[특허]Security vulnerability information aggregation

Security vulnerability information aggregation 원문보기

IPC분류정보
국가/구분	United States(US) Patent 등록
국제특허분류(IPC7판)	G08B-023/00
출원번호	US-0366319 (2006-03-02)
등록번호	US-8544098 (2013-09-24)
발명자 / 주소	Gustave, Christophe Chow, Stanley TaiHai Wiemer, Douglas
출원인 / 주소	Alcatel Lucent
대리인 / 주소	Eckert Seamans Cherin & Mellott, LLC
인용정보	피인용 횟수 : 10 인용 특허 : 27

초록 ▼

Security vulnerability information aggregation techniques are disclosed. Vulnerability information associated with one or more security vulnerabilities is obtained from multiple sources and aggregated into respective unified vulnerability definitions for the one or more security vulnerabilities. Aggregation may involve format conversion, content aggregation, or both in some embodiments. Unified vulnerability definitions may be distributed to vulnerability information consumers in accordance with consumer-specific policies. Storage of vulnerability information received from the sources may allow the aggregation process to be performed on existing vulnerability information “retro-actively”. Related data structures and Graphical User Interfaces (GUIs) are also disclosed.

대표청구항 ▼

1. An apparatus comprising: an interface to receive from a plurality of sources vulnerability definition information that defines a plurality of security vulnerabilities;a policies store to store one or more aggregation policies, the one or more aggregation policies specifying respective sets of distribution parameters for one or more vulnerability definition information consumers;one or more output interfaces to enable transmission of vulnerability definitions to respective groups of the one or more vulnerability definition information consumers;an aggregator, operatively coupled to the interface, to the policies store, and to the one or more output interfaces, to receive the vulnerability definition information through the interface, to aggregate the vulnerability definition information that defines one or more security vulnerabilities into a respective unified vulnerability description for each of the one or more security vulnerabilities in accordance with the aggregation policy of a vulnerability definition information consumer in the policies store, and to distribute the respective unified vulnerability description for each of the one or more security vulnerabilities to the vulnerability definition information consumer through an output interface of the one or more output interfaces,wherein the vulnerability definition information received from each source comprises respective source content arranged according to a respective source format, and wherein the aggregator comprises:a plurality of format adapters operatively coupled to the interface, the plurality of format adapters comprising respective format adapters configured to convert a format of vulnerability definition information that defines the one or more respective security vulnerabilities and is received from a respective source into a format of the one or more respective unified vulnerability descriptions; anda content aggregator operatively coupled to the plurality of format adapters and configured to determine portions of the one or more respective unified vulnerability descriptions based on corresponding portions of source content in the converted vulnerability definition information received from the plurality of sources and converted by the plurality of format adapters. 2. The apparatus of claim 1, wherein the interface comprises a plurality of interfaces, each interface of the plurality of interfaces being configured to receive vulnerability definition information from a respective group of one or more sources. 3. The apparatus of claim 1, wherein the aggregator comprises a plurality of format adapters operatively coupled to the interface, the plurality of format adapters comprising respective format adapters configured to convert a format of the vulnerability definition information that defines the one or more respective security vulnerabilities and is received from a respective source into a format of the one or more respective unified vulnerability descriptions. 4. The apparatus of claim 3, wherein the aggregator further comprises a content aggregator operatively coupled to the plurality of format adapters and configured to determine portions of the one or more respective unified vulnerability descriptions based on corresponding portions of the vulnerability definition information received from the plurality of sources and converted by the plurality of format adapters. 5. The apparatus of claim 4, wherein the content aggregator is further configured to detect a conflict where vulnerability definition information that is received from one source of the plurality of sources conflicts with vulnerability definition information that is received from a different source of the plurality of sources, and wherein the aggregator further comprises at least one of: a conflict resolution module operatively coupled to the content aggregator and configured to resolve a conflict detected by the content aggregator; anda conflict alert module operatively coupled to the content aggregator and configured to allow a user to resolve a conflict detected by the content aggregator. 6. The apparatus of claim 4, wherein the content aggregator is further configured to detect a conflict where vulnerability definition information that is received from one source of the plurality of sources conflicts with vulnerability definition information that is received from a different source of the plurality of sources, and wherein the aggregator further comprises: a conflict rules store to store a set of conflict rules; anda conflict resolution module, operatively coupled to the content aggregator and to the conflict rules store, configured to resolve, based on the set of conflict rules stored in the conflict rules store, a conflict detected by the content aggregator. 