Formalizing, diffusing and enforcing policy advisories and monitoring policy compliance in the management of networks
원문보기
IPC분류정보
국가/구분
United States(US) Patent
등록
국제특허분류(IPC7판)
G06F-015/173
H04L-012/24
출원번호
US-0569640
(2009-09-29)
등록번호
US-9231827
(2016-01-05)
발명자
/ 주소
Hindawi, David Salim
Donoho, David Leigh
Lippincott, Lisa Ellen
Goodrow, Dennis S.
Brown, James Milton
Lincroft, Peter
Loer, Peter Benjamin
Hindawi, Orion Yosef
출원인 / 주소
International Business Machines Corporation
대리인 / 주소
Tkacs, Stephen R.
인용정보
피인용 횟수 :
0인용 특허 :
81
초록▼
An apparatus and method for centralized policy management of large-scale networks (221) of computational devices is disclosed. The apparatus includes a number of distributed clients (400) run on registered computers (201-203), gathering policy advisories (401) and reporting (405) relevance (403) to
An apparatus and method for centralized policy management of large-scale networks (221) of computational devices is disclosed. The apparatus includes a number of distributed clients (400) run on registered computers (201-203), gathering policy advisories (401) and reporting (405) relevance (403) to a system administrator (224). The system administrator may view the relevant messages (505) through a management interface (500) and deploy suggested actions to distributed clients (503), where the actions are executed to apply the solutions of the advisories (408).
대표청구항▼
1. A system for communications comprising; a processor; anda memory coupled to the processor, wherein the memory comprises instructions which, when executed by the processor, cause the processor to:gather, by a distributed client, advice messages from at least one advice provider site based on statu
1. A system for communications comprising; a processor; anda memory coupled to the processor, wherein the memory comprises instructions which, when executed by the processor, cause the processor to:gather, by a distributed client, advice messages from at least one advice provider site based on status of the distributed client;determine relevance of each advice message by evaluating a relevance clause of the advice message with respect to properties of a computational device on which the distributed client runs;responsive to determining a given advice message is relevant to the distributed client, report the given advice message from the distributed client to a management system, wherein the given advice message comprises an action to perform; andresponsive to receiving an action request from the management system, perform, by the distributed client, the action on the computational device. 2. The system of claim 1, wherein the instructions further cause the processor to: register, by the distributed client, with the management system to identify that it is running and ready to communicate. 3. The system of claim 1, wherein gathering advice messages comprises: gathering the advice messages from a mirror server, wherein the mirror server receives a pool of advice messages for a plurality of distributed clients. 4. The system of claim 3, wherein the distributed client communicates with the mirror server via a local area network. 5. The system of claim 3, wherein the mirror server communicates with the at least one advice provider site via the Internet. 6. The system of claim 1, wherein a given action request from the management system requests a given action comprising at least one of: delete, move or copy files;set or delete registry entries;run operating system or programming language commands;delete, add, or commit dynamic-link library modules;delete, close, or restore an advice message;subscribe or unsubscribe to a given advice provider site;change a gathering schedule or force an immediate gathering of advice messages; orforce an immediate relevance evaluation of advice messages. 7. The system of claim 1, wherein the distributed client gathers the advice messages anonymously. 8. The system of claim 1, wherein the advice messages are encrypted. 9. The system of claim 8, wherein each advice message comprises an explanatory message. 10. The system of claim 8, wherein each advice message comprises at least one action that provides a solution. 11. The system of claim 1, wherein reporting the given advice message from the distributed client to the management system comprises: sending a text file from the distributed client to a reporting server within the management system using a hypertext transport protocol POST operation. 12. The system of claim 11, wherein the text file contains, in a transparent format, list of all changes in relevance status on the computational device since a previous relevance evaluation. 13. The system of claim 1, wherein the management system comprises a management interface configured to perform: displaying advice messages;deploying actions;monitoring actions; andmonitoring status of distributed clients. 14. The system of claim 13, wherein the management interface is further configured to perform: adding, modifying, or canceling a subscription of a given distributed client to one or more advice provider sites. 15. The system of claim 13, wherein the management interface is further configured to perform: selecting a group of computational devices, specifying action messages, scheduling, and controlling execution when deploying actions proposed by relevant advice messages. 16. The system of claim 13, wherein the management interface is further configured to perform: deploying encrypted actions of relevant advice messages to a selected group of distributed clients. 