公开(公告)号：US20130081003A1

公开(公告)日：2013-03-28

申请号：US13411771

申请日：2012-03-05

申请人： DANIEL KALMAN ,  Dmitri Pikus ,  Omer Tripp ,  Omei Weisman

发明人： DANIEL KALMAN ,  Dmitri Pikus ,  Omer Tripp ,  Omei Weisman

IPC分类号： G06F9/44

CPC分类号： G06F21/52 ,  G06F8/51 ,  G06F8/75 ,  G06F11/3604

摘要： Performing data flow analysis of a computer software application, including, for a data flow analysis type, identifying within a computer software application code base a plurality of seeds relating to the data flow analysis type, for each of the plurality of seeds, defining a portion of the computer software application code base to a predefined depth of calls backward from the seed and to a predefined depth of calls forward from the seed, thereby resulting in a plurality of bounded portions of the computer software application code base, detecting a change in the computer software application code base, and performing, on any of the bounded portions affected by the change, a data flow analysis relating to the data flow analysis type.

摘要翻译： 执行计算机软件应用的数据流分析，包括对于数据流分析类型，在计算机软件应用程序代码库内识别与数据流分析类型相关的多个种子，为多个种子中的每一个定义一部分 的计算机软件应用程序代码库的预定深度从种子返回到预定义的深度，并且从种子转发到预定义的呼叫深度，从而导致计算机软件应用程序代码库的多个有界部分， 计算机软件应用程序代码库，并在受变更影响的任何有界部分执行与数据流分析类型相关的数据流分析。

公开(公告)号：US08819644B2

公开(公告)日：2014-08-26

申请号：US13411771

申请日：2012-03-05

申请人： Daniel Kalman ,  Dmitri Pikus ,  Omer Tripp ,  Omri Weisman

发明人： Daniel Kalman ,  Dmitri Pikus ,  Omer Tripp ,  Omri Weisman

IPC分类号： G06F9/44

CPC分类号： G06F21/52 ,  G06F8/51 ,  G06F8/75 ,  G06F11/3604

摘要： Performing data flow analysis of a computer software application, including, for a data flow analysis type, identifying within a computer software application code base a plurality of seeds relating to the data flow analysis type, for each of the plurality of seeds, defining a portion of the computer software application code base to a predefined depth of calls backward from the seed and to a predefined depth of calls forward from the seed, thereby resulting in a plurality of bounded portions of the computer software application code base, detecting a change in the computer software application code base, and performing, on any of the bounded portions affected by the change, a data flow analysis relating to the data flow analysis type.

公开(公告)号：US08910291B2

公开(公告)日：2014-12-09

申请号：US13430013

申请日：2012-03-26

申请人： Yinnon A. Haviv ,  Daniel Kalman ,  Dmitri Pikus ,  Omer Tripp ,  Omri Weisman

发明人： Yinnon A. Haviv ,  Daniel Kalman ,  Dmitri Pikus ,  Omer Tripp ,  Omri Weisman

IPC分类号： H04L29/06 ,  G06F21/57

CPC分类号： G06F21/577 ,  H04L63/1433 ,  H04L63/1441

摘要： Detecting security vulnerabilities in web applications by interacting with a web application at a computer server during its execution at the computer server, identifying client-side instructions provided by the web application responsive to an interaction with the web application, where the client-side instructions are configured to be implemented by a client computer that receives the client-side instructions from the computer server, evaluating the identified client-side instructions, and identifying a security vulnerability associated with the client-side instructions.

摘要翻译： 通过在计算机服务器执行期间与计算机服务器上的Web应用程序交互来检测Web应用程序中的安全漏洞，识别由Web应用程序提供的客户端指令，响应于与Web应用程序的交互，其中客户端指令是 被配置为由从计算机服务器接收客户端指令的客户端计算机实现，评估所识别的客户端指令，以及识别与客户端指令相关联的安全漏洞。

公开(公告)号：US10157049B2

公开(公告)日：2018-12-18

申请号：US13281653

申请日：2011-10-26

申请人： Yinnon A. Haviv ,  Daniel Kalman ,  Dmitri Pikus ,  Omer Tripp ,  Omri Weisman

发明人： Yinnon A. Haviv ,  Daniel Kalman ,  Dmitri Pikus ,  Omer Tripp ,  Omri Weisman

IPC分类号： G06F9/44 ,  G06F8/41 ,  G06F11/36 ,  G06F8/75

摘要： Statically analyzing a computer software application can include identifying a plurality of objects within the instructions of a computer software application, where the objects in the plurality of objects are of the same object type, and preparing a modified version of the instructions in which any of the objects in the plurality of objects determined to be extraneous is omitted.