7. The apparatus of claim 1, further comprising: a user interface, operatively coupled to the aggregator, for providing a representation of the respective unified vulnerability description. 8. The apparatus of claim 1, further comprising: a vulnerability definition information store, operatively coupled to the interface and to the aggregator, for storing the vulnerability definition information that defines the plurality of security vulnerabilities,wherein the aggregator is further configured to, responsive to a change in an aggregation policy in the policies store, retrieve from the vulnerability definition information store vulnerability definition information that defines one or more respective security vulnerabilities in accordance with the changed aggregation policy, aggregate the retrieved vulnerability definition information into one or more respective unified vulnerability descriptions, and distribute the one or more respective unified vulnerability descriptions through an output interface of the one or more output interfaces to a vulnerability definition information consumer for which the changed aggregation policy specifies distribution parameters. 9. A method comprising: obtaining, by an aggregator, from a plurality of sources vulnerability definition information that defines a plurality of security vulnerabilities;aggregating, by the aggregator, the vulnerability definition information that defines one or more security vulnerabilities into a respective unified vulnerability description for each of the one or more security vulnerabilities in accordance with an aggregation policy that specifies a set of distribution parameters for a vulnerability definition information consumer; anddistributing, by the aggregator, the respective unified vulnerability description for each of the one or more security vulnerabilities to the vulnerability definition information consumer,wherein the vulnerability definition information obtained from each source comprises respective source content arranged according to a respective source format, wherein the method further comprises:converting the vulnerability definition information associated with the one or more respective security vulnerabilities from each source format into a format of the one or more respective unified vulnerability descriptions,wherein aggregating comprises determining portions of the one or more respective unified vulnerability descriptions based on corresponding portions of source content in the converted vulnerability definition information obtained from the plurality of sources. 10. The method of claim 9, wherein aggregating comprises converting, in respective format adapters, formats of the vulnerability definition information that is received from different sources of the plurality of sources and defines the one or more respective security vulnerabilities into a format of the one or more respective unified vulnerability descriptions. 11. The method of claim 10, wherein aggregating comprises determining portions of the one or more respective unified vulnerability descriptions based on portions of the vulnerability definition information received from the plurality of sources and converted by the format adapters. 12. The method of claim 9, wherein aggregating comprises: detecting a conflict where vulnerability definition information that is received from one source of the plurality of sources conflicts with vulnerability definition information that is received from a different source of the plurality of sources; andresolving a detected conflict in accordance with at least one of: a set of one or more conflict rules, and a user input. 13. The method of claim 9, further comprising: providing a representation of the respective unified vulnerability description. 14. The method of claim 9, wherein obtaining comprises at least one of: requesting vulnerability definition information; andreceiving vulnerability definition information. 15. A non-transitory machine-readable medium storing instructions which when executed perform a method comprising: obtaining from a plurality of sources vulnerability definition information that defines a plurality of security vulnerabilities;aggregating the vulnerability definition information that defines one or more security vulnerabilities into a respective unified vulnerability description for each of the one or more security vulnerabilities in accordance with an aggregation policy that specifies a set of distribution parameters for a vulnerability definition information consumer; anddistributing the respective unified vulnerability description for each of the one or more security vulnerabilities to the vulnerability definition information consumer,wherein the vulnerability definition information obtained from each source comprises respective source content arranged according to a respective source format, wherein the method further comprises:converting the vulnerability definition information associated with the one or more respective security vulnerabilities from each source format into a format of the one or more respective unified vulnerability descriptions,wherein aggregating comprises determining portions of the one or more respective unified vulnerability descriptions based on corresponding portions of source content in the converted vulnerability definition information obtained from the plurality of sources.