17. The system of claim 13, wherein the management interface is further configured to perform: monitoring status of each distributed client while actions are being deployed and executed; andstopping previously deployed actions which have not finished running. 18. The system of claim 1, further comprising: a central database for storing data about distributed clients, about messages that are being actively monitored, and about actions being deployed and monitored. 19. A method, in a data processing system, for communications, the method comprising; gathering, by a distributed client running on a computing device in the data processing system, advice messages from at least one advice provider site based on status of the distributed client;determining relevance of each advice message by evaluating a relevance clause of the advice message with respect to properties of the computing device;responsive to determining a given advice message is relevant to the distributed client, reporting the given advice message from the distributed client to a management system, wherein the given advice message comprises an action to perform; andresponsive to receiving an action request from the management system, performing, by the distributed client, the action on the computing device. 20. The method of claim 19, further comprising: registering, by the distributed client, with the management system to identify that it is running and ready to communicate. 21. The method of claim 19, wherein gathering advice messages comprises: gathering the advice messages from a mirror server, wherein the mirror server receives a pool of advice messages for a plurality of distributed clients. 22. The method of claim 21, wherein the distributed client communicates with the mirror server via a local area network. 23. The method of claim 21, wherein the mirror server communicates with the at least one advice provider site via the Internet. 24. The method of claim 19, wherein the distributed client gathers the advice messages anonymously. 25. The method of claim 19, wherein the advice messages are encrypted. 26. The method of claim 25, wherein each advice message comprises an explanatory message. 27. The method of claim 25, wherein each advice message comprises at least one action that provides a solution. 28. The method of claim 19, wherein the management system comprises a management interface configured to perform: displaying advice messages;deploying actions;monitoring actions; andmonitoring status of distributed clients. 29. The method of claim 28, wherein the management interface is further configured to perform: adding, modifying, or canceling a subscription of a given distributed client to one or more advice provider sites. 30. The method of claim 28, wherein the management interface is further configured to perform: selecting a group of computing devices, specifying action messages, scheduling, and controlling execution when deploying actions proposed by relevant advice messages. 31. The method of claim 28, wherein the management interface is further configured to perform: deploying encrypted actions of relevant advice messages to a selected group of distributed clients. 32. The method of claim 28, wherein the management interface is further configured to perform: monitoring status of each distributed client while actions are being deployed and executed; andstopping previously deployed actions which have not finished running. 33. The method of claim 19, further comprising: storing in a central database data about distributed clients, about messages that are being actively monitored, and about actions being deployed and monitored. 34. A computer program product comprising a computer readable storage medium having a computer readable program stored therein, wherein the computer readable program, when executed on a computing device, causes the computing device to: gather, by a distributed client running on the computing device, advice messages from at least one advice provider site based on status of the distributed client;determine, by the distributed client, relevance of each advice message by evaluating a relevance clause of the advice message with respect to properties of the computing device;responsive to the distributed client determining a given advice message is relevant, reporting the given advice message from the distributed client to a management system, wherein the given advice message comprises an action to perform; andresponsive to receiving an action request from the management system, performing, by the distributed client, the action on the computing device. 35. The computer program product of claim 34, wherein the computer readable program further causes the computing device to: register, by the distributed client, with the management system to identify that it is running and ready to communicate. 36. The computer program product of claim 34, wherein gathering advice messages comprises: gathering the advice messages from a mirror server, wherein the mirror server receives a pool of advice messages for a plurality of distributed clients. 37. The computer program product of claim 34, wherein the management system comprises a management interface configured to perform: displaying advice messages;deploying actions;monitoring actions; andmonitoring status of distributed clients.
연구과제 타임라인
LOADING...
LOADING...
LOADING...
LOADING...
LOADING...
이 특허에 인용된 특허 (81)
Stollfus Brennen W. ; Eamon ; Jr. Robert R., Administration of networked peripherals using particular file system.
