Patent · US Active

Amalgamating code vulnerabilities across projects

US10268825B2 · kind B2 · utility

1Cited by

6References

18Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

Elizabeth Ann Holz · Seattle, US
Iosif V. Onut · Gatineau, CA
Joni E. Saylor · Tucson, US
Hyun Kyu Seo · Austin, US
Ronald B. Williams · Austin, US

Key dates

Filing date	Dec 1, 2016
Grant date	Apr 23, 2019
Priority date	—
Expiry date	May 22, 2037

Classification

Technology area (CPC G)Physics
CPC primaryG06F16/338
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Mechanisms are provided for correlating security vulnerability detection across multiple applications. The mechanisms perform a security vulnerability analysis of first source code of a first application, and identify, based on results of the security vulnerability analysis, a security vulnerability in a first portion of the first source code. The mechanisms associate characteristics of the security vulnerability with the first portion, and correlate the characteristics of the security vulnerability with second source code of a second application based on the association of the characteristics of the security vulnerability with the first portion. In addition, the mechanisms generate an output to a computing device of a consumer or contributor associated with the second source code identifying a presence of the security vulnerability in the second source code based on the correlation.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.