BLACK-BOX TESTING OF WEB APPLICATIONS WITH CLIENT-SIDE CODE EVALUATION

US 20130007885A1
Filed: 06/28/2011
Published: 01/03/2013
Est. Priority Date: 06/28/2011
Status: Active Grant

First Claim

Patent Images

1. A system for detecting security vulnerabilities in web applications, the system comprising:

a black-box tester configured tointeract with a web application at a computer server during its execution at the computer server, andidentify client-side instructions provided by the web application responsive to an interaction with the web application, where the client-side instructions are configured to be implemented by a client computer that receives the client-side instructions from the computer server; and

a client-side evaluator configured toevaluate the client-side instructions identified by the black-box tester, andidentify a security vulnerability associated with the client-side instructions.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Detecting security vulnerabilities in web applications by interacting with a web application at a computer server during its execution at the computer server, identifying client-side instructions provided by the web application responsive to an interaction with the web application, where the client-side instructions are configured to be implemented by a client computer that receives the client-side instructions from the computer server, evaluating the identified client-side instructions, and identifying a security vulnerability associated with the client-side instructions.

28 Citations

View as Search Results

25 Claims

1. A system for detecting security vulnerabilities in web applications, the system comprising:
- a black-box tester configured tointeract with a web application at a computer server during its execution at the computer server, andidentify client-side instructions provided by the web application responsive to an interaction with the web application, where the client-side instructions are configured to be implemented by a client computer that receives the client-side instructions from the computer server; and
  
  a client-side evaluator configured toevaluate the client-side instructions identified by the black-box tester, andidentify a security vulnerability associated with the client-side instructions.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The system of claim 1 where the black-box tester is configured to identify a security vulnerability associated with the web application.
  - 3. The system of claim 1 where the client-side evaluator is configured to perform static analysis of the client-side instructions identified by the black-box tester to identify the security vulnerability associated with the client-side instructions.
  - 4. The system of claim 1 where the client-side evaluator is configured to perform dynamic taint analysis on the client-side instructions to track taint propagation within the client-side instructions, thereby identifying the security vulnerability associated with the client-side instructions.
  - 5. The system of claim 4 where the client-side evaluator is configured to modify the client-side instructions identified by the black-box tester to store information indicating whether variables within the client-side instructions point to tainted objects, andwhere the client-side evaluator is configured to perform dynamic taint analysis on the modified client-side instructions to track taint propagation within the modified client-side instructions, thereby identifying the security vulnerability associated with the client-side instructions.
  - 6. The system of claim 4 where the client-side evaluator is configured to use a predefined security specification to determine which objects within the client-side instructions are tainted and how taint propagates from variable to variable within the client-side instructions.
  - 7. The system of claim 4 and further comprising an interpreter configured to track any variable within the client-side instructions that directly points to a tainted object within the client-side instructions,where the client-side evaluator is configured to perform dynamic taint analysis on the client-side instructions by calling the interpreter to track taint propagation within the client-side instructions, thereby identifying the security vulnerability associated with the client-side instructions.
  - 8. The system of claim 7 where the interpreter is configured to track any variable that ultimately depends from any variable within the client-side instructions that directly points to a tainted object within the client-side instructions.
  - 9. The system of claim 7 where the interpreter is configured to use a predefined security specification to determine which objects within the client-side instructions are tainted and how taint propagates from variable to variable within the client-side instructions.
  - 10. The system of claim 4 and further comprising a symbolic analyzer configured to perform symbolic analysis of the client-side instructions to determine at least one value for at least one variable within the client-side instructions that would result in a control flow target being reached within the client-side instructions during execution of the client-side instructions,where the client-side evaluator is configured to use any value determined by the symbolic analyzer when performing the dynamic taint analysis on the client-side instructions to cause the target control flow.

11-20. -20. (canceled)

21. A computer program product for detecting security vulnerabilities in web applications, the computer program product comprising:
- a computer-readable storage medium; and
  
  computer-readable program code embodied in the computer-readable storage medium, where the computer-readable program code is configured tointeract with a web application at a computer server during its execution at the computer server,identify client-side instructions provided by the web application responsive to an interaction with the web application, where the client-side instructions are configured to be implemented by a client computer that receives the client-side instructions from the computer server,evaluate the client-side instructions, andidentify a security vulnerability associated with the client-side instructions.
- View Dependent Claims (22, 23, 24, 25)
- - 22. The computer program product of claim 21 where the computer-readable program code is configured to identify a security vulnerability associated with the web application.
  - 23. The computer program product of claim 21 where the computer-readable program code is configured to perform static analysis of the client-side instructions to identify the security vulnerability associated with the client-side instructions.
  - 24. The computer program product of claim 21 where the computer-readable program code is configured to perform dynamic taint analysis on the client-side instructions to track taint propagation within the client-side instructions, thereby identifying the security vulnerability associated with the client-side instructions.
  - 25. The computer program product of claim 24 where the computer-readable program code is configured tomodify the client-side instructions to store information indicating whether variables within the client-side instructions point to tainted objects, andperform dynamic taint analysis on the modified client-side instructions to track taint propagation within the modified client-side instructions, thereby identifying the security vulnerability associated with the client-side instructions.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Finjan Blue, Inc. (SoftBank Group Corp.)
Original Assignee
International Business Machines Corporation
Inventors
HAVIV, YINNON A., KALMAN, DANIEL, TRIPP, OMER, WEISMAN, OMRI, PIKUS, DMITRI

Granted Patent

US 9,032,528 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/25
CPC Class Codes

G06F 21/577   Assessing vulnerabilities a...

H04L 63/1433   Vulnerability analysis

H04L 63/1441   Countermeasures against mal...

BLACK-BOX TESTING OF WEB APPLICATIONS WITH CLIENT-SIDE CODE EVALUATION

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

28 Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

BLACK-BOX TESTING OF WEB APPLICATIONS WITH CLIENT-SIDE CODE EVALUATION

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

28 Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links