US 12,192,242 B2
Systems and methods for managing device attestation and computing environment policy compliance
Irene Voskamp, Friday Harbor, WA (US); Michiel Van Otegem, Wormer (NL); Doreen Lynn Galli, Henderson, NV (US); and Adrian Vincenzo Diglio, Bellevue, WA (US)
Assigned to Microsoft Technology Licensing, LLC, Redmond, WA (US)
Filed by MICROSOFT TECHNOLOGY LICENSING, LLC, Redmond, WA (US)
Filed on Nov. 9, 2022, as Appl. No. 17/983,820.
Prior Publication US 2024/0155004 A1, May 9, 2024
Int. Cl. H04L 9/40 (2022.01); G06F 21/62 (2013.01); G06F 21/64 (2013.01)
CPC H04L 63/20 (2013.01) [G06F 21/6227 (2013.01); G06F 21/645 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A computer-implemented method for generating and utilizing digital ledgers corresponding to different computing environments and for generating corresponding endorsement records based on policies applied to the computing environments, the method comprising:
identifying a computing environment that includes a plurality of different software components and a plurality of hardware components;
determining a selected set of computing components from the plurality of software and hardware components to generate a ledger, wherein a selection of the selected set of computing components is based on a specified deployment and utilization of the computing environment;
for each computing component in the selected set of computing components, identifying whether there is any electronic record of evidence that is known and available for inclusion into the ledger of evidence;
adding electronic records of evidence into the ledger, including adding each electronic record of evidence that is known and available for inclusion into the ledger of evidence for each computing component in the selected set of computing components; and
generating a strong identifier for the ledger that is verifiable for providing assurance that contents of the ledger have not been modified.