Method, system, and storage medium for security of software components
US11455400B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Aug 22, 2019 |
| Grant date | Sep 27, 2022 |
| Priority date | — |
| Expiry date | Oct 6, 2039 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F21/563
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
A computer system for security of components includes at least one processor. For a new version of a component, the processor determines, based on a dataset of release events over time, a historical behavioral analysis of (i) a project that is released with prior versions of the component, and/or (ii) historical committer behavior of a committer that committed the new version of the component, and/or (iii) historical behavior of a publisher of the project. The dataset of release events includes event data collected over time regarding open source project, committers, and repository. The processor determines whether the new version of the component presents an unusual risk profile, based on the historical behavioral analysis. The processor facilitates delayed consumption of the new version of the component in response to determining that the new version of the component presents the unusual risk profile.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.