×

Architecture for automated detection and analysis of security issues

  • US 7,594,142 B1
  • Filed: 06/30/2006
  • Issued: 09/22/2009
  • Est. Priority Date: 06/30/2006
  • Status: Expired due to Fees
First Claim
Patent Images

1. A method implemented at least in part by a computing device comprising:

  • disabling fuzzing for at least one test case to be run against at least one system under test;

    receiving at least one notification of at least one non-fuzzed test case to be run against the system under test;

    establishing a baseline profile indicating performance of the system under test when processing the non-fuzzed test case;

    enabling fuzzing for at least one fuzzed test case to be run against the system under test;

    receiving notification of the fuzzed test case;

    running at least one fuzzed test case against the system under test;

    monitoring the system under test when the system under test is processing the fuzzed test case;

    monitoring the system under test for one or more security flaws;

    detecting whether the system under test contains one or more security flaws; and

    in response to the detection of one or more security flaws, assigning a criticality level to the one or more security flaws.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×