US20190362274A1 - Conformance authority reconciliation - Google Patents

Conformance authority reconciliation Download PDF

Info

Publication number
US20190362274A1
US20190362274A1 US16/436,551 US201916436551A US2019362274A1 US 20190362274 A1 US20190362274 A1 US 20190362274A1 US 201916436551 A US201916436551 A US 201916436551A US 2019362274 A1 US2019362274 A1 US 2019362274A1
Authority
US
United States
Prior art keywords
change
data processing
guidelines
facilitating
various embodiments
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Abandoned
Application number
US16/436,551
Inventor
Robert DiFalco
Kenneth L. Keeler
Robert L. Warmack
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Tripwire Inc
Original Assignee
Tripwire Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Tripwire Inc filed Critical Tripwire Inc
Priority to US16/436,551 priority Critical patent/US20190362274A1/en
Publication of US20190362274A1 publication Critical patent/US20190362274A1/en
Assigned to TRIPWIRE, INC. reassignment TRIPWIRE, INC. ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: KEELER, KENNETH L., DIFALCO, ROBERT A., WARMACK, ROBERT L.
Assigned to GOLUB CAPITAL MARKETS LLC, AS COLLATERAL AGENT reassignment GOLUB CAPITAL MARKETS LLC, AS COLLATERAL AGENT SECOND LIEN INTELLECTUAL PROPERTY SECURITY AGREEMENT Assignors: TRIPWIRE, INC.
Assigned to JEFFERIES FINANCE LLC, AS COLLATERAL AGENT reassignment JEFFERIES FINANCE LLC, AS COLLATERAL AGENT FIRST LIEN INTELLECTUAL PROPERTY SECURITY AGREEMENT Assignors: TRIPWIRE, INC.
Abandoned legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q10/00Administration; Management
    • G06Q10/06Resources, workflows, human or project management; Enterprise or organisation planning; Enterprise or organisation modelling
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/10File systems; File servers
    • G06F16/11File system administration, e.g. details of archiving or snapshots
    • G06F16/128Details of file system snapshots on the file-level, e.g. snapshot creation, administration, deletion
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0866Checking the configuration

