Runtime filtering of computer system vulnerabilities
US11507672B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Jan 12, 2022 |
| Grant date | Nov 22, 2022 |
| Priority date | — |
| Expiry date | Jan 12, 2042 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F2221/033
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
Techniques for selectively remediating vulnerabilities for assets of a computing system is disclosed. The vulnerability management system identifies “active” vulnerabilities associated with “active” computing assets that have been determined to be currently running, or to have been recently run, on the system using system call data. By limiting remediation to vulnerabilities associated with software packages of active computing assets, remediation/mediation efforts can be focused on vulnerabilities that may be currently exploited for the system. The list of active vulnerabilities identified for a system may be updated in real time based on continued monitoring of runtime operations of the system. Additional context metadata may be associated with the active vulnerabilities to allow for further prioritization of vulnerability management activities. Vulnerability management actions for particular active vulnerability may include updating a software package, adjusting a set of firewall rules, communicating with a client computing device, and displaying vulnerability information in a GUI.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.