×

Systematic approach to uncover visual ambiguity vulnerabilities

  • US 8,539,585 B2
  • Filed: 06/25/2007
  • Issued: 09/17/2013
  • Est. Priority Date: 11/30/2006
  • Status: Active Grant
First Claim
Patent Images

1. A system comprising:

  • memory;

    one or more processors;

    a subsystem stored in the memory and executed by the one or more processors, the subsystem to;

    analyze a formal model of a graphical user interface (GUI) of the system, the formal model comprised of a user action sequence, an execution context, and system state; and

    generate a map of one or more expected visual invariants corresponding to one or more defined program invariants associated with at least one of an address bar or a status bar of the GUI;

    execute a search by applying events on a portion of logic of the GUI associated with at least one of the one or more defined program invariants to determine an occurrence of a violation of the map associated with at least one of the address bar or the status bar corresponding to the user action sequence, the execution context and the system state;

    construct a visual spoofing scenario based in part on one or more of the events associated with the violation; and

    output the spoofing scenario.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×