System and method of monitoring and controlling application files
원문보기
IPC분류정보
국가/구분
United States(US) Patent
등록
국제특허분류(IPC7판)
G06F-007/10
G06F-007/06
G06F-015/16
출원번호
UP-0134815
(2005-05-19)
등록번호
US-7529754
(2009-07-01)
발명자
/ 주소
Dimm, John Ross
Anderson, Mark Richard
Papa, Joseph
Kester, Harold M.
출원인 / 주소
Websense, Inc.
대리인 / 주소
Knobbe Martens Olson & Bear LLP
인용정보
피인용 횟수 :
5인용 특허 :
67
초록▼
A system and method for updating, monitoring, and controlling applications on a workstation. The workstation includes a workstation management module configured to detect the launch or request to access a network by an application. A workstation application server receives data associated with the a
A system and method for updating, monitoring, and controlling applications on a workstation. The workstation includes a workstation management module configured to detect the launch or request to access a network by an application. A workstation application server receives data associated with the application from the workstation. The application server module can determine one or more policies or categories to associate with the application by referencing an application inventory database. Once the application server module has the category or policy, it forwards a hash/policy table to the workstation management module. Upon receipt of the hash/policy table, the workstation management module applies the policy that is associated with the application to control network access by the application.
대표청구항▼
What is claimed is: 1. A system, including one or more processors, for collecting network access data for use in updating a monitoring system which controls programs accessing a network, comprising: a workstation configured such that a program resident thereon can access a network; a workstation ma
What is claimed is: 1. A system, including one or more processors, for collecting network access data for use in updating a monitoring system which controls programs accessing a network, comprising: a workstation configured such that a program resident thereon can access a network; a workstation management module coupled to the workstation and configured to detect the program accessing the network, determine whether the program is in a network access database, send program data associated with the program to an application server module if the program is not in the network access database, and apply one or more policies that are associated with the program, wherein the one or more policies are received from an application server module, and wherein the network access database includes a protocol that is associated with the program; the application server module being coupled to the workstation and configured to receive the program data from the workstation management module if the program was not in the network access database, determine whether the program is operating in a predetermined manner, if the program is not operating in a predetermined manner, then send the program data to an application database factory, if the program is operating in a predetermined manner, then provide the one or more policies associated with the program to the workstation management module; wherein the application server module comprises: a classification user interface configured to provide an interface for a network administrator to select the one or more policies that are associated with the program; and an upload/download manager module configured to send the program data and a frequency to the application database factory and to receive the one or more policies from the application database factory. 2. The system of claim 1 wherein the application database factory is configured to receive the program data from the application server module if the program is not operating in a predetermined manner, determine whether the program was previously analyzed by the application database factory, if the program was not previously analyzed, then determine one or more policies to associate with the program and provide the one or more policies to the application server module, if the program was previously analyzed, then provide the one or more policies that were previously associated with the program data to the application server module. 3. The system of claim 2, wherein the network access database comprises hash values. 4. The system of claim 2, wherein the network access database comprises one or more categories and one or more policies associated with the program. 5. The system of claim 2, wherein the application server module is further configured to analyze the program data for a data characteristic that is indicative of whether the program is operating in the predetermined manner, and to associate one or more indicators with the program. 6. The system of claim 5, wherein analyzing the program data is performed on text strings that are associated with the program. 7. The system of claim 5, wherein the one or more indicators includes a category flag. 8. The system of claim 7, wherein the application server module uses the one or more indicators to screen the program prior to sending the program data to the application database factory. 9. The system of claim 2, wherein the workstation management module comprises an application digest generator configured to determine the program data to associate with the program. 10. The system of claim 9, wherein the program data includes a source IP address. 11. The system of claim 9, wherein the program data includes a destination IP address. 12. The system of claim 9, wherein the program data includes a destination port number. 13. The system of claim 2, wherein the application database factory comprises: an application analyst's classification module configured to categorize the program if not previously categorized by the application database factory; and a master application database configured to store the program and the one or more categories. 14. The system of claim 13, wherein the upload/download module is configured to receive the frequency from the application server module to prioritize processing of the program in the application database factory. 15. The system of claim 13, further comprising: a second workstation; and a second application server module coupled to the second workstation and the application database factory. 16. The system of claim 13, wherein the upload/download module is further configured to merge and sort the program data and a second program data received from the second workstation. 17. The system of claim 1, wherein the frequency is associated with the program and indicates the frequency at which the program accesses the network. 18. The system of claim 1, wherein the one or more policies include allowing the program to access the network based on the one or more policies associated with the program and the user. 19. The system of claim 1, wherein the one or more policies include not allowing the program to access the network based on the one or more policies associated with the program and the user. 20. The system of claim 1, wherein the protocol is a transport protocol. 21. The system of claim 20, wherein the transport protocol is transmission control protocol (TCP). 22. The system of claim 20, wherein the transport protocol is user datagram protocol (UDP). 23. The system of claim 1, wherein the frequency is a request frequency. 24. The system of claim 1, wherein the frequency is a frequency count for the program.
