| 发明名称 | Exploiting software compiler outputs for release-independent remote code vulnerability analysis | ||
| 摘要 | A central check system (CCS) is coupled to a remote software system (RSS). Data is fetched from the RSS, the data being software code derivatives generated by a software compiler on the RSS with a version different than a version of the software program associated with the CCS. Static software testing is performed of the software program on the CCS using the fetched data and test results provided in a required format. | ||
| 申请公布号 | US9569335(B1) | 申请公布日期 | 2017.02.14 |
| 申请号 | US201514877522 | 申请日期 | 2015.10.07 |
| 申请人 | SAP SE | 发明人 | Boehm Thilo;Lehmann Juergen;Thuemmel Wolf Hagen;Dunz Thorsten Marcus |
| 分类号 | G06F9/44;G06F11/36 | 主分类号 | G06F9/44 |
| 代理机构 | Fish & Richardson P.C. | 代理人 | Fish & Richardson P.C. |
| 主权项 | 1. A computer-implemented method, comprising: coupling a central check system (CCS) to a remote software system (RSS); fetching data from the RSS, the data being software code derivatives generated from a software program by a software compiler on the RSS with a version different than a version of the same software compiler associated with the CCS, wherein the software compiler on the RSS is used to ensure the syntactic correctness of the software program on the RSS and to generate the software code derivatives on the RSS prior to transmission to the CCS; performing static software testing of the software program on the CCS using the fetched data and a data flow graph constructed from the fetched data and including an application programming interface used to traverse the data flow graph; and providing test results based on the static software testing in a required format. | ||
| 地址 | Walldorf DE | ||