| CPC G06F 21/577 (2013.01) [G06F 8/65 (2013.01)] | 20 Claims |
|
1. An IHS (Information Handling System) supporting a computational workload, the IHS comprising:
one or more CPUs utilizing one or more buses that connect to a plurality of hardware components of the IHS; and
a remote access controller supporting remote management of the Information Handling System (IHS), the remote access controller comprising a logic unit and a memory device having instructions stored thereon that, upon execution by the logic unit, cause the remote access controller to:
receive, from an update system, an indication of an update comprising configurations for a plurality of the hardware components of the IHS;
retrieve a plurality of vulnerability proofing requirements for updates that modify the configuration the plurality of hardware components of the IHS, wherein the vulnerability proofing requirements comprise requirements for updates that are validated for operation of the workload;
transmit the vulnerability proofing requirements to the update system, where based on the vulnerability proofing requirements a plurality of catalogs specifying known vulnerabilities of hardware components are consulted to determine whether configurations from the update are identified as vulnerable in one or more of the catalogs and whether remediations to the identified vulnerabilities are validated for operation of the workload;
when the configurations from the update are not identified in the plurality of catalogs specified in the vulnerability proofing requirements, receive transmission of the update from the update system for use in updating the configurations for the hardware components of the IHS; and
when the configurations from the update are identified in the catalogs specified in the vulnerability proofing requirements and remediations to the identified vulnerabilities are not validated for operation of the workload, receive a notification from the update system that the update has been terminated.
|