Web service vulnerability metadata exchange system
First Claim
1. A web service vulnerability metadata exchange system that provides for verification of web services during development by testing for the latest vulnerabilities based on security, policy, and best practice profiles prior to release of the web services, and wherein the web service vulnerability metadata exchange system will automate the surveillance of deployed web services so that new vulnerabilities are profiled and captured for use in verifying new software releases, wherein the system includes a metadata registry coupled to a database including vulnerability metadata, an update manager for updating the database records, and an access manager for authenticating and/or authorizing access to the database records.
1 Assignment
0 Petitions
Accused Products
Abstract
A web service vulnerability metadata exchange system that provides for verification of web services during development by testing for the latest vulnerabilities based on security, policy, and best practice profiles prior to release of the web services, and wherein the web service vulnerability metadata exchange system will automate the surveillance of deployed web services so that new vulnerabilities are profiled and captured for use in verifying new software releases, wherein the system includes a metadata registry coupled to a database including vulnerability metadata, an update manager for updating the database records, and an access manager for authenticating and/or authorizing access to the database records.
110 Citations
1 Claim
-
1. A web service vulnerability metadata exchange system that provides for verification of web services during development by testing for the latest vulnerabilities based on security, policy, and best practice profiles prior to release of the web services, and wherein the web service vulnerability metadata exchange system will automate the surveillance of deployed web services so that new vulnerabilities are profiled and captured for use in verifying new software releases, wherein the system includes a metadata registry coupled to a database including vulnerability metadata, an update manager for updating the database records, and an access manager for authenticating and/or authorizing access to the database records.
Specification
-
- Resources
-
Current AssigneeForum Systems, Inc. (Crosscheck Networks, Inc.)
-
Original AssigneeForum Systems, Inc. (Crosscheck Networks, Inc.)
-
InventorsRudy, Jeffrey, Smith, Keith, Ladner, Michael, Carlsen, Mitchel, Walasek, Arthur, Quinnell, John
-
Application NumberUS11/530,760Publication NumberTime in Patent OfficeDaysField of SearchUS Class Current726/25CPC Class CodesG06F 21/577 Assessing vulnerabilities a...G06F 2221/2119 Authenticating web pages, e...H04L 63/1433 Vulnerability analysis
