发明申请
WO2017180611A1 METHOD AND APPARATUS FOR REDUCING SECURITY RISK IN A NETWORKED COMPUTER SYSTEM ARCHITECTURE
审中-公开
基本信息:
- 专利标题: METHOD AND APPARATUS FOR REDUCING SECURITY RISK IN A NETWORKED COMPUTER SYSTEM ARCHITECTURE
- 专利标题(中):用于降低联网计算机系统体系结构中的安全风险的方法和设备
- 申请号:PCT/US2017/026989 申请日:2017-04-11
- 公开(公告)号:WO2017180611A1 公开(公告)日:2017-10-19
- 发明人: TAMIR, Giora , HENDERSON, Lisa , BERNAL, Jose , BOYLE, Bryan
- 申请人: SERVICENOW, INC.
- 申请人地址: 2225 Lawson Lane Santa Clara, California 95054 US
- 专利权人: SERVICENOW, INC.
- 当前专利权人: SERVICENOW, INC.
- 当前专利权人地址: 2225 Lawson Lane Santa Clara, California 95054 US
- 代理机构: FLETCHER, Michael G. et al.
- 优先权: US15/096,715 20160412
- 主分类号: H04L29/06
- IPC分类号: H04L29/06 ; G06F21/57
摘要:
An apparatus and associated method are provided for reducing a security risk in a networked computer system architecture. The method comprises receiving at a security computer external vulnerability data from an external source regarding vulnerabilities associated with an attack vector for configuration item (CI) data related to a (CI) device, of the networked computer system. The security computer accesses a configuration management database (CMDB) and the CI data related to the physical device is read. Trust zone data associated with the CI device is determined utilizing the CMDB, and the security computer performs a vulnerability calculation for the CI device utilizing the external vulnerability data and associated trust zone data. This is also done for a second CI device. The vulnerability calculations for both are compared and this comparison serves as a basis for prioritizing an action to be taken on the CI device or associated other network components.
摘要(中):
提供了一种用于降低联网的计算机系统体系结构中的安全风险的设备和相关联的方法。 该方法包括在安全计算机处从外部源接收关于与针对联网计算机系统的(CI)设备的配置项目(CI)数据的攻击向量相关联的漏洞的外部漏洞数据。 安全计算机访问配置管理数据库(CMDB),读取与物理设备相关的CI数据。 利用CMDB确定与CI设备相关的信任区数据,并且安全计算机利用外部漏洞数据和相关的信任区数据为CI设备执行漏洞计算。 这也适用于第二个CI设备。 比较两者的漏洞计算结果,并将此比较作为优先处理CI设备或相关其他网络组件的操作的基础。