基础架构组件的安全连接来接收访问请求，确定针对根级别类型访问请求的访问请求的类型，以响应请求 通过来自信任存储的企业根凭证的安全连接以及非特权类型访问请求，通过来自信任存储的非特权访问企业凭证的安全连接来响应该请求。

公开(公告)号：US20060265630A1

公开(公告)日：2006-11-23

申请号：US11383288

申请日：2006-05-15

申请人： Enrica Alberti ,  Mauro Arcese ,  Gianluca Bernardini ,  Rosario Gangemi ,  Luigi Piciietti

发明人： Enrica Alberti ,  Mauro Arcese ,  Gianluca Bernardini ,  Rosario Gangemi ,  Luigi Piciietti

IPC分类号： G06F11/00

CPC分类号： G06F8/65

摘要： A software patch management solution (200) is proposed. The devised solution is based on the idea of automating the installation of the patches through a software distribution infrastructure. For this purpose, an automation engine (225) is added to a distribution server (110). The automation engine interfaces with a patch provider (125) acting as a proxy, which stores a local copy of the patches (210) and of a patch catalogue (215) for detecting corresponding vulnerabilities. The automation engine automatically builds a distribution plan for deploying the patches to the relevant endpoints (115), according to a vulnerability catalogue (230) that stores the actual exposures of the endpoints. The distribution plan arranges the required activities in the correct order, so as to minimize the number of rebooting of the endpoints; the distribution plan ends with an activity for scanning the endpoints, so as to update the vulnerability catalogue accordingly.

摘要翻译： 提出了一种软件补丁管理解决方案（200）。 设计的解决方案基于通过软件分发基础设施自动安装补丁的想法。 为此，将自动化引擎（225）添加到分发服务器（110）。 所述自动化引擎与作为代理的补丁提供程序（125）接口，所述补丁提供程序（125）存储所述补丁（210）和补丁目录（215）的本地副本，用于检测相应的漏洞。 根据存储端点的实际暴露的漏洞目录（230），自动化引擎自动构建用于将补丁部署到相关端点（115）的分发计划。 分配方案按正确的顺序排列所需的活动，以最大限度地减少端点的重新启动次数; 分发计划以扫描端点的活动结束，以便相应地更新漏洞目录。