Definitions

  • Disclosed embodiments of the present invention relate generally to the field of data processing, and more particularly to conformance authority reconciliation in data processing environments.
  • Data processing devices are deployed in many different configurations and are used for many different applications in a variety of data processing environments. Management of a data processing environment may be performed in a number of nonexclusive ways. Changes may occur to data processing devices of a data processing environment. Compliance with various regulatory and/or other guidelines may be impacted by these changes.
  • FIG. 1 illustrates some aspects of a data processing environment, in accordance with various embodiments of this invention
  • FIG. 2 illustrates some aspects of an application of guidelines in the context of a data processing device, in accordance with various embodiments of this invention
  • FIG. 3 illustrates parts of a conformance authority reconciliation workflow, in accordance with various embodiments of this invention.
  • FIG. 4 illustrates an example computer system suitable for use in association with conformance authority reconciliation, in accordance with various embodiments of this invention.
  • Embodiments of the present invention include, but are not limited to, an automated method for facilitating management of a data processing environment.
  • the method may include facilitating detecting of a change to an element of a data processing device of the data processing environment.
  • the method may further include facilitating reconciling the change with a conformance authority, the conformance authority having one or more guidelines.
  • Other embodiments of the present invention may include, but are not limited to, apparatuses adapted to facilitate practice of the above-described method. While portions of the following discussion may be primarily presented in the context of specific types of data processing devices, it is understood that the principles described herein apply to a broad range of data processing devices.
  • processors include microprocessors, micro-controllers, digital signal processors, and the like, that are standalone, adjunct or embedded.
  • Some embodiments of the present invention include a scalable architecture to facilitate conformance authority reconciliation in data processing environments containing data processing devices.
  • data processing devices may include, but are not limited to, networking devices, servers, desktop computers, laptop computers, tablet computers, personal digital assistants, cellular phones, set top boxes, media players, or other types of data processing devices.
  • a data processing environment may comprise a continuously or intermittently connected environment of data processing devices, including data processing devices communicating through the Internet.
  • a data processing environment may comprise a directly or indirectly connected environment of data processing devices, including data processing devices communicating through the Internet.
  • one or more modules may facilitate the operations described herein.
  • FIG. 1 illustrates some aspects of data processing environment 100 , in accordance with various embodiments of this invention.
  • Data processing environment 100 may include data processing device 102 .
  • Data processing environment 100 may include other data processing devices of one or more types.
  • data processing device 102 may comprise a computer, such as a server or a desktop computer.
  • data processing device 102 may comprise another type of data processing device, such as, a networking device (a router, a switch, a gateway, or the like), a laptop computer, a tablet computer, a personal data assistant, a cellular phone, a set top box, a media player, or the like.
  • a networking device a router, a switch, a gateway, or the like
  • change detection agent 104 may facilitate detecting of a change to an element (not shown) of data processing device 102 of data processing environment 100 .
  • an element may comprise, for example, a file of data processing device 102 .
  • an element may comprise another component of data processing device 102 .
  • change detection agent 104 may detected a change in an element and may memorialize the change detected in change memorialization 106 .
  • change memorialization 106 may comprise a memorialization of one or more changes detected on one or more elements of data processing device 102 .
  • change memorialization 106 may comprise a file. In various embodiments, change memorialization 106 may comprise a different type of memorialization of a change detected.
  • change detection agent 104 may facilitate detecting a change by facilitating taking a snapshot of a current state (not shown) of an element of data processing device 102 , and may further compare the snapshot to a previously taken snapshot (not shown) of the element. In various embodiments, change detection agent 104 may facilitate taking a snapshot of a current state of an element of data processing device 102 in the course of facilitating taking a snapshot of a set of elements of data processing device 102 .
  • the previously taken snapshot may include a baseline state of the element, with FIG. 1 illustrating some such embodiments with baseline memorialization 108 including a baseline state of the element.
  • a baseline of an element may include a known, good state of the element.
  • a baseline of an element may include another state of the element.
  • the previously taken snapshot may represent a state other than a current baseline state.
  • change detection agent 104 may facilitate obtaining the previously taken snapshot of the element.
  • the previously taken snapshot of the element may be obtained in another manner.
  • change detection agent 104 may facilitate reconciling the change with conformance authority 110 .
  • conformance authority 110 may comprise a policy-based management tool.
  • conformance authority 110 may comprise a configuration management tool.
  • conformance authority 110 may comprise another type of conformance authority.
  • Conformance authority 110 may contain one or more guidelines, illustrated as guidelines 112 , pertaining to one or more data processing devices.
  • the one or more guidelines may be segmented and used by conformance authority 110 in any number of ways, including, but not limited to, having subsets of guidelines for specific data processing devices, having subsets of guidelines for certain types of data processing devices, having subsets of guidelines for designated groups of data processing devices, and the like.
  • conformance authority 110 may contain one or more such subsets of guidelines within its guidelines 112 .
  • change detection agent 104 may facilitate reconciling the change by determining whether at least one of the guidelines of conformance authority 110 relates to at least a subset of the element where the change was detected. For example, change detection agent 104 may detect a change to an element of data processing device 102 , but guidelines 112 of conformance authority 110 may not encompass the element at issue, or guidelines 112 may encompass the element at issue, but may not encompass the subset of the element where the change was detected. In various embodiments, change detection agent 104 may facilitate reconciling the change in another manner.
  • change detection agent 104 may facilitate reconciling the change by determining whether the detected change violates at least one guideline of guidelines 112 .
  • An exemplar is provided in FIG. 2 , providing more detail on some operations involved in such a process, in accordance with various embodiments.
  • change detection agent 104 may facilitate reconciling the change in another manner.
  • the facilitating detecting of a change and the facilitating reconciling the change may be first performed at a first point in time, with further operations repeating the facilitating detecting and the facilitating reconciling at least once, at a second later point in time.
  • further operations may comprise scheduling the repeating of the facilitating detecting and the facilitating reconciling at the second later point in time.
  • a further operation of reporting the change supplemented with a performance parameter of data processing device 102 may be provided.
  • a performance parameter may include, but not be limited to, transactions per time period processed.
  • a further operation may be provided of reporting the change among a plurality of detected changes, the reporting supplemented with one or more performance parameters of a plurality of data processing devices of a data processing environment.
  • Such a performance parameter may include, but not be limited to, network outages.
  • Such reporting may be used as a basis for an operational analysis of a data processing device and/or a data processing environment, and may provide a basis for changing the guidelines used.
  • FIG. 2 illustrates some aspects of an application 200 of guidelines in the context of a data processing device, in accordance with various embodiments of this invention.
  • Router 202 may have one or more elements associated with it, including but not limited to, start-up configuration 204 .
  • an element of a data processing device may reside on the data processing device.
  • an element of a data processing device may reside elsewhere in the data processing environment.
  • an element may be of one data processing device, while in various other embodiments, an element may be of multiple data processing devices.
  • router 202 is illustrated as an example data processing device in FIG. 2
  • various embodiments of the invention may apply to a wide range of data processing devices, such as, but not limited to, other networking devices, servers, desktop computers, laptop computers, tablet computers, personal digital assistants, cellular phones, set top boxes, media players, and the like.
  • facilitating detecting of a change and facilitating reconciling the change with a conformance authority may occur within a data processing environment containing a heterogeneous mixture of data processing devices.
  • such facilitating detecting and reconciling may occur within other kinds of data processing environments. While certain operations will be described in discussing FIG. 2 , other operations may supplement or supplant the operations shown, in the context of various embodiments.
  • Start-up configuration 204 may have content classifiable as subsets of start-up configuration 204 , such as, but not limited to, parameters.
  • One such parameter may be a time to live (TTL) parameter.
  • TTL time to live
  • a change may occur to the TTL parameter in start-up configuration 204 , such as, for example, by a network administrator making the change.
  • a change detection agent may detect such a change, as illustrated in FIG. 1 .
  • the change detection agent (not shown in FIG. 2 ) may then facilitate reconciling the change with guidelines 206 of a conformance authority (not shown).
  • guidelines 206 encompassing a TTL parameter
  • conformance of the changed TTL parameter may be reconciled with the TTL range provided by guidelines 206 .
  • TTL parameter is used herein as just one example of a possible operational context of various embodiments.
  • Another such exemplar may be guidelines being used in the context of a registry, where a change is detected in a setting of the registry, and reconciliation of the change with guidelines for the registry is facilitated.
  • Many such operational contexts are possible, such as facilitating conformance of a security parameter on detection of a change with the security parameter, as would be readily apparent to one skilled in the art.
  • the subset of the element where the change was detected may be reconciled with the relevant conformance authority guideline(s).
  • the operational context may involve less granularity, and facilitating reconciling the change with a conformance authority may comprise facilitating the conformance authority in asserting all of its guidelines for the changed element against the element to determine if the element is in conformance.
  • Guidelines 206 may comprise guidelines in a wide range of formats, including but not limited to, one or more searches of expressions. In some such embodiments, guidelines 206 may serve to ensure a certain expression either does or does not exist within the element at issue. In some other such embodiments, guidelines 206 may encompass accompanying specified values, or ranges of values, for the expressions. In various other embodiments, guidelines 206 may involve other operations, structure, and the like, to provide a basis for the conformance authority to determine conformance.
  • FIG. 3 illustrates parts of a conformance authority reconciliation workflow 300 , in accordance with various embodiments of this invention. While certain operations are illustrated in FIG. 3 , other operations may supplement or supplant the operations shown, in the context of various embodiments.
  • Conformance authority reconciliation workflow 300 may include various operations, including operation, Perform Change Detection 302 , where a change detection agent may perform one or more change detection operations to a data processing device. Perform Change Detection 302 may be followed by an operation determining whether changes were detected as a result of performing the one or more change detection operations, denoted as Changes Detected? 304 . In various embodiments, some change detection agents that perform operation, Changes Detected? 304 , may additionally or alternatively include other operations.
  • operation 304 is determined in the affirmative, then operation, Reconcilable with Conformance Authority? 306 , may follow in some embodiments. If operation 304 is determined in the negative, then operation, Perform Change Detection 302 , may follow in some embodiments, either immediately, after a delay, at a future scheduled time, etc. In various other embodiments, operation 304 being determined in the negative may be followed by another operation (not shown) or may comprise an endpoint, either temporary or otherwise.
  • Baseline 308 may include changing a baseline of an element of a data processing device to incorporate the change or changes detected in operation 304 .
  • Baseline 308 may include additional or alternative sub-operations.
  • a baseline of an element may include a full version of the element.
  • a baseline of an element may include a text version of the element.
  • the baseline of the file may include a text version of the file.
  • a baseline of an element may additionally or alternatively include other things, including but not limited to, attributes of the element.
  • one or more additional operations other than Baseline 308 may follow an affirmative determination of Reconcilable with Conformance Authority? 306 ,
  • operation 306 being determined in the affirmative may be followed by modifying a severity state of the detected change (not shown), such as decreasing it.
  • operation 306 being determined in the affirmative may be followed by automatic approval of the detected change(s) without modification to the baseline state.
  • no response may follow an affirmative determination of Reconcilable with Conformance Authority? 306 .
  • Alert 310 may include alerting the nonconformance of a detected change. Alerting the nonconformance of a detected change may take many forms, according to various embodiments, including but not limited to, creating a helpdesk incident, alerting with a severity state indicator of the change in a graphical user interface (GUI), notifying a user (for example, a system administrator) of the nonconforming change, reverting the element, or a portion of the element, back to its baseline state, etc.
  • GUI graphical user interface
  • operation 306 being determined in the negative may be followed by modifying a severity state of the change detected, such as increasing it.
  • Alert 310 may include facilitating a user to modify the element at issue to conform to at least one of the one or more guidelines of a conformance authority.
  • such facilitation may include reporting the one or more guidelines that were violated by the detected change.
  • such facilitation may include other sub-operations.
  • operation 306 being determined in the negative may be followed by various other operations.
  • the sophistication of operation 306 may vary widely, depending on the implementation and the information available to make the reconciliation.
  • a further operation of determining one or more users associated with the detected change may be included.
  • Alert 310 may include the one or more users associated with the detected change.
  • the one or more users associated with the detected change may be the user(s) determined to have caused the change.
  • conformance authority reconciliation may be performed to maintain or demonstrate control of an enterprise's information technology infrastructure. In various embodiments, conformance authority reconciliation may be performed to maintain or demonstrate control of an enterprise's financial systems or data. In various embodiments, conformance authority reconciliation may be performed to maintain or demonstrate control of an enterprise's business processes, such as, for example, enterprise resource planning (ERP) or customer relationship management (CRM). In various embodiments, conformance authority reconciliation may be performed to facilitate compliance with governmental laws/regulations regarding establishment and maintenance of an internal control structure and/or procedures for financial reporting, such as, for example, the Sarbanes-Oxley Act (the Public Company Accounting Reform and Investor Protection Act), including any amendments and/or successor Acts to any part of the Sarbanes-Oxley Act, or the like.
  • ERP enterprise resource planning
  • CRM customer relationship management
  • conformance authority reconciliation may be performed to facilitate compliance with a number of laws, regulations, or guidelines, including but not limited to, the Gramm Leach Bliley Act, the regulations of Food and Drug Administration 21 Code of Federal Regulations 11, the Health Insurance Portability & Accountability Act, the Visa Cardholder Information Security Plan, the Payment Card Industry (PCI) Data Security Standard, the National Credit Union Administration Guidelines, the Office of the Comptroller of the Currency Guidelines, the International Organization for Standardization 17799, Common Criteria Certification, California Civil Code Senate Bill 1386 (California Security Breach Information Act), or the like, including any amendments and/or successors to any of the above, or the like.
  • laws, regulations, or guidelines including but not limited to, the Gramm Leach Bliley Act, the regulations of Food and Drug Administration 21 Code of Federal Regulations 11, the Health Insurance Portability & Accountability Act, the Visa Cardholder Information Security Plan, the Payment Card Industry (PCI) Data Security Standard, the National Credit Union Administration Guidelines, the Office of the Comptroller of the Currency Guidelines, the International
  • conformance authority reconciliation may be performed as part of an audit of an enterprise, including but not limited to, a financial accounting or statement audit. In some such embodiments, conformance authority reconciliation may be performed to at least provide an audit trail for said audit.
  • conformance authority reconciliation is performed to maintain or demonstrate control of an enterprise's information technology infrastructure, financial systems or data, or business processes
  • use of conformance authority reconciliation may occur in a number of areas, including but not limited to, access control, network security, auditing and monitoring of security-related events, or the like.
  • said maintenance or demonstration of control may include other aspects of an enterprise's information technology infrastructure, financial systems or data, or business processes, respectively.
  • conformance authority reconciliation may occur in a number of areas, including but not limited to, access control, network security, auditing and monitoring of security-related events, or the like.
  • use of conformance authority reconciliation may include other aspects of an enterprise audit or regulatory compliance procedures, respectively.
  • FIG. 4 illustrates an example computer system suitable for use in association with out-of-band change detection, in accordance with various embodiments of this invention.
  • computer system 400 may include one or more processors 402 and may include system memory 404 .
  • computer system 400 may include mass Storage 406 in the form of one or more devices (such as diskette, hard drive, compact disk (CD), flash memory, and so forth), input/output devices 408 (such as keyboard, cursor control and so forth) and communication interfaces 410 (such as network interface cards, modems and so forth).
  • the elements may be coupled to each other via system bus 412 , which may represent one or more buses. In the case where system bus 412 represents multiple buses, the multiple buses may be bridged by one or more bus bridges (not shown).
  • communication interfaces 410 may facilitate coupling of computing system 400 to a network, though which computing system 400 may be coupled to data processing device 102 of FIG. 1 and so forth, as necessary.
  • computing system 400 may at least be partially incorporated in a data processing device, such as data processing device 102 of FIG. 1 .
  • System memory 404 and mass storage 406 may be employed to store a working copy and a permanent copy of the programming instructions implementing various aspects of the one or more earlier described embodiments of the present invention.
  • the programming instructions may at least partially implement a change control subsystem adapted to identify a change to an element of a data processing device of a data processing environment.
  • the change control subsystem may additionally or alternatively include other functionality.
  • the programming instructions may at least partially implement an audit subsystem coupled to the change control subsystem to provide an audit trail of reconciling the change with a conformance authority, the conformance authority having one or more guidelines.
  • the audit subsystem may additionally or alternatively include other functionality.
  • the permanent copy of the programming instructions may be loaded into mass storage 406 in the factory or in the field, through a distribution medium (not shown), or through communication interface 410 from, for example, a distribution server (not shown).
  • the constitution of these elements 402 - 412 are known, and accordingly will not be further described.
  • part or all of the one or more modules may be implemented in hardware, for example, using one or more Application Specific Integrated Circuits (ASICs) instead.
  • ASICs Application Specific Integrated Circuits
  • the method may include facilitating detecting of a change to an element of a data processing device of the data processing environment.
  • the method may further include facilitating reconciling the change with a conformance authority, the conformance authority having one or more guidelines.
  • Other embodiments of the present invention may include, but are not limited to, apparatuses adapted to facilitate practice of the above-described method. While the present invention has been described in terms of the foregoing embodiments, those skilled in the art will recognize that the invention is not limited to the embodiments described. Other embodiments may be practiced with modification and alteration within the spirit and scope of the appended claims. Accordingly, the description is to be regarded as illustrative instead of restrictive.

