Framework for efficient security coverage of mobile software applications using symbolic execution to reach regions of interest within an application
US9367681B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Feb 23, 2013 |
| Grant date | Jun 14, 2016 |
| Priority date | — |
| Expiry date | Feb 23, 2033 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F2221/2111
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
A method is described that involves receiving an application and generating a representation of the application that describes states of the application and transitions between the states. The method further includes referring to one or more rules and/or information from an inference engine that is observing the application's run time behavior to identify a region of interest within the application and reaching the region of interest by performing the following: identifying a path from the application's present state to the region of interest; representing states of the application along the path as logic expressions; solving the expressions to generate solutions to the expressions; causing stimuli to be provided to the application, where the stimuli correspond to the solutions.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.