AUTOMATIC DETECTION OF VULNERABLE FILES AND INSTALLATION PATCHES ON THEM

摘要

FIELD: physics; computer engineering.;SUBSTANCE: present invention relates to computer engineering and can be used for protecting binary program files. In the invention description is given of a system and method which enable installation of security patches (on weak points) in binary files. Detection and installation of patches on vulnerable binary files is automatic, reliable, and free from worsening and exhaustion in networks of unlimited size. Reliable detection of vulnerable binary files (for example, in operation systems, application programs etc) is achieved through use of binary signatures, which are related to the detected vulnerabilities. Distinction of security patches from ordinary service packs provides for possibility of making patches which do not worsen vulnerability in binary files.;EFFECT: provision for reliable detection of vulnerable binary files and making patches which do not worsen vulnerability in binary files.;24 cl, 7 dwg