Detection of vulnerable root certificates in software containers
US10778446B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Feb 16, 2017 |
| Grant date | Sep 15, 2020 |
| Priority date | — |
| Expiry date | Feb 16, 2037 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06Q20/3278
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
A method and system for detecting vulnerable root certificates in container images are provided. The method includes receiving an event to scan at least one container image hosted in a host device, wherein the least one container image includes resources utilized to execute, by the host device, at least a respective software application container; extracting contents of layers of the at least one container image; scanning the extracted contents to generate a first list designating all root certificates included in the at least one container image; generating a second list designating all root certificates trusted by the host device; comparing the first list to the second list to detect at least one root certificate designated in the first list but not in the second; and determining the at least one detected root certificate as vulnerable.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.