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Theoretical Computer Science (AREA)
  • Economics (AREA)
  • Entrepreneurship & Innovation (AREA)
  • Human Resources & Organizations (AREA)
  • Strategic Management (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Tourism & Hospitality (AREA)
  • Development Economics (AREA)
  • Quality & Reliability (AREA)
  • Marketing (AREA)
  • Game Theory and Decision Science (AREA)
  • General Business, Economics & Management (AREA)
  • Educational Administration (AREA)
  • Operations Research (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Mining & Analysis (AREA)
  • Databases & Information Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Medical Treatment And Welfare Office Work (AREA)

Abstract

An automated method for facilitating management of a data processing environment is disclosed. In various embodiments, the method may include facilitating detecting of a change to an element of a data processing device of the data processing environment. In various embodiments, the method may further include facilitating reconciling the change with a conformance authority, the conformance authority having one or more guidelines. Other embodiments of the present invention may include, but are not limited to, apparatuses adapted to facilitate practice of the above-described method.

Description

    FIELD
  • Disclosed embodiments of the present invention relate generally to the field of data processing, and more particularly to conformance authority reconciliation in data processing environments.
    • BACKGROUND
  • Data processing devices are deployed in many different configurations and are used for many different applications in a variety of data processing environments. Management of a data processing environment may be performed in a number of nonexclusive ways. Changes may occur to data processing devices of a data processing environment. Compliance with various regulatory and/or other guidelines may be impacted by these changes.
    • BRIEF DESCRIPTION OF THE DRAWINGS
  • Embodiments of the invention are illustrated by way of example and not by way of limitation in the figures of the accompanying drawings, in which like references indicate similar elements and in which:
  • FIG. 1 illustrates some aspects of a data processing environment, in accordance with various embodiments of this invention;
  • FIG. 2 illustrates some aspects of an application of guidelines in the context of a data processing device, in accordance with various embodiments of this invention;
  • FIG. 3 illustrates parts of a conformance authority reconciliation workflow, in accordance with various embodiments of this invention; and
  • FIG. 4 illustrates an example computer system suitable for use in association with conformance authority reconciliation, in accordance with various embodiments of this invention.
    •  DETAILED DESCRIPTION OF ILLUSTRATIVE EMBODIMENTS
  • Embodiments of the present invention include, but are not limited to, an automated method for facilitating management of a data processing environment. In various embodiments, the method may include facilitating detecting of a change to an element of a data processing device of the data processing environment. In various embodiments, the method may further include facilitating reconciling the change with a conformance authority, the conformance authority having one or more guidelines. Other embodiments of the present invention may include, but are not limited to, apparatuses adapted to facilitate practice of the above-described method. While portions of the following discussion may be primarily presented in the context of specific types of data processing devices, it is understood that the principles described herein apply to a broad range of data processing devices.
  • In the following description, various aspects of embodiments of the present invention will be described. However, it will be apparent to those skilled in the art that other embodiments may be practiced with only some or all of the described aspects. For purposes of explanation, specific numbers, materials and configurations are set forth in order to provide a thorough understanding of the embodiments. However, it will be apparent to one skilled in the art that other embodiments may be practiced without the specific details. In other instances, well-known features are omitted or simplified in order not to obscure the description.
  • Parts of the descriptions of various embodiments will be presented in terms of operations performed by a processor-based device, using terms such as data and the like, consistent with the manner commonly employed by those skilled in the art to convey the substance of their work to others skilled in the art. As well understood by those skilled in the art, the quantities may take the form of electrical, magnetic, or optical signals capable of being stored, transferred, combined, and otherwise manipulated through mechanical and electrical components of the processor-based device; and the term processor includes microprocessors, micro-controllers, digital signal processors, and the like, that are standalone, adjunct or embedded.
  • Various operations will be described as multiple discrete operations in turn, in a manner that is most helpful in understanding the embodiments, however, the order of description should not be construed as to imply that these operations are necessarily order dependent. In particular, these operations need not be performed in the order of presentation.
  • The phrase “in some embodiments” is used repeatedly. The phrase does not generally refer to the same group of embodiments, however, it may. The phrase “in various embodiments” is used repeatedly. The phrase does not generally refer to the same group of embodiments, however, it may. The terms “comprising,” “having” and “including” are synonymous, unless the context dictates otherwise.
  • Some embodiments of the present invention include a scalable architecture to facilitate conformance authority reconciliation in data processing environments containing data processing devices. Such data processing devices may include, but are not limited to, networking devices, servers, desktop computers, laptop computers, tablet computers, personal digital assistants, cellular phones, set top boxes, media players, or other types of data processing devices. In some embodiments, a data processing environment may comprise a continuously or intermittently connected environment of data processing devices, including data processing devices communicating through the Internet. In some embodiments, a data processing environment may comprise a directly or indirectly connected environment of data processing devices, including data processing devices communicating through the Internet. In various embodiments, one or more modules may facilitate the operations described herein.
  • FIG. 1 illustrates some aspects of data processing environment 100, in accordance with various embodiments of this invention. Data processing environment 100 may include data processing device 102. Data processing environment 100 may include other data processing devices of one or more types. In various embodiments, data processing device 102 may comprise a computer, such as a server or a desktop computer. In various embodiments, data processing device 102 may comprise another type of data processing device, such as, a networking device (a router, a switch, a gateway, or the like), a laptop computer, a tablet computer, a personal data assistant, a cellular phone, a set top box, a media player, or the like.
  • Illustrating a portion of a possible operational context in some embodiments, change detection agent 104 may facilitate detecting of a change to an element (not shown) of data processing device 102 of data processing environment 100. In various embodiments, an element may comprise, for example, a file of data processing device 102. In various embodiments, an element may comprise another component of data processing device 102. In various embodiments, change detection agent 104 may detected a change in an element and may memorialize the change detected in change memorialization 106. In various embodiments, change memorialization 106 may comprise a memorialization of one or more changes detected on one or more elements of data processing device 102.
  • In various embodiments, change memorialization 106 may comprise a file. In various embodiments, change memorialization 106 may comprise a different type of memorialization of a change detected. In various embodiments, change detection agent 104 may facilitate detecting a change by facilitating taking a snapshot of a current state (not shown) of an element of data processing device 102, and may further compare the snapshot to a previously taken snapshot (not shown) of the element. In various embodiments, change detection agent 104 may facilitate taking a snapshot of a current state of an element of data processing device 102 in the course of facilitating taking a snapshot of a set of elements of data processing device 102.
  • In some embodiments, the previously taken snapshot may include a baseline state of the element, with FIG. 1 illustrating some such embodiments with baseline memorialization 108 including a baseline state of the element. In various embodiments, a baseline of an element may include a known, good state of the element. In various other embodiments, a baseline of an element may include another state of the element. In some embodiments, the previously taken snapshot may represent a state other than a current baseline state. In some embodiments, change detection agent 104 may facilitate obtaining the previously taken snapshot of the element. In some embodiments, the previously taken snapshot of the element may be obtained in another manner.
  • Illustrating a portion of a possible operational context in various embodiments, change detection agent 104 may facilitate reconciling the change with conformance authority 110. In various embodiments, conformance authority 110 may comprise a policy-based management tool. In various embodiments, conformance authority 110 may comprise a configuration management tool. In various embodiments, conformance authority 110 may comprise another type of conformance authority. Conformance authority 110 may contain one or more guidelines, illustrated as guidelines 112, pertaining to one or more data processing devices. In various embodiments, the one or more guidelines may be segmented and used by conformance authority 110 in any number of ways, including, but not limited to, having subsets of guidelines for specific data processing devices, having subsets of guidelines for certain types of data processing devices, having subsets of guidelines for designated groups of data processing devices, and the like. In various embodiments, conformance authority 110 may contain one or more such subsets of guidelines within its guidelines 112.
  • In various embodiments, change detection agent 104 may facilitate reconciling the change by determining whether at least one of the guidelines of conformance authority 110 relates to at least a subset of the element where the change was detected. For example, change detection agent 104 may detect a change to an element of data processing device 102, but guidelines 112 of conformance authority 110 may not encompass the element at issue, or guidelines 112 may encompass the element at issue, but may not encompass the subset of the element where the change was detected. In various embodiments, change detection agent 104 may facilitate reconciling the change in another manner.
  • In various embodiments, change detection agent 104 may facilitate reconciling the change by determining whether the detected change violates at least one guideline of guidelines 112. An exemplar is provided in FIG. 2, providing more detail on some operations involved in such a process, in accordance with various embodiments. In various embodiments, change detection agent 104 may facilitate reconciling the change in another manner.
  • In various embodiments of data processing environment 100, the facilitating detecting of a change and the facilitating reconciling the change may be first performed at a first point in time, with further operations repeating the facilitating detecting and the facilitating reconciling at least once, at a second later point in time. In some such embodiments, further operations may comprise scheduling the repeating of the facilitating detecting and the facilitating reconciling at the second later point in time.
  • In various embodiments, a further operation of reporting the change supplemented with a performance parameter of data processing device 102 may be provided. Such a performance parameter may include, but not be limited to, transactions per time period processed. In various embodiments, a further operation may be provided of reporting the change among a plurality of detected changes, the reporting supplemented with one or more performance parameters of a plurality of data processing devices of a data processing environment. Such a performance parameter may include, but not be limited to, network outages. Such reporting may be used as a basis for an operational analysis of a data processing device and/or a data processing environment, and may provide a basis for changing the guidelines used.
  • FIG. 2 illustrates some aspects of an application 200 of guidelines in the context of a data processing device, in accordance with various embodiments of this invention. Router 202 may have one or more elements associated with it, including but not limited to, start-up configuration 204. In various embodiments, an element of a data processing device may reside on the data processing device. In various other embodiments, an element of a data processing device may reside elsewhere in the data processing environment. In various embodiments, an element may be of one data processing device, while in various other embodiments, an element may be of multiple data processing devices.
  • While router 202 is illustrated as an example data processing device in FIG. 2, various embodiments of the invention may apply to a wide range of data processing devices, such as, but not limited to, other networking devices, servers, desktop computers, laptop computers, tablet computers, personal digital assistants, cellular phones, set top boxes, media players, and the like. In various embodiments, facilitating detecting of a change and facilitating reconciling the change with a conformance authority may occur within a data processing environment containing a heterogeneous mixture of data processing devices. In various other embodiments, such facilitating detecting and reconciling may occur within other kinds of data processing environments. While certain operations will be described in discussing FIG. 2, other operations may supplement or supplant the operations shown, in the context of various embodiments.
