首页> 外国专利> System and method for java deserialization vulnerability detection

System and method for java deserialization vulnerability detection

机译：Java Deserialization漏洞检测的系统和方法

页面导航

摘要
著录项
相似文献

摘要

A method for generating a deserialization vulnerability report of a Java project, includes: determining, by a computing device, if interior knowledge of the Java project is available, and when the interior knowledge of the Java project isn't available, performing a black box analysis to generate the deserialization vulnerability report; and when the interior knowledge of the Java project is available, determining by the computing device if source code of the Java project is accessible, when the source code of the Java project is accessible, performing a white box analysis to generate the deserialization vulnerability report, and when the source code of the Java project isn't accessible, performing a gray box analysis to generate the deserialization vulnerability report.

机译：一种用于生成Java项目的反序列化漏洞报告的方法，包括：通过计算设备确定Java项目的内部知识，并且当Java项目的内部知识不可用时，执行黑匣子分析生成反序列化漏洞报告;并且当Java项目的内部知识可用时，通过计算设备确定如果可访问Java项目的源代码，则可以访问Java项目的源代码，执行White Box分析以生成Deserialization漏洞报告，并且当Java项目的源代码无法访问时，执行灰框分析以生成Deserialization漏洞报告。

著录项

公开/公告号US11017094B2

专利类型
公开/公告日2021-05-25

原文格式PDF
申请/专利权人 BEIJING JINGDONG SHANGKE INFORMATION TECHNOLOGY CO. LTD.;JD.COM AMERICAN TECHNOLOGIES CORPORATION;
展开▼

申请/专利号US201815861310
发明设计人 FENGGUO WEI;YUEH-HSUN LIN;
展开▼

申请日2018-01-03
分类号G06F21/54;G06F21;G06F16;G06F21/55;G06F8/75;G06F16/24;G06F16/95;G06F21/50;G06F21/71;G06F8/10;G06F9/46;G06F9/54;G06F21/57;G06F11/36;
国家 US
入库时间 2022-08-24 18:53:02

相似文献

专利
外文文献
中文文献