Code property analysis for security mitigations

Invention Grant

US08990930B2 Code property analysis for security mitigations 有权

Title translation: 用于安全缓解的代码属性分析

Please log in to see more content

Patent Title: Code property analysis for security mitigations
Patent Title (中): 用于安全缓解的代码属性分析
Application No.: US12366666

Application Date: 2009-02-06
Publication No.: US08990930B2

Publication Date: 2015-03-24
Inventor: Tim W. Burrell , Jonathan E. Caves , Louis Lafreniere , Richard M. Shupak
Applicant: Tim W. Burrell , Jonathan E. Caves , Louis Lafreniere , Richard M. Shupak
Applicant Address: US WA Redmond
Assignee: Microsoft Corporation
Current Assignee: Microsoft Corporation
Current Assignee Address: US WA Redmond
Agent Timothy Churna; Sade Fashokun; Micky Minhas
Main IPC: G06F11/00
IPC: G06F11/00 ; G06F21/54 ; G06F21/55 ; G06F21/56

Code property analysis for security mitigations

Abstract:

Attempts to make code secure often are associated with performance penalties. To facilitate striking an acceptable balance between performance and security, vulnerable areas of source code are identified. The vulnerable areas are examined for areas that are actually safe and the safe areas are filtered from the universe of code that receives security mitigations. The remaining code receives security mitigations appropriate to the level of risk of the code.

Abstract(Chinese):

经常使代码安全的尝试与性能惩罚相关联。为了在性能和安全性之间达到可接受的平衡，确定了源代码的脆弱区域。对实际安全的区域进行脆弱地区的检查，并从接收安全缓解的守则宇宙中过滤安全区域。剩余的代码接收适合代码风险级别的安全缓解。

Public/Granted literature

US20100205673A1 CODE PROPERTY ANALYSIS FOR SECURITY MITIGATIONS Public/Granted day:2010-08-12

Information query

Espacenet

IPC分类:

G	物理
G06	计算；推算或计数
G06F	电数字数据处理（基于特定计算模型的计算机系统入G06N）
G06F11/00	错误检测；错误校正；监控（在记录载体上作出核对其正确性的方法或装置入G06K5/00；基于记录载体和传感器之间的相对运动而实现的信息存储中所用的方法或装置入G11B，例如G11B20/18；静态存储中所用的方法或装置入G11C29/00）