  • Start-up configuration 204 may have content classifiable as subsets of start-up configuration 204, such as, but not limited to, parameters. One such parameter may be a time to live (TTL) parameter. A change may occur to the TTL parameter in start-up configuration 204, such as, for example, by a network administrator making the change. A change detection agent may detect such a change, as illustrated in FIG. 1. The change detection agent (not shown in FIG. 2) may then facilitate reconciling the change with guidelines 206 of a conformance authority (not shown). In the example of guidelines 206 encompassing a TTL parameter, conformance of the changed TTL parameter may be reconciled with the TTL range provided by guidelines 206. If the changed TTL parameter is determined to be outside of the range provided by guidelines 206, then a number of operations may occur in various embodiments, as discussed in more detail in relation to FIG. 3. A TTL parameter is used herein as just one example of a possible operational context of various embodiments. Another such exemplar may be guidelines being used in the context of a registry, where a change is detected in a setting of the registry, and reconciliation of the change with guidelines for the registry is facilitated. Many such operational contexts are possible, such as facilitating conformance of a security parameter on detection of a change with the security parameter, as would be readily apparent to one skilled in the art.
  • In various embodiments, the subset of the element where the change was detected may be reconciled with the relevant conformance authority guideline(s). In various other embodiments, the operational context may involve less granularity, and facilitating reconciling the change with a conformance authority may comprise facilitating the conformance authority in asserting all of its guidelines for the changed element against the element to determine if the element is in conformance. Guidelines 206 may comprise guidelines in a wide range of formats, including but not limited to, one or more searches of expressions. In some such embodiments, guidelines 206 may serve to ensure a certain expression either does or does not exist within the element at issue. In some other such embodiments, guidelines 206 may encompass accompanying specified values, or ranges of values, for the expressions. In various other embodiments, guidelines 206 may involve other operations, structure, and the like, to provide a basis for the conformance authority to determine conformance.
  • FIG. 3 illustrates parts of a conformance authority reconciliation workflow 300, in accordance with various embodiments of this invention. While certain operations are illustrated in FIG. 3, other operations may supplement or supplant the operations shown, in the context of various embodiments. Conformance authority reconciliation workflow 300 may include various operations, including operation, Perform Change Detection 302, where a change detection agent may perform one or more change detection operations to a data processing device. Perform Change Detection 302 may be followed by an operation determining whether changes were detected as a result of performing the one or more change detection operations, denoted as Changes Detected? 304. In various embodiments, some change detection agents that perform operation, Changes Detected? 304, may additionally or alternatively include other operations.
  • If operation 304 is determined in the affirmative, then operation, Reconcilable with Conformance Authority? 306, may follow in some embodiments. If operation 304 is determined in the negative, then operation, Perform Change Detection 302, may follow in some embodiments, either immediately, after a delay, at a future scheduled time, etc. In various other embodiments, operation 304 being determined in the negative may be followed by another operation (not shown) or may comprise an endpoint, either temporary or otherwise.
  • If Reconcilable with Conformance Authority? 306 is determined in the affirmative, then operation, Baseline 308, may follow in various embodiments. In various embodiments, Baseline 308 may include changing a baseline of an element of a data processing device to incorporate the change or changes detected in operation 304. In various embodiments, Baseline 308 may include additional or alternative sub-operations. In various embodiments, a baseline of an element may include a full version of the element. In various embodiments, a baseline of an element may include a text version of the element. In one such embodiment in the case where the element is a file, the baseline of the file may include a text version of the file. In various other embodiments, a baseline of an element may additionally or alternatively include other things, including but not limited to, attributes of the element.
  • In various embodiments, one or more additional operations other than Baseline 308 may follow an affirmative determination of Reconcilable with Conformance Authority? 306, In various embodiments, operation 306 being determined in the affirmative may be followed by modifying a severity state of the detected change (not shown), such as decreasing it. In various embodiments, operation 306 being determined in the affirmative may be followed by automatic approval of the detected change(s) without modification to the baseline state. In some other embodiments, no response may follow an affirmative determination of Reconcilable with Conformance Authority? 306.
  • If Reconcilable with Conformance Authority? 306 is determined in the negative, then operation, Alert 310, may follow in various embodiments. In various embodiments, Alert 310 may include alerting the nonconformance of a detected change. Alerting the nonconformance of a detected change may take many forms, according to various embodiments, including but not limited to, creating a helpdesk incident, alerting with a severity state indicator of the change in a graphical user interface (GUI), notifying a user (for example, a system administrator) of the nonconforming change, reverting the element, or a portion of the element, back to its baseline state, etc. In various embodiments, operation 306 being determined in the negative may be followed by modifying a severity state of the change detected, such as increasing it. In various embodiments, Alert 310 may include facilitating a user to modify the element at issue to conform to at least one of the one or more guidelines of a conformance authority. In some embodiments, such facilitation may include reporting the one or more guidelines that were violated by the detected change. In various embodiments, such facilitation may include other sub-operations.
  • In various other embodiments, operation 306 being determined in the negative may be followed by various other operations. The sophistication of operation 306 may vary widely, depending on the implementation and the information available to make the reconciliation. In various embodiments, a further operation of determining one or more users associated with the detected change may be included. In various embodiments, Alert 310 may include the one or more users associated with the detected change. In some embodiments, the one or more users associated with the detected change may be the user(s) determined to have caused the change.
  • In various embodiments, conformance authority reconciliation may be performed to maintain or demonstrate control of an enterprise's information technology infrastructure. In various embodiments, conformance authority reconciliation may be performed to maintain or demonstrate control of an enterprise's financial systems or data. In various embodiments, conformance authority reconciliation may be performed to maintain or demonstrate control of an enterprise's business processes, such as, for example, enterprise resource planning (ERP) or customer relationship management (CRM). In various embodiments, conformance authority reconciliation may be performed to facilitate compliance with governmental laws/regulations regarding establishment and maintenance of an internal control structure and/or procedures for financial reporting, such as, for example, the Sarbanes-Oxley Act (the Public Company Accounting Reform and Investor Protection Act), including any amendments and/or successor Acts to any part of the Sarbanes-Oxley Act, or the like.
  • In various embodiments, conformance authority reconciliation may be performed to facilitate compliance with a number of laws, regulations, or guidelines, including but not limited to, the Gramm Leach Bliley Act, the regulations of Food and Drug Administration 21 Code of Federal Regulations 11, the Health Insurance Portability & Accountability Act, the Visa Cardholder Information Security Plan, the Payment Card Industry (PCI) Data Security Standard, the National Credit Union Administration Guidelines, the Office of the Comptroller of the Currency Guidelines, the International Organization for Standardization 17799, Common Criteria Certification, California Civil Code Senate Bill 1386 (California Security Breach Information Act), or the like, including any amendments and/or successors to any of the above, or the like.
  • In various embodiments, conformance authority reconciliation may be performed as part of an audit of an enterprise, including but not limited to, a financial accounting or statement audit. In some such embodiments, conformance authority reconciliation may be performed to at least provide an audit trail for said audit.
  • In various embodiments where conformance authority reconciliation is performed to maintain or demonstrate control of an enterprise's information technology infrastructure, financial systems or data, or business processes, use of conformance authority reconciliation may occur in a number of areas, including but not limited to, access control, network security, auditing and monitoring of security-related events, or the like. In various embodiments where conformance authority reconciliation is performed to maintain or demonstrate control of an enterprise's information technology infrastructure, financial systems or data, or business processes, said maintenance or demonstration of control may include other aspects of an enterprise's information technology infrastructure, financial systems or data, or business processes, respectively.
  • In various embodiments where conformance authority reconciliation is performed as part of an audit of an enterprise, or to facilitate compliance with governmental laws/regulations, use of conformance authority reconciliation may occur in a number of areas, including but not limited to, access control, network security, auditing and monitoring of security-related events, or the like. In various other embodiments, where conformance authority reconciliation is performed as part of an audit of an enterprise, or to facilitate compliance with governmental laws/regulations, use of conformance authority reconciliation may include other aspects of an enterprise audit or regulatory compliance procedures, respectively.
  • FIG. 4 illustrates an example computer system suitable for use in association with out-of-band change detection, in accordance with various embodiments of this invention. As shown, computer system 400 may include one or more processors 402 and may include system memory 404. Additionally, computer system 400 may include mass Storage 406 in the form of one or more devices (such as diskette, hard drive, compact disk (CD), flash memory, and so forth), input/output devices 408 (such as keyboard, cursor control and so forth) and communication interfaces 410 (such as network interface cards, modems and so forth). The elements may be coupled to each other via system bus 412, which may represent one or more buses. In the case where system bus 412 represents multiple buses, the multiple buses may be bridged by one or more bus bridges (not shown).
  • These elements each perform their conventional functions known in the art. In various embodiments, communication interfaces 410 may facilitate coupling of computing system 400 to a network, though which computing system 400 may be coupled to data processing device 102 of FIG. 1 and so forth, as necessary. In various embodiments, computing system 400 may at least be partially incorporated in a data processing device, such as data processing device 102 of FIG. 1. System memory 404 and mass storage 406 may be employed to store a working copy and a permanent copy of the programming instructions implementing various aspects of the one or more earlier described embodiments of the present invention. In various embodiments, the programming instructions may at least partially implement a change control subsystem adapted to identify a change to an element of a data processing device of a data processing environment. In various embodiments, the change control subsystem may additionally or alternatively include other functionality. In various embodiments, the programming instructions may at least partially implement an audit subsystem coupled to the change control subsystem to provide an audit trail of reconciling the change with a conformance authority, the conformance authority having one or more guidelines. In various embodiments, the audit subsystem may additionally or alternatively include other functionality.
  • The permanent copy of the programming instructions may be loaded into mass storage 406 in the factory or in the field, through a distribution medium (not shown), or through communication interface 410 from, for example, a distribution server (not shown). The constitution of these elements 402-412 are known, and accordingly will not be further described. In alternate embodiments, part or all of the one or more modules may be implemented in hardware, for example, using one or more Application Specific Integrated Circuits (ASICs) instead.
  • Thus, it can be seen from the above description, an automated method for facilitating management of a data processing environment is described. In various embodiments, the method may include facilitating detecting of a change to an element of a data processing device of the data processing environment. In various embodiments, the method may further include facilitating reconciling the change with a conformance authority, the conformance authority having one or more guidelines. Other embodiments of the present invention may include, but are not limited to, apparatuses adapted to facilitate practice of the above-described method. While the present invention has been described in terms of the foregoing embodiments, those skilled in the art will recognize that the invention is not limited to the embodiments described. Other embodiments may be practiced with modification and alteration within the spirit and scope of the appended claims. Accordingly, the description is to be regarded as illustrative instead of restrictive.

