System and method for identifying system vulnerabilities

Assignee

• Nationwide Mutual Insurance Company · US

Inventors

• David Clark · Kingwood, US
• Kevin J. Sullivan · Medfield, US
• Jane L M Kuberski · Pickerington, US
• Paul J. Melko, Jr. · Westerville, US
• Narayanasamy Balakrishnan · Gahanna, US
• Koen Klaas Kuiken · Whitehall, US
• Travis Ray Lenocker · Delaware, US
• Zachary J. Eyen · Columbus, US
• Shad Cummins · Powell, US
• David W. Daniel · Vancouver, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F21/577
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

The invention relates to detecting vulnerabilities in technology infrastructure environments. Data describing vulnerabilities detected in a technological environment of an enterprise is obtained. The vulnerability data is combined with data relating to servers, applications associated with the servers, and business functions associated with the applications, within the technological environment of the enterprise in order to create enriched data. The enriched data is enhanced using one or more of the following proceses: deduplicating records in the enriched data; modifying of a severity assigned to vulnerabilities based on one or more enterprise-infrastructure factors; archiving and purging of records included in the enriched data; consolidating IP addresses associated with the vulnerabilities; excepting records in the enriched data for vulnerabilities undergoing active remediation; and validating the enriched data. After the enriched data is enhanced, it may be sorted in accordance with one or more filters. The sorted data may then be displayed for further analysis.