Patent · US Expired

Method and system for detecting privilege escalation vulnerabilities in source code

US7418734B2 · kind B2 · utility

23Cited by

5References

2Claims

0Family size

Assignee

Ounce Labs, Inc. · US

Inventors

Ryan Berg · Austin, US
Larry Rose · Chelmsford, US
John Peyton · Arlington, US
John J. Danahy · Bow, US
Robert A. Gottlieb · Westford, US
Chris Rehbein · Watertown, US

Key dates

Filing date	Apr 15, 2004
Grant date	Aug 26, 2008
Priority date	—
Expiry date	Oct 9, 2025

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/577
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A method and system of detecting vulnerabilities in source code. Source code is parsed into an intermediate representation. Models are derived for the code and the models are then analyzed in conjunction with pre-specified rules about the routines to determine if the routine call posses one or more of pre-selected vulnerabilities.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.