| 主权项 |
1. A system to ensure the security of data comprising:
at least one device; an application software installed on the device and coupled to a hardware and a software stack of the device, wherein the application software provides a set of instructions to remotely command the device to perform an inventory scan and a content scan of the hardware and the software stack of the device, consolidate and secure a collection of results of the inventory scan and the content scan of the hardware and the software stack of the device, store the collection of results in a database, use the collection of results to determine a statistically known-good configuration for a type of device, compare the collection of results with the statistically known-good configuration for the type of device, note any differences in a most recent message digest compared to the statistically known-good configuration, and send an alert to the device; a data encryption software and a remote attestation software installed on the device and coupled to the hardware and software stack of the device wherein the data encryption software and the remote attestation software is installed within a user space of the software stack of the device and associated with a data storage wherein the data storage includes persistent memory that is subdivided into a user data, a system image, and a boot partition; and an attestation server to communicate with the device via a communication network. |
