Reconfigurable Message-Delivery Preconditions for Delivering Attacks to Analyze the Security of Networked Systems
First Claim
1. A method for analyzing a security of a device under analysis (DUA), comprising:
- identifying two or more valid message-delivery preconditions for a communication protocol supported by the DUA;
selecting one of the identified valid message-delivery preconditions; and
delivering an attack to the DUA according to the selected message-delivery precondition.
3 Assignments
0 Petitions
Accused Products
Abstract
A security analyzer analyzes a security of a device-under-analysis (DUA). In one embodiment, the security analyzer identifies two or more valid message-delivery preconditions for a communication protocol supported by the DUA. One of the identified valid message-delivery preconditions is selected and the security analyzer delivers an attack to the DUA according to the selected message-delivery precondition. The same or similar attacks can also be delivered to the DUA via other message-delivery preconditions. Based on the DUA'"'"'s response, the security analyzer determines whether a vulnerability has been found.
-
Citations
19 Claims
-
1. A method for analyzing a security of a device under analysis (DUA), comprising:
-
identifying two or more valid message-delivery preconditions for a communication protocol supported by the DUA; selecting one of the identified valid message-delivery preconditions; and delivering an attack to the DUA according to the selected message-delivery precondition. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A security analyzer for analyzing a security of a device under analysis (DUA), comprising:
-
means for identifying two or more valid message-delivery preconditions for a communication protocol supported by the DUA; means for selecting one of the identified valid message-delivery preconditions; and means for delivering an attack to the DUA according to the selected message-delivery precondition.
-
-
19. A computer program product for use in conjunction with a computer system, the computer program product comprising a computer readable storage medium and a computer program mechanism embedded therein, the computer program mechanism comprising:
-
instructions for identifying two or more valid message-delivery preconditions for a communication protocol supported by the DUA; instructions for selecting one of the identified valid message-delivery preconditions; and instructions for delivering an attack to the DUA according to the selected message-delivery precondition.
-
Specification