US 12,316,682 B2
System for processing content in scan and remediation processing
Brian H. Hajost, Great Falls, VA (US); and Matthew Richard Heimlich, Lovettsville, VA (US)
Assigned to STEELCLOUD LLC, Ashburn, VA (US)
Filed by SteelCloud LLC, Ashburn, VA (US)
Filed on Nov. 20, 2023, as Appl. No. 18/514,932.
Application 18/514,932 is a continuation of application No. 15/854,992, filed on Dec. 27, 2017, granted, now 11,824,895.
Prior Publication US 2024/0089298 A1, Mar. 14, 2024
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/00 (2022.01); G06F 11/14 (2006.01); G06F 21/57 (2013.01); H04L 9/40 (2022.01)
CPC H04L 63/20 (2013.01) [G06F 11/1469 (2013.01); G06F 21/577 (2013.01); H04L 63/105 (2013.01); H04L 63/1433 (2013.01); G06F 2201/80 (2013.01)] 11 Claims
OG exemplary drawing
 
1. A computer processor implemented method for processing content in a computing environment, comprising:
receiving a remediation request for the computing environment;
responding to the request by loading both compliance content referencing one or more controls in the computing environment and also remediation content,
the compliance content comprising, for each control referenced, one or more compliance values each defining a current setting of a control in the computing environment for which the control is compliant with a policy enacted on the computing environment,
the remediation content comprising, for each of the controls in the compliance content, a remediation value defining a new setting of the control in the computing environment to which the current setting of the control is to be changed;
the compliance content and the remediation content additionally comprising different logic switches comprising switches selected form the group consisting of an accepted non-compliance flag, an ignore switch, a remediation ignore flag, and a control type switch;
scanning the computing environment to determine all controls in the computing environment and also to capture information including a current setting for each control;
determining a subset of out-of-compliance ones of the controls from all of the controls, and filtering the subset of the out-of-compliance ones of the controls to only those of the out of compliance ones of the controls having in the compliance content a corresponding remediation value;
creating a synchronous rollback file and moving current state information for the filtered subset of the out-of-compliance ones of the controls into the rollback file along with corresponding remediation values for respective ones of the controls in the filtered subset;
remediating each of the out-of-compliance ones of the controls in the filtered subset with the remediation value set forth in the compliance content;
re-scanning the computing environment to determine all controls in the computing environment and also to capture information including the current setting for each control;
determining from the remediation request, a specific report type; and,
generating a report of the specific report type based upon the captured information.