Abstract: A client computing device has a storage device storing a plurality of files and a system agent. The system agent applies a hash function to binary data read from the plurality of files to generate a set of data signatures. A server computing device has a database interface to access a database representing a state of the network and storage for a set of exemplar data signatures resulting from a scan of one or more exemplar computing devices, each data signature generated by applying a hash function to binary data representing a file. The client computing device is configured to receive and compare the set of exemplar data signatures with the generated set of data signatures, and to transmit data to the server computing device based on the comparison. The server computing device is configured to obtain data received from the client computing device and update records in the database.

Abstract: A method of monitoring an operating state of a computing device includes running a system agent on the computing device. An introduced process is executed on the computing device, and a captured parameter relating to at least one of the system agent and the introduced process is captured. The captured parameter is compared to at least one pre-determined parameter. Where the captured parameter differs from the pre-determined parameter by more than a pre-determined threshold, a signal indicative of a change in operating state of the computing device is output.

Abstract: Methods and systems are described herein to restrict execution of files stored on a computing device. In an example a request to execute a file is intercepted by a security agent on the computing device. The security agent is arranged to determine if metadata stored with the with the file comprises a cryptographic code comprising a function of at least a private key of a security server in communication with the computing device and a first hash value the first hash value being an output of a hash function applied to data associated with the file at a first time. If the security agent determines that the metadata comprises the cryptographic code, it verifies the code with a public key of the security server, obtains a second hash value of the file at a second time and executes the file if the first hash value matches the second hash value.

Abstract: A central server in a network stores, or has access to, data relating to software stored on computers in subnets of the network. The central server is able to designate a computer in each subnet as a wake-up master for that subnet. The wake up master maintains an awoken state and is able to issue a wakeup signal to any computer designated by the central server in the subnet. A computer in a subnet requesting software from another computer in the subnet, but unable to find it because the other computer may not be awake, issues a request to the central server. The central server identifies a computer in the subnet likely to have the software and causes the wake-up master of the subnet to wake up the identified computer so the requesting computer can communicate with, and download, the requested software from the identified computer.

Abstract: A computer in a network has an operating system. The operating system is configured to prevent running of software not identified in a list of approved software referred to as a white list. Software absent from the list is prevented from running by the operating system. The network has a server which determines, for each item of software on the white list, the administration rights of the users of computers having that item of software. If a white listed software item is present on one or more computers used by users without admin rights, then the admin rights of any user of other computers having the same white listed software item are withdrawn by instructions sent by the server to the computer.

Abstract: Software is installed and/or un-installed in networks. Each of a plurality of networks has a network management system storing metadata comprising at least the identities and command lines of software installed using installation systems of the management systems. On each network the network management system of the network is accessed to obtaining the metadata of items of software run on the network. That metadata is sent to a server which serves all the networks. At the server, a comparison is done to compare the metadata of instances of the same software on different networks. For those instances of the same software having the same metadata on different networks, the metadata is storing in a database. The networks use the metadata stored in the database to automatically install or un-install software.

Abstract: User data stored on a first computer in a network is backed up to a computer which is one of a plurality of other computers in the network. The user data may be backed-up because a new operating system is to be installed. A request message indicating that the user data needs to be backed up is transmitted from the first computer to the network and is received at the other computers. One of the other computers is selected based on data indicating the extent to which each of the replying computers complies with one or more selection criteria. The first computer then transmits the user date to the selected computer with an identifier identifying the user data. The user data is stored in storage associated with the selected computer. The first and other computers may be in the same sub-network. The selection may be made by the first computer.

Abstract: A computer implemented method to monitor the distribution of software to computers on a network is provided. The network has a data source, for example a systems management tool, which stores data relating to downloads of software. It is desirable for the purpose of operating the network economically to monitor the distribution of software to users. The systems management tool is accessed to determine the number of the computers on the network which have received a particular item of software. That number is compared with a threshold number which is small compared to the number of computers on the network. If the number is less than the threshold that is taken as an indication that the particular item of software has been distributed to the computers by a download as a result of one or more individual requests by users of the computers.

Abstract: A network comprises a plurality of computers including a first computer and a target computer. It also has a source of a plurality of policies, and an arrangement which installs policies on the computers of the network. The first computer has program code for accessing the source and for selecting one of the policies. The source responds to the selection to provide the selected policy to the installing arrangement. The installing arrangement has program code for automatically installing the selected policy on the target computer.

Abstract: Software installed on a computer network is often inconsistently, or even incorrectly, identified. The same software may be identified in different ways. A catalogue of standardized identifiers is provided. The actual identifiers of software installed on the network are accessed and mapped to the standardized identifiers of the catalogue. The standardized identifiers are used to manage the installed software, monitor license compliance and/or, monitor maintenance agreements amongst other uses. Data relating to the use of the software is also be obtained and associated with the identification data. Identified software is uninstalled if it complies with a preset criterion. The usage data together with the standardized identifiers may be used to un-install un-used or under used software and licenses cancelled or reallocated. The standardized identifiers may be used to identify if forbidden software is being used and if so to compulsorily un-install the software.

Abstract: Software installed on a computer network is often inconsistently, or even incorrectly, identified. The same software may be identified in different ways. A catalogue of standardized identifiers is provided. The actual identifiers of software installed on the network are accessed and they are mapped to the standardized identifiers of the catalogue. The standardized identifiers are used to manage the installed software, monitor license compliance and/or, monitor maintenance agreements amongst other uses. Data relating to the use of the software may also be obtained and associated with the identification data. The usage data together with the standardized identifiers allows managers to more reliably manage software on the network. For example un-used software may be un-installed and licenses cancelled or reallocated.

