17968111. VULNERABILITY ANALYSIS FOR SOFTWARE PRODUCTS simplified abstract (Dell Products L.P.)
Contents
- 1 VULNERABILITY ANALYSIS FOR SOFTWARE PRODUCTS
- 1.1 Organization Name
- 1.2 Inventor(s)
- 1.3 VULNERABILITY ANALYSIS FOR SOFTWARE PRODUCTS - A simplified explanation of the abstract
- 1.4 Simplified Explanation
- 1.5 Potential Applications
- 1.6 Problems Solved
- 1.7 Benefits
- 1.8 Potential Commercial Applications
- 1.9 Possible Prior Art
- 1.10 Unanswered Questions
- 1.11 Original Abstract Submitted
VULNERABILITY ANALYSIS FOR SOFTWARE PRODUCTS
Organization Name
Inventor(s)
Nandini Arulmani of Salem (IN)
Radha Bhavya Sri Sai Menta of Kuppam (IN)
Deeksha Srivastava of Bengaluru (IN)
Palani Raja Zeavelou of Puducherry (IN)
VULNERABILITY ANALYSIS FOR SOFTWARE PRODUCTS - A simplified explanation of the abstract
This abstract first appeared for US patent application 17968111 titled 'VULNERABILITY ANALYSIS FOR SOFTWARE PRODUCTS
Simplified Explanation
The apparatus described in the abstract is a system that automatically analyzes software code to identify vulnerable APIs and then upgrades the software libraries to mitigate potential security risks.
- The processing device analyzes software code to identify APIs of software libraries used in the code.
- It checks if any of the identified APIs have reported vulnerabilities.
- If vulnerabilities are found, it identifies impacted software classes.
- The system automates the upgrade of software libraries based on the identified impacted software classes.
Potential Applications
This technology can be applied in software development companies to enhance the security of their products by automatically identifying and upgrading vulnerable APIs.
Problems Solved
This technology helps in proactively identifying and addressing security vulnerabilities in software products, reducing the risk of cyber attacks and data breaches.
Benefits
- Improved security of software products - Automated identification and mitigation of vulnerabilities - Streamlined software development process
Potential Commercial Applications
Automated Vulnerability Detection and Upgrade System for Software Security
Possible Prior Art
One possible prior art could be vulnerability scanning tools that identify security issues in software code but may not have the capability to automatically upgrade software libraries based on the identified vulnerabilities.
Unanswered Questions
How does the system ensure compatibility of upgraded software libraries with the existing codebase?
The abstract does not provide details on how the system handles compatibility issues that may arise when upgrading software libraries. It would be important to understand how the system ensures that the upgraded libraries work seamlessly with the existing codebase.
What is the accuracy rate of the system in identifying vulnerable APIs?
The abstract does not mention the accuracy rate of the system in identifying vulnerable APIs. It would be crucial to know the reliability of the system in detecting vulnerabilities to assess its effectiveness in enhancing software security.
Original Abstract Submitted
An apparatus comprises a processing device configured to analyze software code of a software product to identify application programming interfaces (APIs) of software libraries used in the software code of the software product, and to determine whether any of the identified APIs used in the software code of the software product correspond to any APIs of the software libraries having reported vulnerabilities. The processing device is also configured, responsive to determining that at least one of the identified APIs used in the software code of the software product correspond to at least one of the APIs having reported vulnerabilities, to identify impacted software classes of the software product. The processing device is further configured to automate upgrade of the software libraries used in the software code of the software product based on the identified impacted software classes.