公开(公告)号：US11625272B2

公开(公告)日：2023-04-11

申请号：US16994586

申请日：2020-08-15

Applicant: INTERNATIONAL BUSINESS MACHINES CORPORATION

Inventor： Braulio Gabriel Dumba ,  Ubaid Ullah Hafeez ,  Abdulhamid Adebayo ,  Jun Duan ,  Alexei Karve ,  Sai Zeng

IPC: G06F9/46 ,  G06F9/50 ,  G06N20/00 ,  G06F9/455

Abstract: A computer-implemented method for managing one or more operations of a workload includes selecting a resource type for workload management on a platform. One or more operations of the selected resource to be managed are identified. A reconciliation time for execution of each of the identified operations is determined. A reconciliation period between two consecutive reconciliations is determined for each of the identified operations. A minimum number of processes for workload management of a given set of the operations on resources is calculated, and the determined minimum number of processes is deployed to manage the workload.

公开(公告)号：US11200048B2

公开(公告)日：2021-12-14

申请号：US15931785

申请日：2020-05-14

Applicant: International Business Machines Corporation

Inventor： Alexei Karve ,  Sai Zeng ,  Ting Dai

IPC: G06F8/70 ,  G06N20/00 ,  G06F11/36

Abstract: A system, computer program product, and method are provided for supporting risk evaluation and modification of an executable codified infrastructure. The codified infrastructure is analyzed to identify any non-native program instructions. A selection of the identified non-native program instructions are combined and subjected to a risk evaluation by non-native tools. A risk evaluation result is mapped to corresponding lines of the source code, and a risk identifier is assigned to the corresponding lines of the source code. One or more modifications are selectively applied to the codified infrastructure in correspondence with the assigned risk identifier. The applied modification mitigates any defects in the source code.

公开(公告)号：US20210120041A1

公开(公告)日：2021-04-22

申请号：US17131945

申请日：2020-12-23

Applicant: International Business Machines Corporation

Inventor： Milton H. Hernandez ,  Anup Kalia ,  Brian Peterson ,  Vugranam C. Sreedhar ,  Sai Zeng

IPC: H04L29/06 ,  H04L29/08 ,  H04L12/813 ,  H04L12/26

Abstract: An assessment component that facilitates assessment and enforcement of policies within a computer environment can comprise a compliance component that determines whether a policy, that defines one or more requirements associated with usage of one or more enterprise components of an enterprise computing system, is in compliance with a plurality of standardized policies that govern operation of the one or more enterprise components of the enterprise computing system. The assessment component can also comprise a policy optimization component that determines one or more changes to the policy that achieve the compliance with the plurality of standardized polices based on a determination that the policy complies with a first standardized policy of the plurality of standardized policies and fails to comply with a second standardized policy of the plurality of standardized policies.

公开(公告)号：US10834183B2

公开(公告)日：2020-11-10

申请号：US15858860

申请日：2017-12-29

Applicant: International Business Machines Corporation

Inventor： Jinho Hwang ,  In Kee Kim ,  Christopher C. Young ,  Sai Zeng

IPC: H04L29/08 ,  H04L12/26 ,  H04L12/24

Abstract: A method, product, and apparatus for treating idle servers in a cloud system provide for extrapolating a purpose of each of a plurality of servers by comparing a list of processes active on the server to a plurality of lists of processes associated with a plurality of purposes; selecting vectors of idle/active features corresponding to the extrapolated purposes of each of the plurality of servers; classifying as idle or active each of the plurality of servers, by assessing the specified feature vectors using a linear support vector machine; validating as idle or active each server classified as idle, by assessing the connectivity of the server with all servers classified as active; and implementing at least one treatment option on servers that have been validated as idle. The treatment options may include terminating, terminating with snapshot, and stopping a virtual machine.

公开(公告)号：US10601857B2

公开(公告)日：2020-03-24

申请号：US15825086

申请日：2017-11-28

Applicant: INTERNATIONAL BUSINESS MACHINES CORPORATION

Inventor： Muhammed Fatih Bulut ,  Lisa Chavez ,  Jinho Hwang ,  Virginia Mayo ,  Maja Vukovic ,  Sai Zeng

IPC: H04L29/06 ,  G06Q50/00 ,  H04L12/58

Abstract: A method and system of identifying technical experts for an identified vulnerability is provided. One or more technical experts for each of one or more categories of the vulnerability are identified. Questions are sent to and answers are received from the one or more identified technical experts for each of the one or more categories of vulnerabilities, via a chatbot module. Answers to parameters that are missing for a Common Vulnerability Scoring System (CVSS) for the identified vulnerability are determined from the received answers to the parameters. The answers to the parameters are validated and a CVSS score is calculated based on the validated determined answers.

