首页>
外国专利>
Methods and systems for reducing false positive findings
Methods and systems for reducing false positive findings
展开▼
机译:减少假阳性结果的方法和系统
展开▼
页面导航
摘要
著录项
相似文献
摘要
A system for validating software security analysis findings includes a non-transitory computer readable medium and a processor. The non-transitory computer readable medium stores a source truth dataset including criteria for validating characteristics of findings. The processor receives a finding from a software security analysis tool that performs scan on application code. The processor identifies a characteristic from the finding. The processor selects a criterion from the non-transitory computer readable medium for validating the identified characteristic. The processor determines a validity score for the finding based on whether the selected criterion is met. The processor determines whether the finding is false positive by comparing the validity score to a predetermined validity threshold. If the finding is true positive, a graphical user interface displays the finding.
展开▼