公开(公告)号：US08819644B2

公开(公告)日：2014-08-26

申请号：US13411771

申请日：2012-03-05

申请人： Daniel Kalman ,  Dmitri Pikus ,  Omer Tripp ,  Omri Weisman

发明人： Daniel Kalman ,  Dmitri Pikus ,  Omer Tripp ,  Omri Weisman

IPC分类号： G06F9/44

CPC分类号： G06F21/52 ,  G06F8/51 ,  G06F8/75 ,  G06F11/3604

摘要： Performing data flow analysis of a computer software application, including, for a data flow analysis type, identifying within a computer software application code base a plurality of seeds relating to the data flow analysis type, for each of the plurality of seeds, defining a portion of the computer software application code base to a predefined depth of calls backward from the seed and to a predefined depth of calls forward from the seed, thereby resulting in a plurality of bounded portions of the computer software application code base, detecting a change in the computer software application code base, and performing, on any of the bounded portions affected by the change, a data flow analysis relating to the data flow analysis type.

公开(公告)号：US20130111449A1

公开(公告)日：2013-05-02

申请号：US13281653

申请日：2011-10-26

申请人： Yinnon A. HAVIV ,  Daniel KALMAN ,  Dmitri PIKUS ,  Omer TRIPP ,  Omri WEISMAN

发明人： Yinnon A. HAVIV ,  Daniel KALMAN ,  Dmitri PIKUS ,  Omer TRIPP ,  Omri WEISMAN

IPC分类号： G06F9/44

CPC分类号： G06F8/443 ,  G06F8/75 ,  G06F11/3604

摘要： Statically analyzing a computer software application can include identifying a plurality of objects within the instructions of a computer software application, where the objects in the plurality of objects are of the same object type, and preparing a modified version of the instructions in which any of the objects in the plurality of objects determined to be extraneous is omitted.

摘要翻译： 静态分析计算机软件应用程序可以包括识别计算机软件应用程序的指令内的多个对象，其中多个对象中的对象具有相同的对象类型，并且准备指令的修改版本，其中， 被确定为无关的多个对象中的对象被省略。

公开(公告)号：US20130007887A1

公开(公告)日：2013-01-03

申请号：US13430013

申请日：2012-03-26

申请人： YINNON A. HAVIV ,  DANIEL KALMAN ,  DMITRI PIKUS ,  OMER TRIPP ,  OMRI WEISMAN

发明人： YINNON A. HAVIV ,  DANIEL KALMAN ,  DMITRI PIKUS ,  OMER TRIPP ,  OMRI WEISMAN

IPC分类号： G06F21/00 ,  G06F15/16

CPC分类号： G06F21/577 ,  H04L63/1433 ,  H04L63/1441

摘要： Detecting security vulnerabilities in web applications by interacting with a web application at a computer server during its execution at the computer server, identifying client-side instructions provided by the web application responsive to an interaction with the web application, where the client-side instructions are configured to be implemented by a client computer that receives the client-side instructions from the computer server, evaluating the identified client-side instructions, and identifying a security vulnerability associated with the client-side instructions.

公开(公告)号：US08910291B2

公开(公告)日：2014-12-09

申请号：US13430013

申请日：2012-03-26

申请人： Yinnon A. Haviv ,  Daniel Kalman ,  Dmitri Pikus ,  Omer Tripp ,  Omri Weisman

发明人： Yinnon A. Haviv ,  Daniel Kalman ,  Dmitri Pikus ,  Omer Tripp ,  Omri Weisman

IPC分类号： H04L29/06 ,  G06F21/57

CPC分类号： G06F21/577 ,  H04L63/1433 ,  H04L63/1441

摘要： Detecting security vulnerabilities in web applications by interacting with a web application at a computer server during its execution at the computer server, identifying client-side instructions provided by the web application responsive to an interaction with the web application, where the client-side instructions are configured to be implemented by a client computer that receives the client-side instructions from the computer server, evaluating the identified client-side instructions, and identifying a security vulnerability associated with the client-side instructions.

