| 发明名称 | Image vulnerability repair in a networked computing environment | ||
| 摘要 | Embodiments of the present invention provide an approach to repair vulnerabilities (e.g., security vulnerabilities) in images (e.g., application images) in a networked computing environment (e.g., a cloud computing environment). Specifically, an image is checked for vulnerabilities using a database of known images and/or vulnerabilities. If a vulnerability is found, a flexible/elastic firewall is established around the image so as to isolate the vulnerability. Once the firewall has been put in place, the vulnerability can be repaired by a variety of means such as upgrading the image, quarantining the image, discarding the image, and/or generating a new image. Once the image has been repaired, the firewall can be removed. | ||
| 申请公布号 | US9094446(B2) | 申请公布日期 | 2015.07.28 |
| 申请号 | US201414156665 | 申请日期 | 2014.01.16 |
| 申请人 | International Business Machines Corporation | 发明人 | Chakra Al;Dawson Christopher J.;Deng Yu;Hamilton, II Rick A.;Li Jenny S.;Zeng Liangzhao |
| 分类号 | H04L29/06;G06F21/55;G06F21/57 | 主分类号 | H04L29/06 |
| 代理机构 | Keohane & D'Alessandro PLLC | 代理人 | Schiesser William E.;Keohane & D'Alessandro PLLC ;Barasch Maxine L. |
| 主权项 | 1. A method for repairing image vulnerability in a networked computing environment, comprising: identifying an image in the networked computing environment having a vulnerability, the image being identified based on a database of known vulnerabilities; establishing a firewall around the image to isolate the vulnerability; repairing the image to remove the vulnerability, the repairing comprising at least one of upgrading the image and quarantining the image; and removing the firewall. | ||
| 地址 | Armonk NY US | ||