Patents Assigned to Shiftleft Inc.
-
Patent number: 12067126Abstract: A system and method for application security profiling that includes extracting a code property graph from at least a subset of a code base; generating a code profile from the code property graph, wherein generating the code profile occurs prior to a compilation of the code base; and applying the code profile, comprising of identifying sections of interest within the code base.Type: GrantFiled: July 20, 2022Date of Patent: August 20, 2024Assignee: ShiftLeft Inc.Inventors: Vlad A Ionescu, Fabian Yamaguchi, Chetan Conikee, Manish Gupta
-
Patent number: 11899818Abstract: A system and method for monitoring and protecting sensitive data that includes identifying sensitive data and statically tracking sensitive data using data flow analysis across a code base, monitoring flow of the data during application runtime, and responding to vulnerabilities according to a sensitive data characterization of the data. Identifying sensitive data includes processing a semantic description of the data in the application code and characterizing the sensitive data. Monitoring flow of the data includes: identifying and characterizing sensitive data through data usage, updating the characterization for the sensitive data through data usage, and enforcing security measures on the data according to the sensitive data characterization of the data.Type: GrantFiled: May 21, 2021Date of Patent: February 13, 2024Assignee: ShiftLeft Inc.Inventors: Chetan Conikee, Markus Lottmann, Fabian Yamaguchi, Vlad A Ionescu
-
Patent number: 11783054Abstract: A method and system for security flow analysis of application code comprising: detecting data flows in a code base; and extracting an information flow, comprising determining a primary data flow by identifying a data flow that contains exposed data, and extending the primary data flow through descriptor data flows, wherein the descriptor data flows are associated with the set of data tracked by the primary data flow; wherein the information flow is a high level flow description that exposes the application code vulnerabilities based on the primary data flow and all associated descriptor data flows.Type: GrantFiled: October 21, 2022Date of Patent: October 10, 2023Assignee: ShiftLeft IncInventors: Fabian Yamaguchi, Markus Lottmann, Niko Schmidt, Vlad A Ionescu, Chetan Conikee
-
Patent number: 11657154Abstract: A system and method for securing an application through an application-aware runtime agent can include: acquiring a code profile, instrumenting the application with a runtime agent according to the code profile, enforcing the runtime agent on the execution of the application, and responding to the runtime agent. Enforcing the runtime agent on the execution of the application can include monitoring the execution flow, which comprises of monitoring the utilization of the controls through the execution of the application; detecting a threat, which comprises identifying a section of the execution flow as a potential security threat; and regulating the execution flow to prevent or ameliorate the security threat. Responding to the runtime agent can include responding to the security threat and providing a user interface that may output runtime agent diagnostics and trigger alerts.Type: GrantFiled: February 17, 2021Date of Patent: May 23, 2023Assignee: ShiftLeft IncInventors: Chetan Conikee, Manish Gupta, Vlad A Ionescu, Ignacio del Valle Alles
-
Patent number: 11436337Abstract: A system and method for application security profiling that includes extracting a code property graph from at least a subset of a code base; generating a code profile from the code property graph, wherein generating the code profile occurs prior to a compilation of the code base; and applying the code profile, comprising of identifying sections of interest within the code base.Type: GrantFiled: June 25, 2020Date of Patent: September 6, 2022Assignee: ShiftLeft Inc.Inventors: Vlad A Ionescu, Fabian Yamaguchi, Chetan Conikee, Manish Gupta
-
Patent number: 11074362Abstract: A system and method for monitoring and protecting sensitive data that includes identifying sensitive data and statically tracking sensitive data using data flow analysis across a code base, monitoring flow of the data during application runtime, and responding to vulnerabilities according to a sensitive data characterization of the data. Identifying sensitive data includes processing a semantic description of the data in the application code and characterizing the sensitive data. Monitoring flow of the data includes: identifying and characterizing sensitive data through data usage, updating the characterization for the sensitive data through data usage, and enforcing security measures on the data according to the sensitive data characterization of the data.Type: GrantFiled: December 4, 2018Date of Patent: July 27, 2021Assignee: ShiftLeft, Inc.Inventors: Chetan Conikee, Markus Lottmann, Fabian Yamaguchi, Vlad A Ionescu
-
Patent number: 10956574Abstract: A system and method for securing an application through an application-aware runtime agent can include: acquiring a code profile, instrumenting the application with a runtime agent according to the code profile, enforcing the runtime agent on the execution of the application, and responding to the runtime agent. Enforcing the runtime agent on the execution of the application can include monitoring the execution flow, which comprises of monitoring the utilization of the controls through the execution of the application; detecting a threat, which comprises identifying a section of the execution flow as a potential security threat; and regulating the execution flow to prevent or ameliorate the security threat. Responding to the runtime agent can include responding to the security threat and providing a user interface that may output runtime agent diagnostics and trigger alerts.Type: GrantFiled: October 8, 2018Date of Patent: March 23, 2021Assignee: ShiftLeft Inc.Inventors: Chetan Conikee, Manish Gupta, Vlad A Ionescu, Ignacio del Valle Alles
-
Patent number: 10740470Abstract: A system and method for application security profiling that includes extracting a code property graph from at least a subset of a code base; generating a code profile from the code property graph, wherein generating the code profile occurs prior to a compilation of the code base; and applying the code profile, comprising of identifying sections of interest within the code base.Type: GrantFiled: May 31, 2018Date of Patent: August 11, 2020Assignee: Shiftleft Inc.Inventors: Vlad A Ionescu, Fabian Yamaguchi, Chetan Conikee, Manish Gupta