US 12,170,656 B1
Authenticated assessment of network system assets
Paul Miseiko, Mississauga (CA); and James Green, El Segundo, CA (US)
Assigned to Rapid7, Inc., Boston, MA (US)
Filed by Rapid7, Inc., Boston, MA (US)
Filed on Jun. 21, 2022, as Appl. No. 17/808,078.
Int. Cl. H04L 9/40 (2022.01)
CPC H04L 63/0823 (2013.01) [H04L 63/1408 (2013.01); H04L 63/166 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method comprising:
performing, by a scan assistant on an asset of a network:
establishing a transport layer security (TLS) connection with a scan engine on a device having electronic communication with the asset using TLS protocol, wherein the asset comprises at least one computing resource, wherein the scan engine is configured to use the scan assistant to perform scans of the asset based on a communication protocol, wherein the scan assistant provides the scan engine access to perform the scans, and
wherein the establishing of the TLS connection comprises the scan assistant:
receiving a public certificate from the scan engine; and
authenticating the scan engine to execute scan operations on the asset based on verifying the public certificate from the scan engine with a certificate authority stored on the asset;
receiving, from the scan engine, one or more scan operations to execute on the asset according to the communication protocol;
executing the one or more scan operations on the asset to obtain results reflecting a state of the asset; and
sending the results to the scan engine according to the communication protocol.