摘要翻译： 通过在计算机服务器执行期间与计算机服务器上的Web应用程序交互来检测Web应用程序中的安全漏洞，识别由Web应用程序提供的客户端指令，响应于与Web应用程序的交互，其中客户端指令是 被配置为由从计算机服务器接收客户端指令的客户端计算机实现，评估所识别的客户端指令，以及识别与客户端指令相关联的安全漏洞。

公开(公告)号：US20090285376A1

公开(公告)日：2009-11-19

申请号：US12119588

申请日：2008-05-13

申请人： Shiri Kremer-Davidson ,  Alan Hartman ,  Mila Keren ,  Dmitri Pikus

发明人： Shiri Kremer-Davidson ,  Alan Hartman ,  Mila Keren ,  Dmitri Pikus

IPC分类号： H04M3/42

CPC分类号： H04M7/0021 ,  H04Q3/0054 ,  H04Q2213/1305 ,  H04Q2213/13051

摘要： A method of telecom software and service development that allows a user to model and create telecom services independent of telecommunications protocols and network layer details. The method of the invention operates by creating an abstract model of a desired telecom service or services that is converted, using a set of extensible transformations, into executable code. Models in accordance with the method are constructed using an Integrated Development Environment (IDE) for creating and developing telecom services that is embodied in the Telecom Service Domain specific Language (TS-DSL)

摘要翻译： 电信软件和服务开发的方法，允许用户独立于电信协议和网络层细节来建模和创建电信业务。 本发明的方法通过创建一个希望的电信服务或服务的抽象模型来运行，该抽象模型使用一组可扩展变换被转换成可执行代码。 根据该方法的模型使用集成开发环境（IDE）构建，用于创建和开发电信服务领域特定语言（TS-DSL）中体现的电信服务，

公开(公告)号：US20130081002A1

公开(公告)日：2013-03-28

申请号：US13246260

申请日：2011-09-27

申请人： DANIEL KALMAN ,  DMITRI PIKUS ,  OMER TRIPP ,  OMRI WEISMAN

发明人： DANIEL KALMAN ,  DMITRI PIKUS ,  OMER TRIPP ,  OMRI WEISMAN

IPC分类号： G06F9/44

CPC分类号： G06F21/52 ,  G06F8/51 ,  G06F8/75 ,  G06F11/3604

摘要： Performing data flow analysis of a computer software application, including, for a data flow analysis type, identifying within a computer software application code base a plurality of seeds relating to the data flow analysis type, for each of the plurality of seeds, defining a portion of the computer software application code base to a predefined depth of calls backward from the seed and to a predefined depth of calls forward from the seed, thereby resulting in a plurality of bounded portions of the computer software application code base, detecting a change in the computer software application code base, and performing, on any of the bounded portions affected by the change, a data flow analysis relating to the data flow analysis type.

公开(公告)号：US20090285375A1

公开(公告)日：2009-11-19

申请号：US12119554

申请日：2008-05-13

申请人： Shiri Kremer-Davidson ,  Alan Hartman ,  Mila Keren ,  Dmitri Pikus

发明人： Shiri Kremer-Davidson ,  Alan Hartman ,  Mila Keren ,  Dmitri Pikus

IPC分类号： H04M3/42

CPC分类号： H04M3/42136 ,  G06F8/24 ,  G06F8/34 ,  G06F17/3089 ,  H04L65/1016 ,  H04M7/006 ,  H04M2201/54

摘要： A method of telephone call management in process of service development that allows a user to model and create telephone call management schemes independent of telecommunications protocols and network layer details. The method of the invention operates by creating an abstract model of a telephone call life-cycle that is converted, using a set of communication threads, into executable code. Models in accordance with the method of the invention are constructed using an Integrated Development Environment (IDE) for creating and developing telecom services that embodies the Telecom Service Domain Specific Language (TS-DSL) which is implemented as a Unified Modeling Language (UML) extension for the telecom domain. By this method, individuals without specialized knowledge of telecom related software programming and protocols can successfully design and implement telecom services that manages calls. The ease of implementation of the method also reduces design time and, therefore, time to market of the finished product.

