Unlock instant, AI-driven research and patent intelligence for your innovation.

Engine vulnerability detection method and detection apparatus

A detection device and vulnerability detection technology, which is applied in the fields of information security and computers, can solve the problems of cost and large API vulnerability detection cost, and achieve the effect of reducing the detection cost

Active Publication Date: 2017-01-04
TENCENT TECH (SHENZHEN) CO LTD
View PDF4 Cites 8 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] However, since there are many APIs of the development engine, and there are many development engine versions, and there are certain differences in the APIs of each version, it is necessary to write a large number of test cases for each development version, which consumes a huge amount of API vulnerabilities. testing cost

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Engine vulnerability detection method and detection apparatus
  • Engine vulnerability detection method and detection apparatus
  • Engine vulnerability detection method and detection apparatus

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0035] The embodiment of the present invention provides a method and a detection device for engine vulnerability detection. It is not necessary to write test cases for each application development engine, but to establish an API experience library according to the API information with security vulnerabilities in the application development engine. Through the API The experience library scans out the API vulnerabilities existing in the application to be detected, thereby reducing the detection cost of API vulnerabilities.

[0036] The terms "first", "second", "third", "fourth", etc. (if any) in the description and claims of the present invention and the above drawings are used to distinguish similar objects, and not necessarily Used to describe a specific sequence or sequence. It is to be understood that the data so used are interchangeable under appropriate circumstances such that the embodiments of the invention described herein are, for example, capable of practice in sequen...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

An embodiment of the invention discloses an engine vulnerability detection method. The method comprises the steps of obtaining to-be-detected applications; obtaining an application programming interface (API) experience base of a first application development engine, wherein first application development engine is used for developing the to-be-detected applications, and the API experience base contains at least one piece of API information with security vulnerabilities; extracting APIs of the to-be-detected applications; and judging whether the APIs of the to-be-detected applications have the security vulnerabilities or not according to the API experience base, and if yes, determining a target API with the security vulnerabilities in the APIs of the to-be-detected applications. An embodiment of the invention furthermore provides a detection apparatus. According to the method and the apparatus disclosed by the embodiments of the invention, a test case does not need to be written for each application development engine, the API experience base of the application development engine is established according to the API information of the security vulnerabilities, and the API vulnerabilities existent in the to-be-detected applications are scanned through the API experience base, so that the detection cost of the API vulnerabilities is reduced.

Description

technical field [0001] The present invention relates to the field of computer technology and the field of information security technology, in particular to a method and a detection device for engine vulnerability detection. Background technique [0002] Today, with the continuous development of information technology, applications are becoming more and more popular. In order to enrich people's daily life, developers have developed a variety of applications, such as social networking applications, game applications, e-commerce applications, search applications, and forum applications. However, in the process of developing an application program, there may be loopholes in the Application Programming Interface (full name in English: Application Programming Interface, English abbreviation: API), which may cause the application program to go down during operation. [0003] In order to reduce the frequency of downtime during the running of the application program, a method can be...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/57
CPCG06F21/577G06F2221/033
Inventor 张蓓邹越袁明凯严明魏学峰
Owner TENCENT TECH (SHENZHEN) CO LTD