Patent · US Active

Static detection of vulnerabilities in base images of software containers

US10223534B2 · kind B2 · utility

15Cited by

29References

33Claims

0Family size

Assignee

Twistlock Ltd. · IL

Inventors

Dima Stopel · Herzliya, IL
Ben Bernstein · San Francisco, US

Key dates

Filing date	Oct 13, 2016
Grant date	Mar 5, 2019
Priority date	—
Expiry date	Nov 26, 2036

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/033
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A system and method for detecting vulnerabilities in base images of software containers are disclosed. The method includes receiving an event indicating that at least one base image should be scanned for vulnerabilities, each base image including at least one image layer, wherein the event designates at least one source of the at least one base image, wherein the least one base image includes resources utilized to execute at least a software container; extracting contents of each image layer of each base image; scanning the extracting contents to detect at least one vulnerability; and generating a detection event, when the at least one vulnerability is detected.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.