×

Controlling the release of private information using static flow analysis

  • US 9,104,528 B2
  • Filed: 12/08/2011
  • Issued: 08/11/2015
  • Est. Priority Date: 12/08/2011
  • Status: Active Grant
First Claim
Patent Images

1. A method, performed by computing functionality, for controlling dissemination of private information by a program, comprising the following steps as executed on a computing device comprising at least a processing device executing instructions maintained by a memory:

  • receiving an analysis-invoking event;

    in response to the analysis-invoking event, performing static analysis to determine at least one flow within the program of private information from a source to a sink, the flow being determined to be unsafe based on a policy, wherein the flow determined to be unsafe comprises at least one of a flow of tampered private information from the source to the sink, the tampered private information corresponding to private information that is tampered with within the program prior to being sent to the sink, and a flow of untampered private information from the source to the sink, where a user is not given an opportunity to confirm the flow of the untampered private information; and

    providing flow information to the user regarding the flow that has been determined by the static analysis, for use by the user in controlling the dissemination of the private information to the sink.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×