Security scan based on dynamic taint

Invention Grant

US09558355B2 Security scan based on dynamic taint 有权

Title translation: 基于动态污染的安全扫描

Please log in to see more content

Patent Title: Security scan based on dynamic taint
Patent Title (中): 基于动态污染的安全扫描
Application No.: US14424401

Application Date: 2012-08-29
Publication No.: US09558355B2

Publication Date: 2017-01-31
Inventor: Matias Madou , Sam Ng Ming Sum
Applicant: Matias Madou , Sam Ng Ming Sum
Applicant Address: US TX Houston
Assignee: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP
Current Assignee: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP
Current Assignee Address: US TX Houston
Agency: Hewlett Packard Enterprise Patent Department
International Application: PCT/US2012/052772 WO 20120829
International Announcement: WO2014/035386 WO 20140306
Main IPC: G06F21/00
IPC: G06F21/00 ; G06F21/57 ; H04L29/06 ; G06F17/30

Abstract:

Example embodiments disclosed herein relate to generating a scanning strategy based on a dynamic taint module. A dynamic taint module associated with an application is caused to be initiated for a crawling phase of a security test. A report is received from the dynamic taint module. The dynamic taint module is restricted. The scanning strategy is based on the report.

Abstract(Chinese):

本文公开的示例实施例涉及基于动态污点模块生成扫描策略。导致与应用程序相关联的动态调色模块被启动用于安全测试的爬行阶段。从动态调色模块收到报告。动态污点模块受到限制。扫描策略是基于报告。

Public/Granted literature

US20150248559A1 SECURITY SCAN BASED ON DYNAMIC TAINT Public/Granted day:2015-09-03

Information query

Espacenet

IPC分类:

G	物理
G06	计算；推算或计数
G06F	电数字数据处理（基于特定计算模型的计算机系统入G06N）
G06F21/00	防止未授权行为的保护计算机、其部件、程序或数据的安全装置