公开(公告)号：US10884759B2

公开(公告)日：2021-01-05

申请号：US16174831

申请日：2018-10-30

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Umesh Markandaya Lakshminarasimha ,  Naveena Kedlaya ,  Nagaraj P. Hegde

IPC: G06F9/44 ,  G06F9/4401 ,  G06F8/61 ,  H04L29/06 ,  G06F11/22 ,  H04L29/08

Abstract: Example approaches for remote deployment of an operating system (OS) in an electronic device are described. In an example, a Baseboard Management Controller (BMC) of the electronic device is set as a first bootable component in an order of initialization of hardware components of the electronic device during a boot operation. The BMC is initialized during the boot operation. A remote server information indicative of a network address of a remote server and a path directed to boot files of the OS stored in the remote server is received. The boot files are for deployment of the OS in the electronic device. The boot files from the remote server are downloaded over a dedicated communication channel associated with the BMC, based on the remote server information. The boot files are executed to deploy the OS in the electronic device.

公开(公告)号：US11983277B2

公开(公告)日：2024-05-14

申请号：US16513454

申请日：2019-07-16

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Umesh Markandaya Lakshminarasimha ,  Mahesh Ramenahalli Mayanna ,  Naveena Kedlaya

IPC: G06F21/57

CPC classification number: G06F21/577 ,  G06F2221/034

Abstract: Some examples relate to identifying a security vulnerability in a computer system. In an example, via a NAND flash memory, a computer system may be scanned to obtain information related to a software program, based on a rule set defined in a management controller (e.g., baseboard management controller (BMC)) on the computer system. The NAND flash memory may obtain metrics related to the software program via the BMC. The NAND flash memory may analyze the information related to the software program along with the metrics related to the software program to identify a security vulnerability in the computer system. The NAND flash memory may provide the information related to the security vulnerability in the computer system to the BMC.

公开(公告)号：US11562077B2

公开(公告)日：2023-01-24

申请号：US16844321

申请日：2020-04-09

Applicant: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP

Inventor： Umesh Markandaya Lakshminarasimha ,  Vijay Suryanarayana ,  Naveena Kedlaya

IPC: G06F21/00 ,  G06F21/57 ,  G06F8/65 ,  G06F9/50

Abstract: Example implementations relate to method and system for securing a workload from a security vulnerability based on management of critical patches for the workload. The method includes obtaining information of existing patches for each of a plurality of infrastructure resources that are required to execute the workload, where the infrastructure resources are segregated as multiple layers. The method further includes determining dependency of the infrastructure resources across the multiple layers and identifying the security vulnerability related to the infrastructure resources. The method further includes evaluating perceived criticalities of first and second new patches for the security vulnerability based a workload weightage, a resource age of the infrastructure resources, and an actual criticality of the first and second new patches. Further, the method includes installing the first new patch followed by the second new patch on the infrastructure resources based on the perceived criticalities, in an order of the determined dependency.

公开(公告)号：US20210319111A1

公开(公告)日：2021-10-14

申请号：US16844321

申请日：2020-04-09

Applicant: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP

Inventor： Umesh Markandaya Lakshminarasimha ,  Vijay Suryanarayana ,  Naveena Kedlaya

IPC: G06F21/57 ,  G06F9/50 ,  G06F8/65

Abstract: Example implementations relate to method and system for securing a workload from a security vulnerability based on management of critical patches for the workload. The method includes obtaining information of existing patches for each of a plurality of infrastructure resources that are required to execute the workload, where the infrastructure resources are segregated as multiple layers. The method further includes determining dependency of the infrastructure resources across the multiple layers and identifying the security vulnerability related to the infrastructure resources. The method further includes evaluating perceived criticalities of first and second new patches for the security vulnerability based a workload weightage, a resource age of the infrastructure resources, and an actual criticality of the first and second new patches. Further, the method includes installing the first new patch followed by the second new patch on the infrastructure resources based on the perceived criticalities, in an order of the determined dependency.

公开(公告)号：US20210019421A1

公开(公告)日：2021-01-21

申请号：US16513454

申请日：2019-07-16

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Umesh Markandaya Lakshminarasimha ,  Mahesh Ramenahalli Mayanna ,  Naveena Kedlaya

IPC: G06F21/57

Abstract: Some examples relate to identifying a security vulnerability in a computer system. In an example, via a NAND flash memory, a computer system may be scanned to obtain information related to a software program, based on a rule set defined in a management controller (e.g., baseboard management controller (BMC)) on the computer system. The NAND flash memory may obtain metrics related to the software program via the BMC. The NAND flash memory may analyze the information related to the software program along with the metrics related to the software program to identify a security vulnerability in the computer system. The NAND flash memory may provide the information related to the security vulnerability in the computer system to the BMC.