公开(公告)号：US09032528B2

公开(公告)日：2015-05-12

申请号：US13170839

申请日：2011-06-28

申请人： Yinnon A. Haviv ,  Daniel Kalman ,  Dmitri Pikus ,  Omer Tripp ,  Omri Weisman

发明人： Yinnon A. Haviv ,  Daniel Kalman ,  Dmitri Pikus ,  Omer Tripp ,  Omri Weisman

IPC分类号： H04L29/06 ,  G06F21/57

CPC分类号： G06F21/577 ,  H04L63/1433 ,  H04L63/1441

摘要： Detecting security vulnerabilities in web applications by interacting with a web application at a computer server during its execution at the computer server, identifying client-side instructions provided by the web application responsive to an interaction with the web application, where the client-side instructions are configured to be implemented by a client computer that receives the client-side instructions from the computer server, evaluating the identified client-side instructions, and identifying a security vulnerability associated with the client-side instructions.

摘要翻译： 通过在计算机服务器执行期间与计算机服务器上的Web应用程序交互来检测Web应用程序中的安全漏洞，识别由Web应用程序提供的客户端指令，响应于与Web应用程序的交互，其中客户端指令是 被配置为由从计算机服务器接收客户端指令的客户端计算机实现，评估所识别的客户端指令，以及识别与客户端指令相关联的安全漏洞。

公开(公告)号：US08671397B2

公开(公告)日：2014-03-11

申请号：US13246260

申请日：2011-09-27

申请人： Daniel Kalman ,  Dmitri Pikus ,  Omer Tripp ,  Omri Weisman

发明人： Daniel Kalman ,  Dmitri Pikus ,  Omer Tripp ,  Omri Weisman

IPC分类号： G06F9/44

CPC分类号： G06F21/52 ,  G06F8/51 ,  G06F8/75 ,  G06F11/3604

摘要： Performing data flow analysis of a computer software application, including, for a data flow analysis type, identifying within a computer software application code base a plurality of seeds relating to the data flow analysis type, for each of the plurality of seeds, defining a portion of the computer software application code base to a predefined depth of calls backward from the seed and to a predefined depth of calls forward from the seed, thereby resulting in a plurality of bounded portions of the computer software application code base, detecting a change in the computer software application code base, and performing, on any of the bounded portions affected by the change, a data flow analysis relating to the data flow analysis type.

摘要翻译： 执行计算机软件应用的数据流分析，包括对于数据流分析类型，在计算机软件应用程序代码库内识别与数据流分析类型相关的多个种子，为多个种子中的每一个定义一部分 的计算机软件应用程序代码库的预定深度从种子返回到预定义的深度，并且从种子转发到预定义的呼叫深度，从而导致计算机软件应用程序代码库的多个有界部分， 计算机软件应用程序代码库，并在受变更影响的任何有界部分执行与数据流分析类型相关的数据流分析。

公开(公告)号：US20090285376A1

公开(公告)日：2009-11-19

申请号：US12119588

申请日：2008-05-13

申请人： Shiri Kremer-Davidson ,  Alan Hartman ,  Mila Keren ,  Dmitri Pikus

发明人： Shiri Kremer-Davidson ,  Alan Hartman ,  Mila Keren ,  Dmitri Pikus

IPC分类号： H04M3/42

CPC分类号： H04M7/0021 ,  H04Q3/0054 ,  H04Q2213/1305 ,  H04Q2213/13051

摘要： A method of telecom software and service development that allows a user to model and create telecom services independent of telecommunications protocols and network layer details. The method of the invention operates by creating an abstract model of a desired telecom service or services that is converted, using a set of extensible transformations, into executable code. Models in accordance with the method are constructed using an Integrated Development Environment (IDE) for creating and developing telecom services that is embodied in the Telecom Service Domain specific Language (TS-DSL)

摘要翻译： 电信软件和服务开发的方法，允许用户独立于电信协议和网络层细节来建模和创建电信业务。 本发明的方法通过创建一个希望的电信服务或服务的抽象模型来运行，该抽象模型使用一组可扩展变换被转换成可执行代码。 根据该方法的模型使用集成开发环境（IDE）构建，用于创建和开发电信服务领域特定语言（TS-DSL）中体现的电信服务，