Claims (23)

1. An automated method for facilitating management of a data processing environment comprising:
facilitating detecting of a change to an element of a data processing device of the data processing environment; and
facilitating reconciling the change with a conformance authority, the conformance authority having one or more guidelines.
2. The method of claim 1, wherein facilitating detecting comprises facilitating taking a snapshot of a current state of the element, and comparing the snapshot to a previously taken snapshot of a prior state of the element.
3. The method of claim 2, wherein the prior state is the baseline state.
4. The method of claim 1, wherein facilitating reconciling the change comprises determining whether at least one of the one or more guidelines of the conformance authority relates to at least a subset of the element where the change was detected.
5. The method of claim 1, wherein facilitating reconciling the change comprises determining whether the change detected violates at least one of the one or more guidelines.
6. The method of claim 5, wherein the method further comprises facilitating definition of one or more responses on determining whether the change detected violates at least one of the one or more guidelines, wherein (a) the one or more responses include modifying a severity state of the change detected, (b) the one or more responses include a baseline response, and/or (c) the one or more responses include an alert response.
7.-9. (canceled)
10. The method of claim 9, wherein the alert response includes facilitating a user to modify the element to conform to at least one of the one or more guidelines of the conformance authority.
11. The method of claim 1, further comprising facilitating determining one or more users associated with the change.
12. The method of claim 1, further comprising reporting the change supplemented with a performance parameter of the data processing device.
13. The method of claim 1, further comprising reporting the change among a plurality of detected changes, the reporting supplemented with one or more performance parameters of a plurality of data processing devices.
14. (canceled)
15. The method of claim 1, wherein the data processing device is a device selected from the group consisting of a networking device, a server, a desktop computer, a laptop computer, a tablet computer, a personal digital assistant, a cellular phone, a set top box, and a media player.
16.-21. (canceled)
22. An apparatus comprising:
a storage medium having stored therein instructions adapted to enable the apparatus to
facilitate detection of a change to an element of a data processing device of a data processing environment, and
facilitate reconciliation of the change with a conformance authority, the conformance authority having one or more guidelines; and
a processor coupled to the storage medium and adapted to execute the instructions.
23. The apparatus of claim 22, wherein the instructions are further adapted to enable the apparatus to facilitate detection of the change by at least taking a snapshot of a current state of the element, and comparing the snapshot to a previously taken snapshot of a prior state of the element.
24. The apparatus of claim 22, wherein the instructions are further adapted to enable the apparatus to facilitate reconciliation of the change by at least determining whether at least one of the one or more guidelines of the conformance authority relates to at least a subset of the element where the change was detected.
25. The apparatus of claim 22, wherein the instructions are further adapted to enable the apparatus to facilitate reconciliation of the change by at least determining whether the change detected violates at least one of the one or more guidelines.
26. The apparatus of claim 25, wherein the instructions are further adapted to enable the apparatus to facilitate definition of one or more responses upon the reconciliation module determining whether the change detected violates at least one of the one or more guidelines.
27. The apparatus of claim 26, wherein the one or more responses include an alert response.
28. The apparatus of claim 26, wherein the one or more responses include an elevate to baseline response.
29. The apparatus of claim 22, wherein the apparatus is further adapted to maintain or demonstrate control of one or more selected from the group consisting of an enterprise's information technology infrastructure, an enterprise's financial systems, an enterprise's financial data and an enterprise's business processes.
30. An apparatus comprising:
a change control subsystem adapted to identify a change to an element of a data processing device of a data processing environment; and
an audit subsystem coupled to the change control subsystem to provide an audit trail of reconciling the change with a conformance authority, the conformance authority having one or more guidelines.
US16/436,551 2005-08-16 2019-06-10 Conformance authority reconciliation Abandoned US20190362274A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US16/436,551 US20190362274A1 (en) 2005-08-16 2019-06-10 Conformance authority reconciliation

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US11/205,586 US10318894B2 (en) 2005-08-16 2005-08-16 Conformance authority reconciliation
US16/436,551 US20190362274A1 (en) 2005-08-16 2019-06-10 Conformance authority reconciliation

Related Parent Applications (1)

Application Number Title Priority Date Filing Date
US11/205,586 Continuation US10318894B2 (en) 2005-08-16 2005-08-16 Conformance authority reconciliation

Publications (1)

Publication Number Publication Date
US20190362274A1 true US20190362274A1 (en) 2019-11-28

Family

ID=37758403

Family Applications (2)

Application Number Title Priority Date Filing Date
US11/205,586 Active 2027-06-16 US10318894B2 (en) 2005-08-16 2005-08-16 Conformance authority reconciliation
US16/436,551 Abandoned US20190362274A1 (en) 2005-08-16 2019-06-10 Conformance authority reconciliation

Family Applications Before (1)

Application Number Title Priority Date Filing Date
US11/205,586 Active 2027-06-16 US10318894B2 (en) 2005-08-16 2005-08-16 Conformance authority reconciliation

Country Status (2)

Country Link
US (2) US10318894B2 (en)
WO (1) WO2007022363A2 (en)

