Patch validation via replay and remediation verification
US9727738B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Jun 8, 2016 |
| Grant date | Aug 8, 2017 |
| Priority date | — |
| Expiry date | Jun 8, 2036 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L67/56
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method and apparatus for patch validation via replay and remediation verification is provided. A method comprises: receiving, from a researcher computer, a report of a potential vulnerability that the researcher computer identified in a computer program application that the researcher computer accessed via a first web browser, the report comprising a record of actions performed by the researcher computer, a first outcome of the actions, and Document Object Model (DOM) events that the application outputted when the record of actions was generated; automatically generating an executable script from the record of actions, wherein the executable script, when executed, causes the web browser to perform the actions that are recorded in the record of actions; verifying the report of the potential vulnerability by executing the executable script in a second web browser and determining that a second outcome of the actions matches the first outcome that was recorded in the record of actions; determining that the first outcome of the actions is associated with a security vulnerability.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.