이 특허에 인용된 특허 (27)

Banzhof,Carl E., Automated computer vulnerability resolution system.
상세보기
Shostack Adam ; Allouch David,ILX, Computer security.
상세보기
Wyss Gregory D., Cut set-based risk and reliability analysis for arbitrarily interconnected networks.
상세보기
Schneier Bruce, Method and apparatus for analyzing information systems using stored tree database structures.
상세보기
Branigan,Steven; Burch,Hal Joseph; Cheswick,William R., Method and apparatus for host probing.
상세보기
Gleichauf Robert E. ; Randall William A. ; Teal Daniel M. ; Waddell Scott V. ; Ziese Kevin J., Method and system for adaptive network security using network vulnerability assessment.
상세보기
Zobel,Robert David; Dodd,Timothy David; Millar,Sharon A.; Nesfeder, Jr.,David Gerald; Singer,Christopher S., Method and system for configuring and scheduling security audits of a computer network.
상세보기
Dodd, Timothy D.; Mewett, Scott; Ide, Curtis E.; Overcash, Kevin A.; Dennerline, David A.; Williams, Bobby J.; Sells, Martin D., Method and system for identifying, fixing, and updating security vulnerabilities.
상세보기
Pearson,Sterling Michael, Method and system for remotely configuring and monitoring a communication device.
상세보기
Shah, Pinkesh, Methods, systems and computer program products for evaluating security of a network environment.
상세보기
Mayo Gregory E. ; Desroches Roger G. ; Nedde David N., Network connection status monitor and display.
상세보기
Willebeek LeMair,Marc; Cantrell,Craig; Cox,Dennis; McHale,John; Smith,Brian, Network security system integration.
상세보기
Porras Phillip A. ; Valdes Alfonso, Network surveillance.
상세보기
Heinrich, Nicolas, Overall risk in a system.
상세보기
Cooper,Geoffrey; Valente,Luis Filipe Pereira; Pearcy,Derek P.; Richardson,Harry Alexander, Policy-based vulnerability assessment.
상세보기
Njemanze,Hugh S.; Kothari,Pravin S., Real time monitoring and analysis of events from multiple network security devices.
상세보기
Fox, Kevin L.; Henning, Ronda R.; Farrell, John T.; Miller, Clifford C., System and method for assessing the security posture of a network and having a graphical user interface.
상세보기
Fox, Kevin L.; Henning, Ronda R.; Farrell, John T.; Miller, Clifford C., System and method for assessing the security posture of a network using goal oriented fuzzy logic decision rules.
상세보기
Soles, William E.; Leon E. Morgan Jr.; Anth, Arthur J.; Thompson, Marion B.; O'Shea, Edward T.; Garguilo, Frank E.; Bowlin, Amy H.; Morgan, Joseph, System and method for evaluating the performance of a computer application.
상세보기
Cole,David M.; Hanzlik,Dennis J.; Caso,Erik, System and method for network vulnerability detection and reporting.
상세보기
Keir,Robin M.; Ecker,Stephen A., System and method for network vulnerability detection and reporting.
상세보기
McClure,Stuart C.; Kurtz,George; Keir,Robin; Beddoe,Marshall A.; Morton,Michael J.; Prosise,Christopher M.; Cole,David M.; Abad,Christopher, System and method for network vulnerability detection and reporting.
상세보기
Gleichauf Robert ; Shanklin Steven, System and method for real-time insertion of data into a multi-dimensional database for network intrusion detection and vulnerability assessment.
상세보기
Andres, Steven G.; Cole, David M.; Cummings, Thomas Gregory; Garcia, Roberto Ramon; Kenyon, Brian Michael; Kurtz, George R.; McClure, Stuart Cartier; Moore, Christopher William; O'Dea, Michael J.; Saruwatari, Ken D., System and method of managing network security risks.
상세보기
Ritter,Jeffrey B., System trustworthiness tool and methodology.
상세보기
Magdych,James S.; Rahmanovic,Tarik; McDonald,John R.; Tellier,Brock E.; Osborne,Anthony C.; Herath,Nishad P., System, method and computer program product for improved efficiency in network assessment utilizing a port status pre-qualification procedure.
상세보기
Chen,John Anthony; Gould,Kenneth, Thwarting denial of service attacks originating in a DOCSIS-compliant cable network.
상세보기

이 특허를 인용한 특허 (10)

