公开(公告)号：US06907531B1

公开(公告)日：2005-06-14

申请号：US09608282

申请日：2000-06-30

申请人： Timothy D. Dodd ,  Scott Mewett ,  Curtis E. Ide ,  Kevin A. Overcash ,  David A. Dennerline ,  Bobby J. Williams ,  Martin D. Sells

发明人： Timothy D. Dodd ,  Scott Mewett ,  Curtis E. Ide ,  Kevin A. Overcash ,  David A. Dennerline ,  Bobby J. Williams ,  Martin D. Sells

IPC分类号： G06F11/30 ,  G06F12/14 ,  G06F15/16 ,  G06F21/00 ,  H04L1/00 ,  H04L9/00 ,  H04L29/06

CPC分类号： H04L63/1433 ,  G06F21/577

摘要： A method and system identifies, fixes, and updates security vulnerabilities in a host computer or host computers. The present invention can communicate between a scanner with plug-in capability, an operating system, and an express update package.The architectural set-up can allow exploits within the scanner and exploits in the express update package to function with no knowledge of each other. The user also needs no knowledge of whether the exploits are within the scanner or the express update package. Mutual authentication procedures can enable the scanner to load only legitimate express update packages, and can provide that express update packages can only be loaded into legitimate scanners.

摘要翻译： 方法和系统识别，修复和更新主机或主机中的安全漏洞。 本发明可以在具有插件能力的扫描仪，操作系统和快速更新包之间进行通信。 架构设置可以允许扫描仪中的漏洞利用，而快速更新包中的漏洞利用不会彼此相识。 用户也不需要知道漏洞是否在扫描器内或快速更新包中。 相互认证程序可以使扫描仪仅加载合法的快速更新包，并可以提供快速更新包只能加载到合法扫描器中。

公开(公告)号：US07634800B2

公开(公告)日：2009-12-15

申请号：US11430297

申请日：2006-05-08

申请人： Curtis E. Ide ,  Philip C. Brass ,  Theodore R. Doty

发明人： Curtis E. Ide ,  Philip C. Brass ,  Theodore R. Doty

IPC分类号： G06F7/04 ,  G06F12/14 ,  H04L29/06

CPC分类号： H04L63/08 ,  G06F21/31 ,  G06F21/577 ,  G06F2211/009 ,  G06F2221/2113 ,  H04L63/102 ,  H04L63/1433 ,  H04L63/20

摘要： Providing a user with assurance that a networked computer is secure, typically before completion of the log-in operation. This can be accomplished by extending the local log-in process to perform a host assessment of the workstation prior to requesting the user's credentials. If the assessment finds a vulnerability, the log-in process can inform the user that the machine is or may be compromised, or repair the vulnerability, prior to completion of the log-in operation. By performing vulnerability assessment at the level of the workstation, a network server is able to determine whether the workstation is a “trusted” platform from which to accept authentication requests. If the vulnerability assessment shows that the workstation is compromised, or if the possibility of remote compromise is high, the network server can elect to fail the authentication on the grounds that the workstation cannot be trusted. Optionally, a vulnerability assessment tool may be able to repair the vulnerability of the workstation, and then allow the authentication to proceed.

摘要翻译： 为用户提供网络计算机的安全性，通常在登录操作完成之前。 这可以通过在请求用户的凭据之前扩展本地登录过程来执行工作站的主机评估来实现。 如果评估发现了一个漏洞，登录过程可以在登录操作完成之前通知用户该机器已被或可能受到威胁或修复该漏洞。 通过在工作站级进行漏洞评估，网络服务器能够确定工作站是否是从其接受认证请求的“受信任”平台。 如果漏洞评估显示工作站受到威胁，或者如果远程妥协的可能性较高，则网络服务器可能会因为不能信任工作站而导致身份验证失败。 可选地，漏洞评估工具可能能够修复工作站的漏洞，然后允许身份验证继续。

公开(公告)号：US07162649B1

公开(公告)日：2007-01-09

申请号：US09607375

申请日：2000-06-30

申请人： Curtis E. Ide ,  Philip C. Brass ,  Theodore R. Doty

发明人： Curtis E. Ide ,  Philip C. Brass ,  Theodore R. Doty

IPC分类号： G06F11/30 ,  G06F15/173 ,  G06F15/16 ,  H04L9/00 ,  H04K1/00

CPC分类号： H04L63/08 ,  G06F21/31 ,  G06F21/577 ,  G06F2211/009 ,  G06F2221/2113 ,  H04L63/102 ,  H04L63/1433 ,  H04L63/20

摘要： Providing a user with assurance that a networked computer is secure, typically before completion of the log-in operation. This can be accomplished by extending the local log-in process to perform a host assessment of the workstation prior to requesting the user's credentials. If the assessment finds a vulnerability, the log-in process can inform the user that the machine is or may be compromised, or repair the vulnerability, prior to completion of the log-in operation. By performing vulnerability assessment at the level of the workstation, a network server is able to determine whether the workstation is a “trusted” platform from which to accept authentication requests. If the vulnerability assessment shows that the workstation is compromised, or if the possibility of remote compromise is high, the network server can elect to fail the authentication on the grounds that the workstation cannot be trusted. Optionally, a vulnerability assessment tool may be able to repair the vulnerability of the workstation, and then allow the authentication to proceed.

摘要翻译： 为用户提供网络计算机的安全性，通常在登录操作完成之前。 这可以通过在请求用户的凭据之前扩展本地登录过程来执行工作站的主机评估来实现。 如果评估发现了一个漏洞，登录过程可以在登录操作完成之前通知用户该机器已被或可能受到威胁或修复该漏洞。 通过在工作站级进行漏洞评估，网络服务器能够确定工作站是否是从其接受认证请求的“受信任”平台。 如果漏洞评估显示工作站受到威胁，或者如果远程妥协的可能性较高，则网络服务器可能会因为不能信任工作站而导致身份验证失败。 可选地，漏洞评估工具可能能够修复工作站的漏洞，然后允许身份验证继续。