Patent · US Active

Runtime detection of vulnerabilities in software containers

US10706145B2 · kind B2 · utility

2Cited by

45References

25Claims

0Family size

Assignee

Twistlock Ltd. · IL

Inventors

Dima Stopel · Herzliya, IL
Ben Bernstein · San Francisco, US

Key dates

Filing date	Sep 28, 2016
Grant date	Jul 7, 2020
Priority date	—
Expiry date	Dec 29, 2036

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/566
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A system and method for detecting vulnerabilities in software containers at runtime are provided. This method includes intercepting a request to instantiate a new software container in a first execution environment; creating a second execution environment; migrating the new software container from the first execution environment to the second execution environment for execution therein; monitoring the operation of the new software container in the second execution environment to detect at least one unauthorized action; and upon detection of the at least one unauthorized action, generating a detection event identifying at least a type of vulnerability associated with the detected unauthorized action.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.