首页>
外国专利>
Hierarchical runtime analysis framework for defining vulnerabilities
Hierarchical runtime analysis framework for defining vulnerabilities
展开▼
机译:定义漏洞的分层运行时分析框架
展开▼
页面导航
摘要
著录项
相似文献
摘要
A runtime analysis framework (RTA) stores a hierarchical list of input tags and a hierarchical list of output tags. The RTA stores defined vulnerabilities that include associated input tags and output tags. During runtime the software application may receive a request from a user system. The RTA assigns an input tag from the hierarchical list of input tags to an object associated with the request and assigns an output tag from the hierarchical list of output tags to a method generating a response to the request. The RTA identifies one of the defined vulnerabilities as a potential vulnerability if the assigned output tag and output tag associated the potential vulnerability are in a same subtree of the hierarchical list of output tags and the assigned input tag and the input tag associated with the potential vulnerability are in a same subtree of the hierarchical list of input tags.
展开▼