Stupek ; Jr. Richard A. (Houston TX) Shaffer David S. (Cypress TX) Jones Curtis R. (Cypress TX) Davis Steve (Houston TX) Justice ; Jr. William D. (Houston TX), Automatic computer upgrading.
Cheng William ; Hwang Kenneth ; Kannan Ravi ; Katchapalayam Babu ; Liu Bing ; Narasimhan Balaji ; Ramanujam Gopal ; Tran Jonathan, Automatic updating of diverse software products on multiple client computer systems by downloading scanning application to client computer and generating software list on client computer.
Carcerano Christopher John ; Barnard John Dickson ; Wilson ; Jr. Richard Alexander ; Gibson Donald Parke, Browser-based network management allowing administrators to use web browser on user's workstation to view and update configuration of network devices.
Chamberlain, Benjamin C.; Collie, Robert C.; Hatakeda, Darrin N., Method and computer-readable medium for installing an upgrade to an application program.
John C. Delo ; Malcolm S. Haar ; Chetan A. Parulekar ; Tracy D. Ferrier ; Benjamin Chamberlain ; David E. Gonzalez ; David R. Mckinnis, Method and system for advertising applications.
Lucovsky, Mark; Cherry, Michael J.; Plastina, Daniel; Shah, Bharat; Mishra, Debi P.; Kays, Jr., David E.; Horstmann, Markus, Method and system for assigning and publishing applications.
Reisman, Richard R., Method and system for distributing updates by presenting directory of software available for user installation that is not already installed on user station.
Erin Marie Bourke-Dunphy ; Kartik Nadipuram Raghavan ; George Jenkins ; Bill Ingle ; Keith Logan, Method and system for integrating a client computer into a computer network.
Mishra, Debi P.; Kays, Jr., David E.; Horstmann, Markus; Lucovsky, Mark H.; Chan, Shannon J.; Shah, Bharat A.; Jensenworth, Gregory A., Method and system for on-demand installation of software implementations.
William E. Barker ; Lisa M. Connelly ; Marvin A. Eggert ; Michael P. Foley ; Kenneth R. Macfarlane ; Philip M. Parsons ; Girish Rai ; Jerome E. Rog ; Kurt A. Vangsness, Method for computer internet remote management of a telecommunication network element.
Emens, Michael L.; Ford, Daniel A.; Kraft, Reiner; Tewari, Gaurav, Method of automatically selecting a mirror server for web-based client-host interaction.
Brodersen Robert A. ; Chatterjee Prashant ; Coker John L. ; Lim Peter S., Method of synchronizing independently distributed software and database schema.
D'Souza, David J.; Nawaz, Sabina; Snapper, Erik Jon; Mitchell, Darren; Endres, Raymond Edward; Martineau, Teresa; Shyam, Bharat; Ellison-Taylor, Ian Michael; Ahmed, Mohsin, Object framework and services for periodically recurring operations.
Groath, Steve G.; Miller, Myke L.; Sachse, Christopher; Bloom, Jeremy D.; Turkson, Leslie T.; Lund, Timothy; Beskar, Patrick J., Providing an integrated service assurance environment for a network.
Gillies Graeme Sinclair,GBX ; Gosden Jeffery John,GBX ; Jafari-Langroudi Sardar,GBX ; Sutton Kevin John,GBX, Replication tracking method and apparatus for a distributed data processing system.
John C. Delo ; Malcolm S. Haar ; Chetan A. Parulekar ; Tracy D. Ferrier ; Benjamin Chamberlain ; David E. Gonzalez ; David R. Mckinnis, Software implementation installer mechanism.
Rao, Bindu Rama, System and method for determining if a device needs to be updated and locating and invoking an update agent to update the firmware or software in the device.
North, David G.; Engstrom, John P.; De Rudder, Stephen L.; Cathey, David L., System and method for managing computing devices within a data communications network from a remotely located console.
Lavey ; Jr. Anthony M. ; Loftin Rex Lavon ; Murray Sean T. ; Pisello John M., System and method for transparently registering and updating information over the internet.
Masters,Michael W.; Werme,Paul V.; Synan,William D.; Welch,Lonnie R., System for monitoring and reporting performance of hosts and applications and selectively configuring applications in a resource managed system.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.