首页>
外国专利>
Site independent methods for deriving contextually tailored security vulnerability corrections for hardening solution stacks
Site independent methods for deriving contextually tailored security vulnerability corrections for hardening solution stacks
展开▼
机译:站点无关的方法,用于根据上下文量身定制安全漏洞更正,以强化解决方案堆栈
展开▼
页面导航
摘要
著录项
相似文献
摘要
In auditing a target Web site for security exposures, site specific remediation reports are generated to provide instructional data tailored to components of the Web server solution stack as determined by the auditing computer system. Stack and component identification is performed in a site independent manner based on an analysis of Web page data retrieved by the auditing computer system. Informational aspects of the received data are recognized individually and by various patterns evident in the received data, enabling further identification of component implementation aspects, such as revision levels. Based on the informational and implementation aspects, site, solution stack, and component specific security audit tests are executed against the target Web site. Audit identified security exposures are recorded in correspondence with site, solution stack, and component implementation specific remediation instruction data. This audit data is then available for reporting.
展开▼