Patent · US Active

Targeted security testing

US9971896B2 · kind B2 · utility

1Cited by

6References

16Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

Yair Amit · Nes Ziona, IL
Lotem Guy · Hod HaSharon, IL
Daniel Kalman · Nes Ziona, IL
Ori Segal · Nes Ziona, IL
Omri Weisman · Nes Ziona, IL

Key dates

Filing date	Dec 30, 2011
Grant date	May 15, 2018
Priority date	—
Expiry date	Sep 23, 2033

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/033
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Source code of a plurality of web pages including script code is statically analyzed. A page including a potential vulnerability is identified based on the static analysis. A page not including a potential vulnerability is identified based on the static analysis. The web page including the potential vulnerability is dynamically analyzed using a set of test payloads. The page not including the potential vulnerability is dynamically analyzed using a subset of the set of test payloads, the subset including fewer test payloads than the set of test payloads.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.