公开(公告)号：US20190132361A1

公开(公告)日：2019-05-02

申请号：US15796014

申请日：2017-10-27

Applicant: International Business Machines Corporation

Inventor： Milton H. Hernandez ,  Anup Kalia ,  Brian Peterson ,  Vugranam C. Sreedhar ,  Sai Zeng

IPC: H04L29/06

Abstract: An assessment component that facilitates assessment and enforcement of policies within a computer environment can comprise a compliance component that determines whether a policy, that defines one or more requirements associated with usage of one or more enterprise components of an enterprise computing system, is in compliance with a plurality of standardized policies that govern operation of the one or more enterprise components of the enterprise computing system. The assessment component can also comprise a policy optimization component that determines one or more changes to the policy that achieve the compliance with the plurality of standardized polices based on a determination that the policy complies with a first standardized policy of the plurality of standardized policies and fails to comply with a second standardized policy of the plurality of standardized policies.

公开(公告)号：US09584378B1

公开(公告)日：2017-02-28

申请号：US14978291

申请日：2015-12-22

Applicant: International Business Machines Corporation

Inventor： Constantin M Adam ,  Nikolaos Anerousis ,  Vysakh K. Chandran ,  Milton H. Hernandez ,  Debasisha K. Padhi ,  Yaoping Ruan ,  Fabio M. Tanada ,  Frederick Y.-F. Wu ,  Sai Zeng

IPC: H04L12/24 ,  H04L29/08

CPC classification number: G06F21/577 ,  G06F2221/034 ,  H04L41/0806 ,  H04L41/0866 ,  H04L41/22 ,  H04L41/28 ,  H04L67/30 ,  H04L67/42

Abstract: A computer-implemented agent process running on a first computer automatically intercepts a command issued from the first computer to execute on a target computer prior to invocation of the command on the target computer. A server profile built for an application running on the target computer that supports the command may be retrieved. At least based on the server profile a risk enforcement policy is dynamically constructed. Based on the risk enforcement policy, one or more computer-executable enforcement actions to perform prior to sending the command to the target computer for execution is determined. Based on executing of one or more of the computer-executable enforcement actions, the command may be transmitted to execute on the target computer or prevented from executing on the target computer.

Abstract translation: 在第一计算机上运行的计算机实现的代理进程在调用目标计算机上的命令之前自动拦截从第一计算机发出的命令在目标计算机上执行。 可以检索为支持该命令的目标计算机上运行的应用程序构建的服务器配置文件。 至少基于服务器配置文件，动态构建风险执行策略。 基于风险实施策略，确定在将命令发送到目标计算机以执行之前执行的一个或多个计算机可执行执行动作。 基于执行一个或多个计算机可执行执行动作，可以发送该命令以在目标计算机上执行或者在目标计算机上执行该命令。

公开(公告)号：US20220383093A1

公开(公告)日：2022-12-01

申请号：US17330771

申请日：2021-05-26

Applicant: International Business Machines Corporation

Inventor： Abdulhamid Adebowale Adebayo ,  Muhammed Fatih Bulut ,  Sai Zeng ,  Milton H. Hernandez

IPC: G06N3/08 ,  G06K9/62

Abstract: A computer system, program code, and a method are provided to leverage an AI model with respect to a target specification for a target standard. The AI model is configured to identify at least one candidate control associated with a corresponding standard. A map is subject to traversal to identify the candidate control in the map. Source and destination controls of the map are leveraged to identify at least one mapped control associated with the target standard. The AI model is selectively subject to training with the mapped control and the target standard.

公开(公告)号：US20210150029A1

公开(公告)日：2021-05-20

申请号：US17135553

申请日：2020-12-28

Applicant: International Business Machines Corporation

Inventor： Muhammed Fatih Bulut ,  Jinho Hwang ,  Vugranam C. Sreedhar ,  Sai Zeng

IPC: G06F21/56 ,  G06F21/57 ,  G06F11/34

Abstract: Techniques for dynamic server groups that can be patched together using stream clustering algorithms, and learning components in order to reuse the repeatable patterns using machine learning are provided herein. In one example, in response to a first risk associated with a first server device, a risk assessment component patches a server group to mitigate a vulnerability of the first server device and a second server device, wherein the server group is comprised of the first server device and the second server device. Additionally, a monitoring component monitors data associated with a second risk to the server group to mitigate the second risk to the server group.

公开(公告)号：US10834182B2

公开(公告)日：2020-11-10

申请号：US15472374

申请日：2017-03-29

Applicant: International Business Machines Corporation

Inventor： Jinho Hwang ,  In Kee Kim ,  Christopher C Young ,  Sai Zeng

IPC: H04L29/08 ,  H04L12/26 ,  H04L12/24

Abstract: A method, product, and apparatus for treating idle servers in a cloud system provide for extrapolating a purpose of each of a plurality of servers by comparing a list of processes active on the server to a plurality of lists of processes associated with a plurality of purposes; selecting vectors of idle/active features corresponding to the extrapolated purposes of each of the plurality of servers; classifying as idle or active each of the plurality of servers, by assessing the specified feature vectors using a linear support vector machine; validating as idle or active each server classified as idle, by assessing the connectivity of the server with all servers classified as active; and implementing at least one treatment option on servers that have been validated as idle. The treatment options may include terminating, terminating with snapshot, and stopping a virtual machine.