Patent · US Active

Static analysis for verification of software program access to secure resources for computer systems

US8381242B2 · kind B2 · utility

6Cited by

0References

16Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

Ryan Berg · Austin, US
Paolina Centonze · Amawalk, US
Marco Pistoia · Amawalk, US
Omer Tripp · Herzliya, IL

Key dates

Filing date	Jul 20, 2010
Grant date	Feb 19, 2013
Priority date	—
Expiry date	Jul 14, 2031

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/577
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A method includes, using a static analysis, analyzing a software program to determine whether the software program accesses a secure resource for a computer system without verification that the secure resource can be accessed by the software program. The method also includes, in response to an access by the software program to the secure resource without verification that the secure resource can be accessed by the software program, outputting a result indicative of the analyzing. Computer program products and apparatus are also disclosed. An apparatus is disclosed that includes a user interface providing a security report to a user, the security report indicating a result of an analysis of whether or not a software program accesses a secure resource for a computer system without verification that the secure resource can be accessed by the software program.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.