Invention Grant
- Patent Title: System, method and apparatus for fully precise hybrid security verification of mobile applications
-
Application No.: US14984782Application Date: 2015-12-30
-
Publication No.: US11032306B2Publication Date: 2021-06-08
- Inventor: Marco Pistoia , Omer Tripp
- Applicant: International Business Machines Corporation
- Applicant Address: US NY Armonk
- Assignee: International Business Machines Corporation
- Current Assignee: International Business Machines Corporation
- Current Assignee Address: US NY Armonk
- Agency: McGinn IP Law Group, PLLC
- Agent Joseph Petrokaitis, Esq.
- Main IPC: G06F21/00
- IPC: G06F21/00 ; H04L29/06 ; G06F16/84
Abstract:
A security verification system and method that includes outputting a list of potential dataflow vulnerabilities as a first output from inputting a subject program and security specification, mapping candidate vulnerabilities to a user interface (UI) entry point and payload from the output of the list of potential dataflow vulnerabilities to provide a second output, and performing directed testing of the second output.
Public/Granted literature
- US20170195358A1 SYSTEM, METHOD AND APPARATUS FOR FULLY PRECISE HYBRID SECURITY VERIFICATION OF MOBILE APPLICATIONS Public/Granted day:2017-07-06
Information query
