Systems and methods for managing and monitoring continuous attestation of security requirements
US12039546B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Sep 13, 2019 |
| Grant date | Jul 16, 2024 |
| Priority date | — |
| Expiry date | May 18, 2042 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/083
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A system includes buyer portal logic enabling a buyer to specify security requirements for attestation by a supplier. The system includes attestation program logic enabling the supplier to define a continuous attestation program for the security requirements through a supplier interface provided by supplier portal logic. The continuation attestation program includes an annual attestation program and a sub-annual attestation program. The system receives compliance attestation responses from the supplier for the security requirements and correlates the compliance attestation responses to the continuous attestation program for the supplier. The system enables the supplier to specify an access privilege for the buyer with regard to the supplier's sub-annual continuous attestation program data and/or annual attestation program data. The system generates compliance evaluation metrics for the supplier in real-time, which includes an overall risk level for the supplier, and exposes in real-time the overall risk level for the supplier to the buyer.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.