Systematic approach to uncover GUI logic flaws

Yi-Min Wang (Inventor), Shuo Chen (Inventor), Ralf Sasse (Inventor), Jose Meseguer (Inventor), Helen J Wang (Inventor)

Research output: Patent

Abstract

To achieve end-to-end security, traditional machine-to-machine security measures are insufficient if the integrity of the graphical user interface (GUI) is compromised. GUI logic flaws are a category of software vulnerabilities that result from logic flaws in GUI implementation. The invention described here is a technology for uncovering these flaws using a systematic reasoning approach. Major steps in the technology include: (1) mapping a visual invariant to a program invariant; (2) formally modeling the program logic, the user actions and the execution context, and systematically exploring the possibilities of violations of the program invariant; (3) finding real spoofing attacks based on the exploration.
Original languageEnglish (US)
U.S. patent number8156559
Filing date11/30/06
StatePublished - Apr 10 2012

Fingerprint

Dive into the research topics of 'Systematic approach to uncover GUI logic flaws'. Together they form a unique fingerprint.

Cite this