摘要翻译： 一种在服务开发过程中进行电话呼叫管理的方法，其允许用户独立于电信协议和网络层细节来建立和创建电话呼叫管理方案。 本发明的方法通过创建使用一组通信线程转换成可执行代码的电话呼叫生命周期的抽象模型来操作。 根据本发明的方法的模型是使用集成开发环境（IDE）构建的，用于创建和开发电信服务，该电信服务体现了实现为统一建模语言（UML）扩展的电信服务域特定语言（TS-DSL） 为电信领域。 通过这种方式，没有电信相关软件编程和协议专业知识的人员可以成功地设计和实施管理呼叫的电信业务。 该方法的易于实施还减少了设计时间，并因此缩短了成品的上市时间。

公开(公告)号：US10157049B2

公开(公告)日：2018-12-18

申请号：US13281653

申请日：2011-10-26

申请人： Yinnon A. Haviv ,  Daniel Kalman ,  Dmitri Pikus ,  Omer Tripp ,  Omri Weisman

发明人： Yinnon A. Haviv ,  Daniel Kalman ,  Dmitri Pikus ,  Omer Tripp ,  Omri Weisman

IPC分类号： G06F9/44 ,  G06F8/41 ,  G06F11/36 ,  G06F8/75

摘要： Statically analyzing a computer software application can include identifying a plurality of objects within the instructions of a computer software application, where the objects in the plurality of objects are of the same object type, and preparing a modified version of the instructions in which any of the objects in the plurality of objects determined to be extraneous is omitted.

公开(公告)号：US09032528B2

公开(公告)日：2015-05-12

申请号：US13170839

申请日：2011-06-28

申请人： Yinnon A. Haviv ,  Daniel Kalman ,  Dmitri Pikus ,  Omer Tripp ,  Omri Weisman

发明人： Yinnon A. Haviv ,  Daniel Kalman ,  Dmitri Pikus ,  Omer Tripp ,  Omri Weisman

IPC分类号： H04L29/06 ,  G06F21/57

CPC分类号： G06F21/577 ,  H04L63/1433 ,  H04L63/1441

摘要： Detecting security vulnerabilities in web applications by interacting with a web application at a computer server during its execution at the computer server, identifying client-side instructions provided by the web application responsive to an interaction with the web application, where the client-side instructions are configured to be implemented by a client computer that receives the client-side instructions from the computer server, evaluating the identified client-side instructions, and identifying a security vulnerability associated with the client-side instructions.

摘要翻译： 通过在计算机服务器执行期间与计算机服务器上的Web应用程序交互来检测Web应用程序中的安全漏洞，识别由Web应用程序提供的客户端指令，响应于与Web应用程序的交互，其中客户端指令是 被配置为由从计算机服务器接收客户端指令的客户端计算机实现，评估所识别的客户端指令，以及识别与客户端指令相关联的安全漏洞。

公开(公告)号：US08849631B2

公开(公告)日：2014-09-30

申请号：US12119554

申请日：2008-05-13

申请人： Shiri Kremer-Davidson ,  Alan Hartman ,  Mila Keren ,  Dmitri Pikus

发明人： Shiri Kremer-Davidson ,  Alan Hartman ,  Mila Keren ,  Dmitri Pikus

IPC分类号： G06G7/48 ,  G06F9/455 ,  G06F9/44 ,  G06F17/30 ,  H04L29/06 ,  H04M3/42 ,  H04M7/00

CPC分类号： H04M3/42136 ,  G06F8/24 ,  G06F8/34 ,  G06F17/3089 ,  H04L65/1016 ,  H04M7/006 ,  H04M2201/54

摘要： A method of telephone call management in process of service development that allows a user to model and create telephone call management schemes independent of telecommunications protocols and network layer details. The method of the invention operates by creating an abstract model of a telephone call life-cycle that is converted, using a set of communication threads, into executable code. Models in accordance with the method of the invention are constructed using an Integrated Development Environment (IDE) for creating and developing telecom services that embodies the Telecom Service Domain Specific Language (TS-DSL) which is implemented as a Unified Modeling Language (UML) extension for the telecom domain. By this method, individuals without specialized knowledge of telecom related software programming and protocols can successfully design and implement telecom services that manages calls. The ease of implementation of the method also reduces design time and, therefore, time to market of the finished product.

摘要翻译： 一种在服务开发过程中进行电话呼叫管理的方法，其允许用户独立于电信协议和网络层细节来建立和创建电话呼叫管理方案。 本发明的方法通过创建使用一组通信线程转换成可执行代码的电话呼叫生命周期的抽象模型来操作。 根据本发明的方法的模型是使用集成开发环境（IDE）来构建的，用于创建和开发电信服务，这些电信服务体现了实现为统一建模语言（UML）扩展的电信服务域特定语言（TS-DSL） 为电信领域。 通过这种方式，没有电信相关软件编程和协议专业知识的人员可以成功地设计和实施管理呼叫的电信业务。 该方法的易于实施还减少了设计时间，并因此缩短了成品的上市时间。