Brandt Marcia Lynn ; Brown Kenneth Edgar ; Dykes Pernell James ; Lindberg Erik Duane ; Olson Diane Elaine ; Selden Jeffrey Edward ; Snyder Devon Daniel ; Walts James Orrin, Computer apparatus and method for providing a common user interface for software applications accessed via the world-wid.
Shieh Johnny Meng-Han ; Maddalozzo ; Jr. John ; McBrearty Gerald Francis, Filtered utilization of internet data transfers to reduce delay and increase user control.
Benantar Messaoud ; Blakley ; III George Robert ; Nadalin Anthony Joseph, Information handling system, method, and article of manufacture for efficient object security processing by grouping obj.
Radia Sanjay R. ; Lim Swee Boon ; Tsirigotis Panagiotis ; Wong Thomas K. ; Goedman Robert J. ; Patrick Michael W., Method and apparatus for dynamic packet filter assignment.
Abraham Dalen M. ; Barnes Todd A. ; Bouche Paul F. ; Bougetz Thomas P. ; Gosselin Tracy A. ; Grieve Mark G. ; Langdon Brent A. ; Allison Robert C. ; Nikkel Michael S., Method and apparatus for managing internetwork and intranetwork activity.
Poliquin Lynn R. (Goffstown NH) Arrowsmith Russell (Merrimack NH) Lewis Lundy (Mason NH) Tracy William (Chelmsford MA), Method and apparatus for policy-based alarm notification in a distributed network management environment.
Baugher Mark J. (Austin TX) Chang Philip Y. (Austin TX) Morris Gregory L. (Round Rock TX) Stephens Alan P. (Austin TX), Method and apparatus for reserving system resources to assure quality of service.
Theimer Marvin M. (Mountain View CA) Spreitzer Michael J. (Tracy CA) Weiser Mark D. (Palo Alto CA) Goldstein Richard J. (San Francisco CA) Elrod Scott A. (Redwood City CA) Swinehart Daniel C. (Palo A, Method for granting a user request having locational and contextual attributes consistent with user policies for devices.
Theimer Marvin M. (Mountain View CA) Spreitzer Michael J. (Tracy CA) Weiser Mark D. (Palo Alto CA) Goldstein Richard J. (San Francisco CA) Terry Douglas B. (San Carlos CA) Schilit William N. (Palo Al, Selective delivery of electronic messages in a multiple computer system based on context and environment of a user.
Donald George Paul Waters GB; Jeremy Pavier GB; Graham David Turner GB; Richard Dewitt Cox ; Andrew Timothy Hunter ; Jeffrey Kevin Rand ; Nicolas Duncan Barker Smith GB, Service creation apparatus for a communications network.
Finney Michael S. ; Snider Michael L. ; Wright Randall S. ; Paynter James W. ; Bard Robin R., System and method for distributing electronic messages in accordance with rules.
Bryant David M. (Cardiff CA) Corbeil Ryn C. (Bridgewater NJ) Malcolm Michael A. (Waterloo CA CAX) Thompson Donald R. (San Diego CA), System and method for name-lookup in a local area network data communication system.
Holden James M. ; Levin Stephen E. ; Nickel James O. ; Wrench Edwin H., System and method for providing multi-level security in computer devices utilized with non-secure networks.
Baker Brenda Sue (Berkeley Heights NJ) Grosse Eric (Berkeley Heights NJ), System and method for restricting user access rights on the internet based on rating information stored in a relational.
Akiyoshi Takashi (Osaka JPX) Matsuse Tetsuo (Ikoma-gun JPX), System for automatically generating and saving control information in a server if requested by a client at system initia.
Schmidt Jonathan ; Donzis Lewis ; Donzis Henry ; Murphy John ; Baron Peter ; Savage Herb, System for controlling users access to a distributive network in accordance with constraints present in common access.
Choquier Philippe,FRX ; Peyroux Jean-Francios ; Griffin William J., System for on-line service in which gateway computer uses service map which includes loading condition of servers broad.
Horvitz, Eric J.; Kadie, Carl M.; Ozer, Stuart; Wong, Curtis G., Training, inference and user interface for guiding the caching of media content on local stores.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.