×

Rapid application security threat analysis

  • US 7,243,374 B2
  • Filed: 08/08/2001
  • Issued: 07/10/2007
  • Est. Priority Date: 08/08/2001
  • Status: Expired due to Fees
First Claim
Patent Images

1. A computer-implemented method for a computer-program module to provide application security threat-modeling, the method comprising:

  • responsive to a first user input, selecting a set of model components to represent respective elements of an application;

    providing class definitions for the model components, each class definition specifying a set of security threats associated with the model component;

    responsive to a second user input, interconnecting at least a subset of the model components to form a logical model of the application;

    responsive to a third user input, selecting a particular component of the subset;

    automatically analyzing the at least a subset of the model components to identify model components of the subset having a security threat associated with a similar security threat category as one of the security threats associated with the particular component; and

    changing a manner in which the components are displayed to a user in response to the selection of the particular component and the analysis.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×