Abstract: A method of controlling power consumption in a computer uses a power management program installed on the computer to detect the identities of processes running on the computer which maintain the computer in a high power state in the absence of input activity. The program compares the identity of the or each process running on the computer with a set of identities of previously identified processes and causes the computer to adopt a low power state if the detected identity of a process, or the detected identities of all the processes, running on the computer is/are in the set of previously identified processes.

Abstract: A computer implemented method monitors a computer to determine values of a plurality of activity metrics of the monitored computer. A weighted combination of functions of the determined values is calculated as a measure of performance of the monitored computer. The weighted combination may be a weighted combination of net values of the activity metrics. In one method, the net values are calculated as the determined values of the plurality of activity metrics of the monitored computer excluding contributions to the values from one or more predetermined activities. In another method, the net values are calculated as total values of the respective activity metrics from which the total values of the one or more predetermined activities are subtracted. The weighted combination may be used to control power consumption or otherwise take action in relation to the computer.

Abstract: An operating system deployment arrangement provides a database connected to a network for use in monitoring the boot status of machines connected to sub-networks of the network. A workstation connected to a sub-network is adapted to act as a server for a pre-installation environment to machines newly connecting to the sub-network or at the same geographical location. The workstation carries a program for detecting boot initiation messages broadcast on the sub-network and for progressing booting of newly connecting machines in accordance with boot action data held by the database. In particular, the workstation also sends a software agent and operating system deployment processes to a newly connected machine and the agent takes over progression of the booting process from the workstation. The data held in the database for any one machine is updated as booting progresses.

Abstract: A computer implemented method of monitoring the operational state of a computer, comprises running on the monitored computer a monitoring program configured to monitor a set of parameters. The set of monitored parameters comprises for example the name(s) of any process(es) running on the computer, together with i) the values of a plurality of metrics indicating the level of activity of the computer, and/or ii) time. The monitored parameters are provided by the monitoring program to another, monitoring, computer; which runs a comparison program which compares the set of monitored parameters with a predetermined model which determines whether or not the monitored computer is in a predetermined operational state defined by the model, and produces an indication of whether or not the monitored computer complies with the model.

Abstract: A power control system for workstations (31-54) which are connected to a network (2). An application (300) running on a server (1) has access to a profile database (304) which stores records of estimated workstation start and end times and estimated user start and end times, and sends shut down and start up instructions to each workstation in accordance with the profile data. The time assumed to be the working day start for a workstation is either the estimated working day start for that workstation, or the estimated working day start for the user most likely to use that workstation. The time assumed to be the working day end for a workstation is either the estimated working day end for that workstation, or the estimated working day end for a user on that workstation. Workstation and user data is logged (303) to create the profiles.

Abstract: A systems management computer is provided, and comprises a processor configured to execute a set of stored instructions that implements a method for receiving data from a server over a first network and for distributing the data to a plurality of computers over a different second network. One instruction is for electing a computer from said plurality of computers of the second network to act as an active download master. Another instruction operates if the computer is elected as the active download master computer and initiates downloading of data over the first network to local data storage. A further instruction operates if the computer is elected as the active download master computer and multicasts, by a multicast distribution engine, the downloaded data over the second network to other computers of the second network.

Abstract: A data processing system for distributing a package of data from a source to a plurality of data processing machines arranged in a plurality of sites. The data is transmitted from the source to the plurality of data processing machines by means of a multicast. At each site, a local data processing machine is designated as a site master; the other local data processing machines report missing data portions to the site master; and the site master consolidates reports of missing data portions, and requests missing data portions from the source. The source then transmits the missing data portions to the plurality of data processing machines by means of a further multicast. If the site master receives a report of missing data that the site master has stored locally, the site master provides that missing data to the local machines by means of a site multicast.

Abstract: Embodiments of the invention are concerned with data distribution apparatus, for use on each of a plurality of machines in distributing a set of data over a network amongst said machines. The apparatus comprises: i) multicast apparatus for use in multicasting said set of data over the network for receipt by others of said machines; and ii) a data retrieval arrangement for use in retrieving data from a set of data previously multicast by at least one of said machines, and supplying retrieved data to the multicast apparatus for use in multicasting the retrieved data over the network to others of the plurality of machines, wherein more than one of said plurality of machines is enabled to act as a multicast source in distributing the set of data over the network. In embodiments of the invention, a first machine is elected as download master and multicasts downloaded data, via a group address, to the networked machines.

Abstract: Embodiments of the invention are concerned with data distribution apparatus, for use on each of a plurality of machines in distributing a set of data over a network amongst said machines. The apparatus comprises: i) multicast apparatus for use in multicasting said set of data over the network for receipt by others of said machines; and ii) a data retrieval arrangement for use in retrieving data from a set of data previously multicast by at least one of said machines, and supplying retrieved data to the multicast apparatus for use in multicasting the retrieved data over the network to others of the plurality of machines, wherein more than one of said plurality of machines is enabled to act as a multicast source in distributing the set of data over the network. In embodiments of the invention, a first machine is elected as download master and multicasts downloaded data, via a group address, to the networked machines.