Families Citing this family (30)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8140635B2 (en) 2005-03-31 2012-03-20 Tripwire, Inc. Data processing environment change management methods and apparatuses
WO2007021823A2 (en) 2005-08-09 2007-02-22 Tripwire, Inc. Information technology governance and controls methods and apparatuses
US8914341B2 (en) 2008-07-03 2014-12-16 Tripwire, Inc. Method and apparatus for continuous compliance assessment
US8600996B2 (en) * 2009-12-08 2013-12-03 Tripwire, Inc. Use of inference techniques to facilitate categorization of system change information
US9741017B2 (en) * 2009-12-08 2017-08-22 Tripwire, Inc. Interpreting categorized change information in order to build and maintain change catalogs
US8996684B2 (en) * 2009-12-08 2015-03-31 Tripwire, Inc. Scoring and interpreting change data through inference by correlating with change catalogs
US8875129B2 (en) * 2010-02-05 2014-10-28 Tripwire, Inc. Systems and methods for monitoring and alerting events that virtual machine software produces in a virtual infrastructure
US8868987B2 (en) * 2010-02-05 2014-10-21 Tripwire, Inc. Systems and methods for visual correlation of log events, configuration changes and conditions producing alerts in a virtual infrastructure
US8566823B2 (en) 2010-02-05 2013-10-22 Tripwire, Inc. Systems and methods for triggering scripts based upon an alert within a virtual infrastructure
US9124640B2 (en) 2011-08-09 2015-09-01 CloudPassage, Inc. Systems and methods for implementing computer security
US8412945B2 (en) 2011-08-09 2013-04-02 CloudPassage, Inc. Systems and methods for implementing security in a cloud computing environment
US9922055B2 (en) 2011-08-29 2018-03-20 Tripwire, Inc. Managing and classifying assets in an information technology environment using tags
US9026646B2 (en) 2011-09-16 2015-05-05 Tripwire, Inc. Methods and apparatus for remediating policy test failures, including correlating changes to remediation processes
US8819491B2 (en) 2011-09-16 2014-08-26 Tripwire, Inc. Methods and apparatus for remediation workflow
US8862941B2 (en) 2011-09-16 2014-10-14 Tripwire, Inc. Methods and apparatus for remediation execution
US9766873B2 (en) 2012-08-17 2017-09-19 Tripwire, Inc. Operating system patching and software update reconciliation
US10382486B2 (en) 2012-09-28 2019-08-13 Tripwire, Inc. Event integration frameworks
US10599850B1 (en) 2013-03-15 2020-03-24 Tripwire, Inc. Distributed security agent technology
US10282426B1 (en) 2013-03-15 2019-05-07 Tripwire, Inc. Asset inventory reconciliation services for use in asset management architectures
US10069847B2 (en) 2013-10-02 2018-09-04 Hoosier Energy Rural Electric Cooperative, Inc. Computerized system for complying with certain critical infrastructure protection requirements
US10158660B1 (en) 2013-10-17 2018-12-18 Tripwire, Inc. Dynamic vulnerability correlation
US9781046B1 (en) 2013-11-19 2017-10-03 Tripwire, Inc. Bandwidth throttling in vulnerability scanning applications
US10313257B1 (en) 2014-06-12 2019-06-04 Tripwire, Inc. Agent message delivery fairness
US9634951B1 (en) 2014-06-12 2017-04-25 Tripwire, Inc. Autonomous agent messaging
US10454963B1 (en) 2015-07-31 2019-10-22 Tripwire, Inc. Historical exploit and vulnerability detection
US10296502B1 (en) 2015-08-24 2019-05-21 State Farm Mutual Automobile Insurance Company Self-management of data applications
US11218297B1 (en) 2018-06-06 2022-01-04 Tripwire, Inc. Onboarding access to remote security control tools
US11329990B2 (en) 2019-05-17 2022-05-10 Imprivata, Inc. Delayed and provisional user authentication for medical devices
US12050696B2 (en) 2019-06-07 2024-07-30 Tripwire, Inc. Agent-based vulnerability management
US11861015B1 (en) 2020-03-20 2024-01-02 Tripwire, Inc. Risk scoring system for vulnerability mitigation

