公开(公告)号：EP3072070A4

公开(公告)日：2017-08-09

申请号：EP14864350

申请日：2014-11-17

申请人： GOOGLE INC

发明人： RAJANNA RAMAKRISHNA ,  GUPTA DEEPANK ,  VELAYUTHAM ARUL SIVA MURUGAN ,  SHEOPORY ABHISHEK ,  AGARWAL ANKIT

IPC分类号： G06F9/44 ,  G06F9/45 ,  G06F11/36 ,  G06F17/30

CPC分类号： G06F11/3688 ,  G06F8/43 ,  G06F8/70 ,  G06F8/74 ,  G06F8/75 ,  G06F11/3676

公开(公告)号：EP3019994A4

公开(公告)日：2017-05-10

申请号：EP13889177

申请日：2013-07-12

申请人： HEWLETT PACKARD ENTPR DEV LP

发明人： SCHMITT MICHAEL JASON

IPC分类号： G06F21/57 ,  G06F9/44 ,  G06F9/45

CPC分类号： G06F21/577 ,  G06F8/43 ,  G06F8/77 ,  G06F2221/033

摘要： A method of analyzing target software for security vulnerabilities comprises, with a processor, scanning a codebase of a target software using a static analysis scan to identify a number of security flaws, and calculating a number of code metrics of the codebase of the target software for a number of iterations over a period of time to obtain a number of historical scans.

摘要翻译： 一种针对安全漏洞分析目标软件的方法包括：利用处理器，使用静态分析扫描来扫描目标软件的代码库以识别多个安全缺陷，并且计算目标软件的代码量的数量，用于 在一段时间内进行多次迭代以获得许多历史扫描。

公开(公告)号：EP1627303A4

公开(公告)日：2009-01-14

申请号：EP04759886

申请日：2004-04-15

申请人： OUNCE LABS INC

发明人： BERG RYAN JAMES ,  ROSE LARRY ,  PEYTON JOHN ,  DAHANY JOHN J ,  GOTTLIEB ROBERT ,  REHBEIN CHRIS

IPC分类号： G06F9/44 ,  G06F20060101 ,  G06F9/445 ,  G06F11/30 ,  G06F11/36 ,  G06F12/14 ,  G06F19/00

CPC分类号： G06F21/577 ,  G06F8/43 ,  G06F11/3604

摘要： A method and system detect vulnerabilities in source code. Source code (134) is processed by a parser (136) into an intermediate representation. Models (e.g., in the form of lattices) are derived (138) for the variables in the code and for the variables and/or expressions using in conjunction with routine calls. The models are then analyzed in conjunction with pre-specified rules in a vulnerability database (142), about the routines to determine (140) if the routine call possesses one or more pre-selected vulnerabilities.

公开(公告)号：EP1100011A2

公开(公告)日：2001-05-16

申请号：EP00308103.1

申请日：2000-09-18

申请人： LUCENT TECHNOLOGIES INC.

发明人： Hernandez, Gaspar, III

IPC分类号： G06F9/44

CPC分类号： G06F8/30 ,  G06F8/43

摘要： A scriptor and interpreter are disclosed. The scriptor and interpreter each not only check the syntax of a command in a script, but also that the values for the variables passed as arguments to command are consistent with the values attributed to those variables in preceding portions of the script.

摘要翻译： 披露了一位脚本和口译员。 脚本和解释器每个都不仅检查脚本中的命令的语法，而且将作为命令传递的变量的值与归因于脚本前面部分中的那些变量的值一致。

公开(公告)号：EP4421621A1

公开(公告)日：2024-08-28

申请号：EP24150227.7

申请日：2024-01-03

申请人： Tata Consultancy Services Limited

发明人： SINHA, Sanket Achal ,  BHATTACHAR, Rajan Mindigal Alasingara ,  AGASTI, Vaibhav Harihar ,  VIDHANI, Kumar Mansukhlal ,  LODHA, Sachin Premsukh

IPC分类号： G06F8/41

CPC分类号： G06F8/43

摘要： State of the art code matching approaches have the disadvantage that they rely on the line numbers provided by source code and binary parsers to establish mapping and do not work since changes introduced by compiler may be much more complex. Some approaches do not work as the source code of application and its binary version may not share the vocabulary. Machine learning based techniques have the disadvantage that they require significant amount of training data, which may not be available in abundance. Method and system disclosed herein provide a mechanism matching score for each of a plurality of code fragments in the intermediate representation of the source code file for each of a plurality of binary fragments in the intermediate representation of the binary file.

