Patent · US Active

System for virtual patching security vulnerabilities in software containers

US10534915B2 · kind B2 · utility

20Cited by

4References

17Claims

0Family size

Assignee

Aqua Security Software, Ltd. · IL

Inventors

Michael Cherny · Nes Ziona, IL
Sagie Dulce · Hod HaSharon, IL

Key dates

Filing date	Jun 29, 2017
Grant date	Jan 14, 2020
Priority date	—
Expiry date	Mar 2, 2038

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1433
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

An example computer-implemented method of preventing exploitation of software vulnerabilities includes determining that a software container is susceptible to a vulnerability, determining one or more soft spots required to exploit the vulnerability, and analyzing runtime behavior of the software container to determine if the software container uses the one or more soft spots. The method includes automatically applying a security policy that prevents the software container from using the one or more soft spots based on the analyzing indicating that the software container does not use the one or more soft spots at runtime.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.