- 专利标题: System and method for assessing software containers for vulnerabilities
-
申请号: US17106310申请日: 2020-11-30
-
公开(公告)号: US11580230B2公开(公告)日: 2023-02-14
- 发明人: Bhuvan Bhatt , Vijay Kumar Kamannavar
- 申请人: Bhuvan Bhatt , Vijay Kumar Kamannavar
- 申请人地址: IN Hyderabad; IN Hyderabad
- 专利权人: Bhuvan Bhatt,Vijay Kumar Kamannavar
- 当前专利权人: Bhuvan Bhatt,Vijay Kumar Kamannavar
- 当前专利权人地址: IN Hyderabad; IN Hyderabad
- 代理机构: Carlson, Gaskey & Olds, P.C.
- 主分类号: G06F21/00
- IPC分类号: G06F21/00 ; G06F21/57 ; G06F21/52
摘要:
An example method includes determining, based on a static scan, that a software container image or an intended execution environment of the software container image meets one or more first criteria required to exploit a software vulnerability. Based on the determining, runtime behavior of a software container instantiated from the software container image is monitored. The monitoring including determining whether the software container meets one or more second criteria required to exploit the software vulnerability, wherein the one or more first second criteria differs from the one or more second criteria. Based on the runtime monitoring, a risk score that indicates a magnitude of a risk the software vulnerability poses for the software container is determined, and a notification of the risk score is provided. A system for assessing software containers for vulnerabilities is also disclosed.