Hybrid analysis of vulnerable information flows,申请号US201213731170-传众专利搜索

首页产品黄页商标征信

会员服务注册登录

法人/股东/高管

发明名称	Hybrid analysis of vulnerable information flows
摘要	Arrangements described herein relate to analyzing vulnerable information flows in an application. A black-box scan of the application can be performed to record a call-tree representation of call stacks arising in the application due to test inputs provided during the black-box scan. For each path in the call-tree representation that does not constitute a vulnerable information flow during the black-box scan, a static analysis can be performed to determine at least one parameter value that, when abstracted, drives execution of the application, via the path, to flow to the at least one security sink. A security report can be generated identifying at least one of the paths in the call-tree representation that does not constitute the vulnerable information flow during the black-box scan, but flows to the at least one security sink when the at least one parameter value is abstracted.
申请公布号	US8869287(B2)	申请公布日期	2014.10.21
申请号	US201213731170	申请日期	2012.12.31
申请人	International Business Machines Corporation	发明人	Beskrovny Evgeny;Sharabani Adi;Tripp Omer
分类号	G06F21/57	主分类号	G06F21/57
代理机构	Cuenot, Forsythe & Kim, LLC	代理人	Cuenot, Forsythe & Kim, LLC
主权项	1. A system comprising: a hardware processor programmed to initiate executable operations comprising: performing a black-box scan of an application; based on the black-box scan, recording a call-tree representation of a plurality of call stacks arising in the application due to test inputs provided during the black-box scans the call tree representation indicating paths between the plurality of call stacks;performing, for each of the paths in the call-tree representation that does not constitute a vulnerable information flow during the black-box scan, a static analysis, and by the static analysis determining at least one parameter value that, when abstracted, drives execution of the application, via the path in the call-tree representation that does not constitute a vulnerable information flow during the black-box scan, to flow to the at least one security sink; andgenerating a security report identifying at least one of the paths in the call-tree representation that does not constitute the vulnerable information flow during the black-box scan, but flows to the at least one security sink when the at least one parameter value is abstracted.
地址	Armonk NY US

您可能感兴趣的专利

PRODUCTION OF HIGH STRENGTH AND HIGH TOUGHNESS RAIL

DEVICE FOR CARRYING GREEN COMPACT

STYRENE RESIN COMPOSITION

COMPOSITION CURABLE BY ACTINIC RADIATION AND CURED MATERIAL OBTAINED THEREFROM

ACRIDINE DERIVATIVE, ITS PRODUCTION AND LABELING WITH THE SAME

BIODEGRADABLE BUILDER, ITS PRODUCTION AND DETERGENT COMPOSITION

PRODUCTION OF PRECURSOR

DEVICE FOR SUPPORTING PORTABLE COMPUTER

JOINT OF CROSSLINKED POLYETHYLENE INSULATED POWER CABLE, AND CONNECTION METHOD

PRESSURE CONNECTION METHOD FOR CONDUCTOR OF POWER CABLE

SEAL STRUCTURE OF CABLE CONNECTION BOX

TOOL FOR PREVENTING BIRD OR BEAST INJURY

ACCUMULATOR WITH CHECK VALVE

SEMICONDUCTOR PRODUCING APPARATUS

SHIP RADAR TARGET TRACKING EQUIPMENT

SEPARATION PREVENTIVE PIPE COUPLING

SEWAGE DISPOSAL TANK

ELECTROSTATIC CHARGE IMAGE DEVELOPING TONER

ATM CHANNEL MONITOR