公开(公告)号：EP3238053A1

公开(公告)日：2017-11-01

申请号：EP15874042.3

申请日：2015-11-25

申请人： Intel Corporation

发明人： RONG, Hongbo ,  TU, Peng ,  SHPEISMAN, Tatiana ,  LIU, Hai ,  ANDERSON, Todd A. ,  WU, Youfeng ,  GLEW, Arthur N. ,  PETERSEN, Paul M. ,  LEE, Victor W. ,  LOWNEY, P.G. ,  ROBINSON, Arch D. ,  WANG, Cheng

IPC分类号： G06F9/45 ,  G06F9/44

CPC分类号： G06F8/43 ,  G06F8/31 ,  G06F8/443 ,  G06F8/4441 ,  G06F8/453 ,  G06F8/49 ,  G06F8/54

摘要： Technologies for generating composable library functions include a first computing device that includes a library compiler configured to compile a composable library and second computing device that includes an application compiler configured to compose library functions of the composable library based on a plurality of abstractions written at different levels of abstractions. For example, the abstractions may include an algorithm abstraction at a high level, a blocked-algorithm abstraction at medium level, and a region-based code abstraction at a low level. Other embodiments are described and claimed herein.

摘要翻译： 用于生成可组合的库函数的技术包括第一计算设备，其包括被配置为编译可组合库的库编译器以及包括应用编译器的第二计算设备，该应用编译器被配置为基于在不同级别写入的多个抽象来编写可组合库的库函数 的抽象。 例如，抽象可以包括高级别的算法抽象，中等级别的阻塞算法抽象以及低级别的基于区域的代码抽象。 这里描述并要求保护其他实施例。

公开(公告)号：EP2829970B1

公开(公告)日：2017-02-01

申请号：EP13178246.8

申请日：2013-07-26

申请人： FUJITSU LIMITED

发明人： Wilson, Nicholas ,  Enright, Jim

IPC分类号： G06F9/45 ,  G06F9/44

CPC分类号： G06F8/76 ,  G06F8/30 ,  G06F8/36 ,  G06F8/41 ,  G06F8/43 ,  G06F8/70

公开(公告)号：EP2492806A1

公开(公告)日：2012-08-29

申请号：EP12000578.0

申请日：2012-01-30

申请人： SAP AG

发明人： Brandt, Carsten

IPC分类号： G06F9/44

CPC分类号： G06F8/10 ,  G06F8/43 ,  G06F8/73

摘要： This disclosure provides various embodiments for performing operations on entities of a meta model modeling one or more software components. A request is received to perform a particular operation of a particular type on each of a plurality of model entities, each model entity modeling at least one attribute of a software component. The request includes an identification of the particular type of operation in a plurality of operation types. The model entities are retrieved in response to the request. A handler object is instantiated of the particular type adapted to perform the particular operation by calling a set of reusable software modules, each software module providing functionality used to perform at least a portion of the particular operation on at least one entity in the plurality of entities. Result data is generated based on the performance of the particular operation using the instantiated handler and reusable software modules.

摘要翻译： 本公开提供了用于对建模一个或多个软件组件的元模型的实体执行操作的各种实施例。 接收到一个请求以在多个模型实体中的每一个上执行特定类型的特定操作，每个模型实体建模软件组件的至少一个属性。 该请求包括在多种操作类型中的特定操作类型的标识。 根据请求检索模型实体。 处理程序对象被实例化为适于通过调用一组可重复使用的软件模块来执行特定操作的特定类型，每个软件模块提供用于对多个实体中的至少一个实体执行特定操作的至少一部分的功能 。 结果数据基于使用实例处理程序和可重用软件模块的特定操作的性能生成。

公开(公告)号：EP2454661A1

公开(公告)日：2012-05-23

申请号：EP09780676.4

申请日：2009-07-15

申请人： Proviciel - Mlstate

发明人： BINSZTOK, Henri ,  KOPROWSKI, Adam

IPC分类号： G06F9/44 ,  G06F9/45

CPC分类号： G06F8/436 ,  G06F8/30 ,  G06F8/37 ,  G06F8/427 ,  G06F8/43

摘要： The invention relates to a system for building a parser. According to the invention, such a system comprises of: - a grammar input module for inputting in said parser generator a grammar expressed in a given formalism; - a checking module for formally verifying that a given grammar belongs to a predetermined class of grammars for which a translation to a correct, terminating parser is feasible; - a checking module for formally verifying that a grammar expressed in the said formalism is well-formed; - a semantic action module defining a parsing result depending on semantic actions embedded in said grammar, said semantic action module ensuring in a formal way that all semantic actions of said grammar are terminating and - a formal module generating a parser with total correctness guarantees, using said modules to verify that the grammar is well-formed, belongs to a certain class of feasible, terminating grammars and all its semantic actions are terminating.

公开(公告)号：EP3072070B1

公开(公告)日：2024-05-01

申请号：EP14864350.5

申请日：2014-11-17

IPC分类号： G06F8/74 ,  G06F8/75 ,  G06F8/41

CPC分类号： G06F8/74 ,  G06F8/75 ,  G06F8/43