×

Autonomous reasoning system for vulnerability analysis

  • US 9,767,290 B2
  • Filed: 07/09/2015
  • Issued: 09/19/2017
  • Est. Priority Date: 03/05/2015
  • Status: Active Grant
First Claim
Patent Images

1. A method of vulnerability analysis of a deployed program, the method comprising:

  • receiving a binary program under analysis (BPUA) derived from the deployed program;

    analyzing input/output (I/O) behavior of the deployed program;

    discovering inputs to the deployed program based on application of two or more exploration techniques to the BPUA and analysis of the I/O behavior, the inputs including a first set of inputs discovered during a symbolic execution process, a second set of inputs discovered during a side-channel input generation, and a third set of inputs from an I/O state machine module (stateful model) generation process;

    determining which of the inputs are negative inputs, the negative inputs including a portion of the inputs that trigger a response that includes a vulnerability of the deployed program;

    based on the negative inputs and triggered responses, developing a patch for the deployed program that modifies the deployed program to process at least some of the negative inputs without triggering a response that includes the vulnerability; and

    automatically dispatching the patch to the deployed program.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×