Patent · US Active

Systems and methods for triaging software vulnerabilities

US11568057B2 · kind B2 · utility

3Cited by

1References

17Claims

0Family size

Assignee

ACCENTURE GLOBAL SOLUTIONS LIMITED · IE

Inventors

Sidath Handurukande · Athlone, IE
Finbarr Tarrant · Dublin, IE
David Glyn Darkin · Dublin, IE
Owen McGauley · Wicklow, IE
Mehdi Sanoh · Dublin, IE
Karel Kohout · Praha, CZ
Richard B. LeVine · Mashpee, US
Ganesh Devarajan · Hawthorn Woods, US

Key dates

Filing date	Feb 4, 2020
Grant date	Jan 31, 2023
Priority date	—
Expiry date	Oct 27, 2040

Classification

Technology area (CPC G)Physics
CPC primaryG06N5/047
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Systems and methods are provided for the classification of identified security vulnerabilities in software applications, and their automated triage based on machine learning. The disclosed system may generate a report listing detected potential vulnerability issues, and extract features from the report for each potential vulnerability issue. The system may receive policy data and business rules, and compare the extracted features relative to such data and rules. The system may determine a token based on the source code of a potential vulnerability issue, and a vector based on the extracted features of a potential vulnerability issue and based on the token. The system may select a machine learning modelling method and/or an automated triaging method based on the vector, and determine a vulnerability accuracy score based on the vector using the selected method.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.