公开(公告)号：US20210286640A1

公开(公告)日：2021-09-16

申请号：US16818595

申请日：2020-03-13

Applicant: SAP SE

Inventor： Jonas Zengerle ,  Patrick Spiegel

IPC: G06F9/455 ,  G06F16/17 ,  G06F8/65 ,  G06F9/445

Abstract: Methods and systems can be used for swapping running executables in a container. A container orchestrator process receives a request to run an application in a container. A first execution of the application is initiated, in the container, in a first child process of the container orchestrator process. The container orchestrator process listens for file changes for the application. At least one file change is determined for the application, and in response to determining the at least one file change for the application, a second execution of the application is initiated in the container, without restarting the container, using the at least one file change, in a second child process of the container orchestration process. After initiating the second execution of the application in the container, the first child process is terminated.

公开(公告)号：US11669357B2

公开(公告)日：2023-06-06

申请号：US16818595

申请日：2020-03-13

Applicant: SAP SE

Inventor： Jonas Zengerle ,  Patrick Spiegel

IPC: G06F9/455 ,  G06F16/17 ,  G06F9/445 ,  G06F8/65

CPC classification number: G06F9/45558 ,  G06F8/65 ,  G06F9/44505 ,  G06F16/1734 ,  G06F2009/45562 ,  G06F2009/45595

Abstract: Methods and systems can be used for swapping running executables in a container. A container orchestrator process receives a request to run an application in a container. A first execution of the application is initiated, in the container, in a first child process of the container orchestrator process. The container orchestrator process listens for file changes for the application. At least one file change is determined for the application, and in response to determining the at least one file change for the application, a second execution of the application is initiated in the container, without restarting the container, using the at least one file change, in a second child process of the container orchestration process. After initiating the second execution of the application in the container, the first child process is terminated.

公开(公告)号：US20210099498A1

公开(公告)日：2021-04-01

申请号：US16585655

申请日：2019-09-27

Applicant: SAP SE

Inventor： Patrick Spiegel ,  Nils Neumann

IPC: H04L29/06 ,  H04L29/08

Abstract: A request is received by a gateway. A response to the request is received by the gateway. It is determined that the request comprises a User-Agent request header. In response to determining that the request comprises a User-Agent request header, a type setting of a Content-Type response header is determined. In response to determining that the type setting of the Content-Type response header indicates HTML content, a security header is added to the response. The response responsive to the request is returned.

公开(公告)号：US10657280B2

公开(公告)日：2020-05-19

申请号：US15882043

申请日：2018-01-29

Applicant: SAP SE

Inventor： Patrick Spiegel ,  Martin Johns

IPC: G06F16/00 ,  G06F21/62 ,  G06F16/25 ,  G06F16/245 ,  G06F16/242 ,  G06F21/55

Abstract: For mitigation of injection security attacks against non-relational databases, a database driver layer is integrated with a security layer. A trigger associated with the security layer is set to implement a learning phase of the security layer. In response to enabling the trigger, queries and query parameters associated with the respective queries are received. For the queries, a previously-stored security pattern is identified based on the query and the associated query parameters. The trigger associated with the security layer is reset to implement an execution of the security patterns. In response to resetting the trigger, an additional query and additional query parameters associated with the additional query is received. A particular security pattern is identified that is associated with the additional query and the additional query parameters. At least one of the additional query parameters is determined to not match a corresponding query parameter of the particular security pattern.

公开(公告)号：US20190236301A1

公开(公告)日：2019-08-01

申请号：US15882043

申请日：2018-01-29

Applicant: SAP SE

Inventor： Patrick Spiegel ,  Martin Johns

IPC: G06F21/62 ,  G06F17/30

CPC classification number: G06F21/6227 ,  G06F16/2433 ,  G06F16/245 ,  G06F16/25 ,  G06F21/552 ,  G06F21/554

Abstract: For mitigation of injection security attacks against non-relational databases, a database driver layer is integrated with a security layer. A trigger associated with the security layer is set to implement a learning phase of the security layer. In response to enabling the trigger, queries and query parameters associated with the respective queries are received. For the queries, a previously-stored security pattern is identified based on the query and the associated query parameters. The trigger associated with the security layer is reset to implement an execution of the security patterns. In response to resetting the trigger, an additional query and additional query parameters associated with the additional query is received. A particular security pattern is identified that is associated with the additional query and the additional query parameters. At least one of the additional query parameters is determined to not match a corresponding query parameter of the particular security pattern.