Patent · US Active

Runtime enforcement of security checks

US8646088B2 · kind B2 · utility

27Cited by

1References

24Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

Marco Pistoia · Amawalk, US
Omer Tripp · Herzliya, IL
Martin Vechev · Yorktown Heights, US
Eran Yahav · Hawthorne, US

Key dates

Filing date	Jan 3, 2011
Grant date	Feb 4, 2014
Priority date	—
Expiry date	Oct 22, 2031

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/554
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A method is disclosed that includes tracking untrusted inputs through an executing program into a sink, the tracking including maintaining context of the sink as strings based on the untrusted inputs flow into the sink. The method also includes, while tracking, in response to a string based on an untrusted input being about to flow into the sink and a determination the string could lead to an attack if the string flows into a current context of the sink, endorsing the string using an endorser selected based at least on the current context of the sink, and providing the endorsed string to the sink. Computer program products and apparatus are also disclosed.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.