公开(公告)号：US20090285375A1

公开(公告)日：2009-11-19

申请号：US12119554

申请日：2008-05-13

申请人： Shiri Kremer-Davidson ,  Alan Hartman ,  Mila Keren ,  Dmitri Pikus

发明人： Shiri Kremer-Davidson ,  Alan Hartman ,  Mila Keren ,  Dmitri Pikus

IPC分类号： H04M3/42

CPC分类号： H04M3/42136 ,  G06F8/24 ,  G06F8/34 ,  G06F17/3089 ,  H04L65/1016 ,  H04M7/006 ,  H04M2201/54

摘要： A method of telephone call management in process of service development that allows a user to model and create telephone call management schemes independent of telecommunications protocols and network layer details. The method of the invention operates by creating an abstract model of a telephone call life-cycle that is converted, using a set of communication threads, into executable code. Models in accordance with the method of the invention are constructed using an Integrated Development Environment (IDE) for creating and developing telecom services that embodies the Telecom Service Domain Specific Language (TS-DSL) which is implemented as a Unified Modeling Language (UML) extension for the telecom domain. By this method, individuals without specialized knowledge of telecom related software programming and protocols can successfully design and implement telecom services that manages calls. The ease of implementation of the method also reduces design time and, therefore, time to market of the finished product.

摘要翻译： 一种在服务开发过程中进行电话呼叫管理的方法，其允许用户独立于电信协议和网络层细节来建立和创建电话呼叫管理方案。 本发明的方法通过创建使用一组通信线程转换成可执行代码的电话呼叫生命周期的抽象模型来操作。 根据本发明的方法的模型是使用集成开发环境（IDE）构建的，用于创建和开发电信服务，该电信服务体现了实现为统一建模语言（UML）扩展的电信服务域特定语言（TS-DSL） 为电信领域。 通过这种方式，没有电信相关软件编程和协议专业知识的人员可以成功地设计和实施管理呼叫的电信业务。 该方法的易于实施还减少了设计时间，并因此缩短了成品的上市时间。

公开(公告)号：US08849631B2

公开(公告)日：2014-09-30

申请号：US12119554

申请日：2008-05-13

申请人： Shiri Kremer-Davidson ,  Alan Hartman ,  Mila Keren ,  Dmitri Pikus

发明人： Shiri Kremer-Davidson ,  Alan Hartman ,  Mila Keren ,  Dmitri Pikus

IPC分类号： G06G7/48 ,  G06F9/455 ,  G06F9/44 ,  G06F17/30 ,  H04L29/06 ,  H04M3/42 ,  H04M7/00

CPC分类号： H04M3/42136 ,  G06F8/24 ,  G06F8/34 ,  G06F17/3089 ,  H04L65/1016 ,  H04M7/006 ,  H04M2201/54

摘要： A method of telephone call management in process of service development that allows a user to model and create telephone call management schemes independent of telecommunications protocols and network layer details. The method of the invention operates by creating an abstract model of a telephone call life-cycle that is converted, using a set of communication threads, into executable code. Models in accordance with the method of the invention are constructed using an Integrated Development Environment (IDE) for creating and developing telecom services that embodies the Telecom Service Domain Specific Language (TS-DSL) which is implemented as a Unified Modeling Language (UML) extension for the telecom domain. By this method, individuals without specialized knowledge of telecom related software programming and protocols can successfully design and implement telecom services that manages calls. The ease of implementation of the method also reduces design time and, therefore, time to market of the finished product.

摘要翻译： 一种在服务开发过程中进行电话呼叫管理的方法，其允许用户独立于电信协议和网络层细节来建立和创建电话呼叫管理方案。 本发明的方法通过创建使用一组通信线程转换成可执行代码的电话呼叫生命周期的抽象模型来操作。 根据本发明的方法的模型是使用集成开发环境（IDE）来构建的，用于创建和开发电信服务，这些电信服务体现了实现为统一建模语言（UML）扩展的电信服务域特定语言（TS-DSL） 为电信领域。 通过这种方式，没有电信相关软件编程和协议专业知识的人员可以成功地设计和实施管理呼叫的电信业务。 该方法的易于实施还减少了设计时间，并因此缩短了成品的上市时间。