Family Cites Families (149)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5063523A (en) * 1989-11-16 1991-11-05 Racal Data Communications Inc. Network management system with event rule handling
US5542047A (en) * 1991-04-23 1996-07-30 Texas Instruments Incorporated Distributed network monitoring system for monitoring node and link status
US5745669A (en) * 1993-10-21 1998-04-28 Ast Research, Inc. System and method for recovering PC configurations
JP4156663B2 (en) * 1994-04-05 2008-09-24 インテル・コーポレーション Method and apparatus for monitoring and controlling a program in a network
US6658568B1 (en) 1995-02-13 2003-12-02 Intertrust Technologies Corporation Trusted infrastructure support system, methods and techniques for secure electronic commerce transaction and rights management
US5655081A (en) * 1995-03-08 1997-08-05 Bmc Software, Inc. System for monitoring and managing computer resources and applications across a distributed computing environment using an intelligent autonomous agent architecture
GB2308778B (en) * 1995-12-28 1998-06-10 Nokia Telecommunications Oy Telecommunications network management system
US6535512B1 (en) * 1996-03-07 2003-03-18 Lsi Logic Corporation ATM communication system interconnect/termination unit
US5764913A (en) * 1996-04-05 1998-06-09 Microsoft Corporation Computer network status monitoring system
US5845062A (en) 1996-06-25 1998-12-01 Mci Communications Corporation System and method for monitoring network elements organized in data communication channel groups with craft interface ports
FR2750517B1 (en) * 1996-06-27 1998-08-14 Bull Sa METHOD FOR MONITORING A PLURALITY OF OBJECT TYPES OF A PLURALITY OF NODES FROM A ADMINISTRATION NODE IN A COMPUTER SYSTEM
US5778184A (en) * 1996-06-28 1998-07-07 Mci Communications Corporation System method and computer program product for processing faults in a hierarchial network
US6072777A (en) * 1996-06-28 2000-06-06 Mci Communications Corporation System and method for unreported root cause analysis
US5913036A (en) * 1996-06-28 1999-06-15 Mci Communications Corporation Raw performance monitoring correlated problem alert signals
US5913037A (en) * 1996-07-03 1999-06-15 Compaq Computer Corporation Dynamic management information base manager
GB2318478B (en) * 1996-10-21 2001-01-17 Northern Telecom Ltd Network model for alarm correlation
CN1169032C (en) * 1996-11-29 2004-09-29 松下电工株式会社 Building automation system
US5878408A (en) * 1996-12-06 1999-03-02 International Business Machines Corporation Data management system and process
US6052722A (en) * 1997-03-07 2000-04-18 Mci Communications Corporation System and method for managing network resources using distributed intelligence and state management
US5933838A (en) * 1997-03-10 1999-08-03 Microsoft Corporation Database computer system with application recovery and recovery log sequence numbers to optimize recovery
US5963959A (en) * 1997-05-30 1999-10-05 Oracle Corporation Fast refresh of snapshots
US6041347A (en) * 1997-10-24 2000-03-21 Unified Access Communications Computer system and computer-implemented process for simultaneous configuration and monitoring of a computer network
US6064656A (en) * 1997-10-31 2000-05-16 Sun Microsystems, Inc. Distributed system and method for controlling access control to network resources
US6070244A (en) 1997-11-10 2000-05-30 The Chase Manhattan Bank Computer network security management system
US6272537B1 (en) * 1997-11-17 2001-08-07 Fujitsu Limited Method for building element manager for a computer network element using a visual element manager builder process
US6664978B1 (en) 1997-11-17 2003-12-16 Fujitsu Limited Client-server computer network management architecture
US6122639A (en) * 1997-12-23 2000-09-19 Cisco Technology, Inc. Network device information collection and change detection
US6393386B1 (en) * 1998-03-26 2002-05-21 Visual Networks Technologies, Inc. Dynamic modeling of complex networks and prediction of impacts of faults therein
US6721740B1 (en) * 1998-05-29 2004-04-13 Sun Microsystems, Inc. Method and apparatus of performing active update notification
US6253339B1 (en) * 1998-10-28 2001-06-26 Telefonaktiebolaget Lm Ericsson (Publ) Alarm correlation in a large communications network
US6886047B2 (en) * 1998-11-13 2005-04-26 Jp Morgan Chase Bank System and method for managing information retrievals for integrated digital and analog archives on a global basis
US6341287B1 (en) * 1998-12-18 2002-01-22 Alternative Systems, Inc. Integrated change management unit
US7356482B2 (en) * 1998-12-18 2008-04-08 Alternative Systems, Inc. Integrated change management unit
US6393474B1 (en) * 1998-12-31 2002-05-21 3Com Corporation Dynamic policy management apparatus and method using active network devices
US6493755B1 (en) 1999-01-15 2002-12-10 Compaq Information Technologies Group, L.P. Automatic notification rule definition for a network management system
US6601171B1 (en) * 1999-02-18 2003-07-29 Novell, Inc. Deputization in a distributed computing system
US6542905B1 (en) * 1999-03-10 2003-04-01 Ltcq, Inc. Automated data integrity auditing system
US6195689B1 (en) * 1999-05-05 2001-02-27 Mediaone Group, Inc. Headend provisioning agent
EP1190342A2 (en) 1999-05-24 2002-03-27 Aprisma Management Technologies, Inc. Service level management
US6670973B1 (en) 1999-06-29 2003-12-30 Electronic Data Systems Corporation System and method for representing the information technology infrastructure of an organization
US6490690B1 (en) * 1999-07-22 2002-12-03 International Business Machines Corporation Method and apparatus for unix system catastrophic recovery aid
US6647400B1 (en) 1999-08-30 2003-11-11 Symantec Corporation System and method for analyzing filesystems to detect intrusions
US7080037B2 (en) * 1999-09-28 2006-07-18 Chameleon Network Inc. Portable electronic authorization system and method
US6853987B1 (en) * 1999-10-27 2005-02-08 Zixit Corporation Centralized authorization and fraud-prevention system for network-based transactions
US20010044840A1 (en) * 1999-12-13 2001-11-22 Live Networking, Inc. Method and system for real-tme monitoring and administration of computer networks
AU2091101A (en) * 1999-12-14 2001-06-25 Citibank, N.A. Method and system for database query
KR20010061711A (en) 1999-12-29 2001-07-07 서평원 Method for management SNMP in communication system
US6983317B1 (en) * 2000-02-28 2006-01-03 Microsoft Corporation Enterprise management system
US6701345B1 (en) * 2000-04-13 2004-03-02 Accenture Llp Providing a notification when a plurality of users are altering similar data in a health care solution environment
US6751661B1 (en) * 2000-06-22 2004-06-15 Applied Systems Intelligence, Inc. Method and system for providing intelligent network management
US20020116363A1 (en) * 2000-11-27 2002-08-22 First To File, Inc. Method of deleting unnecessary information from a database
US7249170B2 (en) * 2000-12-06 2007-07-24 Intelliden System and method for configuration, management and monitoring of network resources
US6941313B2 (en) 2000-12-11 2005-09-06 Sentillion, Inc. Context management with audit capability
AU2002306495A1 (en) 2001-02-13 2002-08-28 Candera, Inc. Storage virtualization and storage management to provide higher level storage services
US6895414B2 (en) * 2001-02-15 2005-05-17 Usinternet Working, Inc. Method and apparatus for authorizing and reporting changes to device configurations
US7376600B1 (en) 2001-04-11 2008-05-20 I2 Technologies Us, Inc. Intelligent fulfillment agents
US20020156799A1 (en) * 2001-04-24 2002-10-24 Stephen Markel System and method for verifying and correcting websites
US20020176378A1 (en) * 2001-05-22 2002-11-28 Hamilton Thomas E. Platform and method for providing wireless data services
WO2002101572A1 (en) 2001-06-11 2002-12-19 Totalecare, Inc. Apparatus, method, and article of manufacture for managing changes on a compute infrastructure
US7295522B2 (en) * 2001-06-29 2007-11-13 Microsoft Corporation System and method for continuously provisioning a mobile device
US7065767B2 (en) * 2001-06-29 2006-06-20 Intel Corporation Managed hosting server auditing and change tracking
US20030008662A1 (en) * 2001-07-09 2003-01-09 Stern Edith H. Systems and methods wherein a mobile user device operates in accordance with a location policy and user device information
US7603440B1 (en) * 2001-11-09 2009-10-13 Persystent Technology Corporation System and method for management of end user computing devices
US20030101341A1 (en) * 2001-11-26 2003-05-29 Electronic Data Systems Corporation Method and system for protecting data from unauthorized disclosure
US7159036B2 (en) * 2001-12-10 2007-01-02 Mcafee, Inc. Updating data from a source computer to groups of destination computers
US7035877B2 (en) * 2001-12-28 2006-04-25 Kimberly-Clark Worldwide, Inc. Quality management and intelligent manufacturing with labels and smart tags in event-based product manufacturing
CA2369351A1 (en) * 2002-01-24 2003-07-24 Alcatel Canada Inc. System and method for providing error analysis and correlation in a network element
US20030149756A1 (en) * 2002-02-06 2003-08-07 David Grieve Configuration management method and system
US20040260803A1 (en) 2002-03-04 2004-12-23 Seiko Epson Corporation Apparatus maintenance method, server computer for apparatus maintenance system, and electronic apparatus
US7136916B2 (en) * 2002-03-08 2006-11-14 Siemens Aktiengesellschaft Method for event management
US7051050B2 (en) * 2002-03-19 2006-05-23 Netwrok Appliance, Inc. System and method for restoring a single file from a snapshot
US7774791B1 (en) 2002-04-24 2010-08-10 Informatica Corporation System, method and computer program product for data event processing and composite applications
JP2003316546A (en) * 2002-04-24 2003-11-07 Sharp Corp Image processor
US8103748B2 (en) * 2002-05-20 2012-01-24 International Business Machines Corporation Rule-based method and system for managing heterogenous computer clusters
US7131037B1 (en) 2002-06-05 2006-10-31 Proactivenet, Inc. Method and system to correlate a specific alarm to one or more events to identify a possible cause of the alarm
US8549114B2 (en) * 2002-06-12 2013-10-01 Bladelogic, Inc. Method and system for model-based heterogeneous server configuration management
US7039698B2 (en) * 2002-06-18 2006-05-02 Bellsouth Intellectual Property Corporation Notification device interaction
US7016888B2 (en) * 2002-06-18 2006-03-21 Bellsouth Intellectual Property Corporation Learning device interaction rules
US7620715B2 (en) * 2005-06-29 2009-11-17 Tripwire, Inc. Change event correlation
US8140635B2 (en) 2005-03-31 2012-03-20 Tripwire, Inc. Data processing environment change management methods and apparatuses
US7822724B2 (en) * 2002-07-03 2010-10-26 Tripwire, Inc. Change audit method, apparatus and system
US7765460B2 (en) * 2005-06-29 2010-07-27 Tripwire, Inc. Out-of-band change detection
US7316016B2 (en) * 2002-07-03 2008-01-01 Tripwire, Inc. Homogeneous monitoring of heterogeneous nodes
US20040024843A1 (en) 2002-07-31 2004-02-05 Smith Christopher T. Method for provisioning distributed web applications
US7526467B2 (en) 2002-09-13 2009-04-28 Natural Selection, Inc. Intelligently interactive profiling system and method
US7243348B2 (en) * 2002-09-19 2007-07-10 Tripwire, Inc. Computing apparatus with automatic integrity reference generation and maintenance
US7360099B2 (en) * 2002-09-19 2008-04-15 Tripwire, Inc. Computing environment and apparatuses with integrity based fail over
US6906647B2 (en) * 2002-09-20 2005-06-14 Ntt Docomo, Inc. Method and apparatus for arithmetic coding, including probability estimation state table creation
US20050043961A1 (en) 2002-09-30 2005-02-24 Michael Torres System and method for identification, detection and investigation of maleficent acts
US7315890B2 (en) * 2002-10-02 2008-01-01 Lockheed Martin Corporation System and method for managing access to active devices operably connected to a data network
GB0224187D0 (en) 2002-10-17 2002-11-27 Mitel Knowledge Corp Interactive conflict resolution for personalised policy-based services
US20040122962A1 (en) * 2002-12-24 2004-06-24 Difalco Robert A. Service environment integrity based service selection
US7587754B2 (en) * 2002-12-24 2009-09-08 Tripwire, Inc. Environment integrity assured transactions
US7058861B1 (en) * 2002-12-31 2006-06-06 Sprint Communications Company Llp Network model audit and reconciliation using state analysis
US7624422B2 (en) * 2003-02-14 2009-11-24 Preventsys, Inc. System and method for security information normalization
US7474425B2 (en) * 2003-03-05 2009-01-06 Kabushiki Kaisha Toshiba Printing system, printing apparatus, printing server and printing method utilizing wireless communication
US8122106B2 (en) 2003-03-06 2012-02-21 Microsoft Corporation Integrating design, deployment, and management phases for systems
JP2004303190A (en) * 2003-03-20 2004-10-28 Hitachi Ltd Program, information processor, method for controlling information processor, and recording medium
US20040186903A1 (en) 2003-03-20 2004-09-23 Bernd Lambertz Remote support of an IT infrastructure
US7158985B1 (en) * 2003-04-09 2007-01-02 Cisco Technology, Inc. Method and apparatus for efficient propagation of large datasets under failure conditions
US8127359B2 (en) 2003-04-11 2012-02-28 Samir Gurunath Kelekar Systems and methods for real-time network-based vulnerability assessment
US7317693B1 (en) * 2003-05-12 2008-01-08 Sourcefire, Inc. Systems and methods for determining the network topology of a network
US20040254927A1 (en) * 2003-06-10 2004-12-16 Ubs Painewebber Inc. Method and system for tax reporting for qualified plans
US7953088B2 (en) * 2003-06-10 2011-05-31 Cisco Technology, Inc. Method and apparatus for packet classification and rewriting
US7673147B2 (en) 2003-09-26 2010-03-02 Tizor Systems, Inc. Real-time mitigation of data access insider intrusions
US20050097199A1 (en) 2003-10-10 2005-05-05 Keith Woodard Method and system for scanning network devices
US20050096949A1 (en) * 2003-10-29 2005-05-05 International Business Machines Corporation Method and system for automatic continuous monitoring and on-demand optimization of business IT infrastructure according to business objectives
WO2005048124A2 (en) * 2003-11-04 2005-05-26 Constant Data, Inc. Hybrid real-time data replication
US7694001B2 (en) * 2003-12-18 2010-04-06 Vt Idirect, Inc. Configuration state management system, method and apparatus
US7228460B2 (en) * 2004-01-23 2007-06-05 Hewlett-Packard Development Company, L.P. Multi-state status reporting for high-availability cluster nodes
US20050177600A1 (en) * 2004-02-11 2005-08-11 International Business Machines Corporation Provisioning of services based on declarative descriptions of a resource structure of a service
US7290164B1 (en) * 2004-03-03 2007-10-30 Cisco Technology, Inc. Method of reverting to a recovery configuration in response to device faults
ATE369014T1 (en) * 2004-03-18 2007-08-15 Alcatel Lucent SERVICE PROVISION SYSTEM
CA2560277A1 (en) 2004-03-19 2005-09-29 Oversight Technologies, Inc. Methods and systems for transaction compliance monitoring
US7590669B2 (en) * 2004-04-06 2009-09-15 Microsoft Corporation Managing client configuration data
US20070180490A1 (en) 2004-05-20 2007-08-02 Renzi Silvio J System and method for policy management
US8812613B2 (en) * 2004-06-03 2014-08-19 Maxsp Corporation Virtual application manager
US7953843B2 (en) * 2004-06-14 2011-05-31 Hewlett-Packard Development Company, L.P. System and method for evaluating a heterogeneous cluster for supporting expected workload in compliance with at least one service parameter
US20060085403A1 (en) 2004-09-30 2006-04-20 Harrison William E Method and system for multi-echelon auditing of activity of an enterprise
US20060080656A1 (en) * 2004-10-12 2006-04-13 Microsoft Corporation Methods and instructions for patch management
US8196199B2 (en) * 2004-10-19 2012-06-05 Airdefense, Inc. Personal wireless monitoring agent
US20060101520A1 (en) * 2004-11-05 2006-05-11 Schumaker Troy T Method to manage network security over a distributed network
US7607164B2 (en) * 2004-12-23 2009-10-20 Microsoft Corporation Systems and processes for managing policy change in a distributed enterprise
US7272592B2 (en) * 2004-12-30 2007-09-18 Microsoft Corporation Updating metadata stored in a read-only media file
US7814075B2 (en) 2004-12-30 2010-10-12 Oracle International Corporation Dynamic auditing
US7962960B2 (en) 2005-02-25 2011-06-14 Verizon Business Global Llc Systems and methods for performing risk analysis
US8090677B2 (en) * 2005-03-18 2012-01-03 Microsoft Corporation Method and system for altering the configuration of a data warehouse
US8688507B2 (en) 2005-03-21 2014-04-01 Oversight Technologies, Inc. Methods and systems for monitoring transaction entity versions for policy compliance
US20060242277A1 (en) 2005-03-31 2006-10-26 Tripwire, Inc. Automated change approval
US20060277080A1 (en) 2005-06-03 2006-12-07 Demartine Patrick Method and system for automatically testing information technology control
US20070005320A1 (en) 2005-06-29 2007-01-04 Microsoft Corporation Model-based configuration management
US7895651B2 (en) * 2005-07-29 2011-02-22 Bit 9, Inc. Content tracking in a network security system
WO2007021823A2 (en) 2005-08-09 2007-02-22 Tripwire, Inc. Information technology governance and controls methods and apparatuses
US7636736B1 (en) 2005-09-21 2009-12-22 Symantec Operating Corporation Method and apparatus for creating and using a policy-based access/change log
US20070124255A1 (en) 2005-11-28 2007-05-31 Tripwire, Inc. Pluggable heterogeneous reconciliation
JP2007241872A (en) 2006-03-10 2007-09-20 Fujitsu Ltd Program for monitoring change in computer resource on network
US8443445B1 (en) 2006-03-31 2013-05-14 Emc Corporation Risk-aware scanning of objects
US7715930B2 (en) 2006-09-27 2010-05-11 Rockwell Automation Technologies, Inc. Aggregating audit information with field conditions
JP4891817B2 (en) 2007-03-16 2012-03-07 株式会社日立製作所 Design rule management method, design rule management program, rule construction device, and rule check device
US8868441B2 (en) 2007-12-28 2014-10-21 International Business Machines Corporation Non-disruptively changing a computing environment
US8677456B2 (en) 2008-01-10 2014-03-18 International Business Machines Corporation Accelerated reevaluation of authorization rules
US7676573B2 (en) 2008-02-08 2010-03-09 Microsoft Corporation Node monitor client cache synchronization for mobile device management
US8914341B2 (en) 2008-07-03 2014-12-16 Tripwire, Inc. Method and apparatus for continuous compliance assessment
US8996684B2 (en) 2009-12-08 2015-03-31 Tripwire, Inc. Scoring and interpreting change data through inference by correlating with change catalogs
US8600996B2 (en) 2009-12-08 2013-12-03 Tripwire, Inc. Use of inference techniques to facilitate categorization of system change information
US9741017B2 (en) 2009-12-08 2017-08-22 Tripwire, Inc. Interpreting categorized change information in order to build and maintain change catalogs
US8875129B2 (en) 2010-02-05 2014-10-28 Tripwire, Inc. Systems and methods for monitoring and alerting events that virtual machine software produces in a virtual infrastructure
US8566823B2 (en) 2010-02-05 2013-10-22 Tripwire, Inc. Systems and methods for triggering scripts based upon an alert within a virtual infrastructure
US8868987B2 (en) 2010-02-05 2014-10-21 Tripwire, Inc. Systems and methods for visual correlation of log events, configuration changes and conditions producing alerts in a virtual infrastructure

