Patent · US Active

Fuzzing system and method for exhaustive security fuzzing within an SQL server

US7953674B2 · kind B2 · utility

3Cited by

9References

19Claims

0Family size

Assignee

Microsoft Corporation · US

Inventors

Jiazhen Wu · Sammamish, US
Raul Garcia · Kirkland, US
Craig A. Gick · Woodinville, US
Erik Ismert · Shoreline, US
Adrian Baras · Redmond, US

Key dates

Filing date	May 17, 2007
Grant date	May 31, 2011
Priority date	—
Expiry date	Oct 22, 2029

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/577
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Systems and methods that incorporate fuzzing capabilities within an SQL server to facilitate penetration testing. A fuzzing component associated with the SQL server provides an entry point for accessing the fuzzing system to update explicit user specified parameters associated with SQL, wherein the server's in depth knowledge regarding semantics of the language code (e.g., manner of parsing) can be employed to determine vulnerabilities thereof.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.