Patent · US Active

Amalgamating code vulnerabilities across projects

US10621359B2 · kind B2 · utility

0Cited by

6References

12Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

Elizabeth Ann Holz · Seattle, US
Iosif V. Onut · Gatineau, CA
Joni E. Saylor · Tucson, US
Hyun Kyu Seo · Austin, US
Ronald B. Williams · Austin, US

Key dates

Filing date	Jan 30, 2019
Grant date	Apr 14, 2020
Priority date	—
Expiry date	Jan 30, 2039

Classification

Technology area (CPC G)Physics
CPC primaryG06F16/338
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Mechanisms are provided for correlating security vulnerability detection across multiple applications. The mechanisms perform a security vulnerability analysis of first source code of a first application, and identify, based on results of the security vulnerability analysis, a security vulnerability in a first portion of the first source code. The mechanisms associate characteristics of the security vulnerability with the first portion, and correlate the characteristics of the security vulnerability with second source code of a second application based on the association of the characteristics of the security vulnerability with the first portion. In addition, the mechanisms generate an output to a computing device of a consumer or contributor associated with the second source code identifying a presence of the security vulnerability in the second source code based on the correlation.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.