Gill, Jasvir Singh; Arora, Inderpal Ricky; Kakkera, Srinivasa; Gourineni, Madhu, Active policy enforcement.
상세보기
Thomson, Allan; Coleman, Christopher D., Apparatuses, methods and systems for a cyber threat confidence rating visualization and editing user interface.
상세보기
Rambo, Douglas C.; Trudeau, Steven M.; Hughes, Titanya; Colehouse, Michael; Calabro, Timothy J.; Nguyen, Vincent N.; Brenden, Ben D., Enterprise security measures.
상세보기
Gill, Jasvir Singh; Kakkera, Srinivasa; Arora, Inderpal Ricky; Chunduru, Ravi, Method and apparatus for risk visualization and remediation.
상세보기
Grubel, Brian Christopher; Reid, Dion Stephen David, Methods and systems for architecture-centric threat modeling, analysis and visualization.
상세보기
Gill, Jasvir Singh; Arora, Inderpal Ricky; Kakkera, Srinivasa; Singh, Subrat Narenda, Policy/rule engine, multi-compliance framework and risk remediation.
상세보기
Peddada, Chalam; Kulkarni, Rajandra Laxman, Security risk aggregation and analysis.
상세보기
Kulkarni, Rajandra Laxman; Peddada, Chalam, Security risk aggregation, analysis, and adaptive control.
상세보기
Gill, Jasvir Singh; Arora, Inderpal Ricky; Kakkera, Srinivasa; Singh, Subrat Narendra, Situational intelligence.
상세보기
Mahrous, Hesham; Singh, Navjot; Singh, Govind Preet; Kung, Shiu; Shan, Justine; Malhotra, Baljeet Singh, Software nomenclature system for security vulnerability management.
상세보기

IPC	Description
A	생활필수품
A62	인명구조; 소방(사다리 E06C)
A62B	인명구조용의 기구, 장치 또는 방법(특히 의료용에 사용되는 밸브 A61M 39/00; 특히 물에서 쓰이는 인명구조 장치 또는 방법 B63C 9/00; 잠수장비 B63C 11/00; 특히 항공기에 쓰는 것, 예. 낙하산, 투출좌석 B64D; 특히 광산에서 쓰이는 구조장치 E21F 11/00)
A62B-1/08	.. 윈치 또는 풀리에 제동기구가 있는 것

내보내기 구분	파일저장 인쇄 메일전송
구성항목	기본정보 상세정보 관리번호, 국가코드, 자료구분, 상태, 출원번호, 출원일자, 공개번호, 공개일자, 등록번호, 등록일자, 발명명칭(한글), 발명명칭(영문), 출원인(한글), 출원인(영문), 출원인코드, 대표IPC 관리번호, 국가코드, 자료구분, 상태, 출원번호, 출원일자, 공개번호, 공개일자, 공고번호, 공고일자, 등록번호, 등록일자, 발명명칭(한글), 발명명칭(영문), 출원인(한글), 출원인(영문), 출원인코드, 대표출원인, 출원인국적, 출원인주소, 발명자, 발명자E, 발명자코드, 발명자주소, 발명자 우편번호, 발명자국적, 대표IPC, IPC코드, 요약, 미국특허분류, 대리인주소, 대리인코드, 대리인(한글), 대리인(영문), 국제공개일자, 국제공개번호, 국제출원일자, 국제출원번호, 우선권, 우선권주장일, 우선권국가, 우선권출원번호, 원출원일자, 원출원번호, 지정국, Citing Patents, Cited Patents
저장형식	Text(ASCII format) Excel format PIAS분석(.xls)
메일정보	받는사람 (필수) @ 보내는사람 (선택) @ 제목 내용 KISTI 검색결과 이메일 서비스
안내	총 건의 자료가 검색되었습니다. 다운받으실 자료의 인덱스를 입력하세요. (1-10,000) 검색결과의 순서대로 최대 10,000건 까지 다운로드가 가능합니다. 데이타가 많을 경우 속도가 느려질 수 있습니다.(최대 2~3분 소요) 다운로드 파일은 UTF-8 형태로 저장됩니다. 파일의 내용이 제대로 보이지 않을실 때는 웹브라우저 상단의 보기 -> 인코딩 -> 자동선택 여부를 확인하십시오. ~ Text(ASCII format) Excel format

연합인증

Security vulnerability information aggregation 원문보기

초록 ▼

대표청구항 ▼

연구과제 타임라인

이 특허에 인용된 특허 (27)

이 특허를 인용한 특허 (10)

관련 콘텐츠

특허 원문 보기

IPC 상위 출원인

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

선택된 텍스트

연합인증

Security vulnerability information aggregation 원문보기

초록 ▼

대표청구항 ▼

연구과제 타임라인

전체(0) 논문(0) 특허(0) 보고서(0)

전체(0) 논문(0) 특허(0) 보고서(0)

이 특허에 인용된 특허 (27)

이 특허를 인용한 특허 (10)

관련 콘텐츠

특허 원문 보기

IPC 상위 출원인

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

선택된 텍스트