Also Published As

Publication number Publication date
US10318894B2 (en) 2019-06-11
US20070043786A1 (en) 2007-02-22
WO2007022363A2 (en) 2007-02-22
WO2007022363A3 (en) 2008-09-25

Similar Documents

Publication Publication Date Title
US20190362274A1 (en) Conformance authority reconciliation
US7765460B2 (en) Out-of-band change detection
US20070124255A1 (en) Pluggable heterogeneous reconciliation
US7822724B2 (en) Change audit method, apparatus and system
AU2018229433B2 (en) System for the measurement and automated accumulation of diverging cyber risks, and corresponding method thereof
US10270795B2 (en) Identifying network security risks
US20190342341A1 (en) Information technology governance and controls methods and apparatuses
Alali et al. Cloud computing: Overview and risk analysis
US10630713B2 (en) Method and tool to quantify the enterprise consequences of cyber risk
US10057285B2 (en) System and method for auditing governance, risk, and compliance using a pluggable correlation architecture
US20200320845A1 (en) Adaptive severity functions for alerts
US20200250675A1 (en) Fraud Detection Based on Community Change Analysis Using a Machine Learning Model
Brotby Information security governance: a practical development and implementation approach
US20070005740A1 (en) Change event correlation
US20120116984A1 (en) Automated evaluation of compliance data from heterogeneous it systems
US11574360B2 (en) Fraud detection based on community change analysis
US20210256120A1 (en) Utilization of deceptive decoy elements to identify data leakage processes invoked by suspicious entities
CN111078980A (en) Management method, device, equipment and storage medium based on credit investigation big data
CN109684863A (en) Data leakage prevention method, device, equipment and storage medium
US20140122163A1 (en) External operational risk analysis
CN110070383B (en) Abnormal user identification method and device based on big data analysis
US11822435B2 (en) Consolidated data restoration framework
KR20190071905A (en) Data backup reporting method and system
US8244761B1 (en) Systems and methods for restricting access to internal data of an organization by external entity
US11288364B1 (en) Data protection based on cybersecurity feeds

Legal Events

Date Code Title Description
STPP Information on status: patent application and granting procedure in general

Free format text: DOCKETED NEW CASE - READY FOR EXAMINATION

AS Assignment

Owner name: TRIPWIRE, INC., OREGON

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:DIFALCO, ROBERT A.;KEELER, KENNETH L.;WARMACK, ROBERT L.;SIGNING DATES FROM 20050805 TO 20050809;REEL/FRAME:052524/0529

STPP Information on status: patent application and granting procedure in general

Free format text: NON FINAL ACTION MAILED

STPP Information on status: patent application and granting procedure in general

Free format text: RESPONSE TO NON-FINAL OFFICE ACTION ENTERED AND FORWARDED TO EXAMINER

STPP Information on status: patent application and granting procedure in general

Free format text: FINAL REJECTION MAILED

STPP Information on status: patent application and granting procedure in general

Free format text: DOCKETED NEW CASE - READY FOR EXAMINATION

STPP Information on status: patent application and granting procedure in general

Free format text: NON FINAL ACTION MAILED

AS Assignment

Owner name: GOLUB CAPITAL MARKETS LLC, AS COLLATERAL AGENT, ILLINOIS

Free format text: SECOND LIEN INTELLECTUAL PROPERTY SECURITY AGREEMENT;ASSIGNOR:TRIPWIRE, INC.;REEL/FRAME:060306/0649

Effective date: 20220603

Owner name: JEFFERIES FINANCE LLC, AS COLLATERAL AGENT, NEW YORK

Free format text: FIRST LIEN INTELLECTUAL PROPERTY SECURITY AGREEMENT;ASSIGNOR:TRIPWIRE, INC.;REEL/FRAME:060306/0365

Effective date: 20220603

STPP Information on status: patent application and granting procedure in general

Free format text: RESPONSE TO NON-FINAL OFFICE ACTION ENTERED AND FORWARDED TO EXAMINER

STPP Information on status: patent application and granting procedure in general

Free format text: FINAL REJECTION MAILED

STPP Information on status: patent application and granting procedure in general

Free format text: TC RETURN OF APPEAL

STCV Information on status: appeal procedure

Free format text: ON APPEAL -- AWAITING DECISION BY THE BOARD OF APPEALS

STCV Information on status: appeal procedure

Free format text: BOARD OF APPEALS DECISION RENDERED

STCB Information on status: application discontinuation

Free format text: ABANDONED -- AFTER EXAMINER'S ANSWER OR BOARD OF APPEALS DECISION