Abstract: The invention relates to a system and method for fixing application vulnerabilities through a correlated remediation approach. This invention involves identifying application vulnerabilities through dynamic and static assessment of an application. The vulnerability instances reported in the static assessment are fixed using standard code fixes. The assessment results obtained from the static and the dynamic assessment are then correlated to identify how many vulnerability instances reported in the static assessment are fixed by the standard code fixes. If a vulnerability instance reported in the dynamic assessment corresponds to more than one vulnerability instance reported in the static assessment then the shortest and most cost effective path to fix the vulnerability instance is determined. These results are stored in a graph database and based on the graph database the application vulnerabilities are fixed. An inference engine can be used to identify the correct fix for an application vulnerability.

Abstract: The disclosed embodiments relate to a method, apparatus, and computer-readable medium for managing policy compliance. As exemplary method comprises receiving, by at least one of the one or more computing devices, information associated with a policy event corresponding to a system resource; determining, by at least one of the one or more computing devices, whether the policy event is in compliance with one or more policies; determining, by at least one of the one or more computing devices, a corrective action if the policy event is not in compliance with at least one of the one or more policies; and transmitting, by at least one of the one or more computing devices, information associated with the corrective action if the policy event is not in compliance with at least one of the one or more policies.

Abstract: The invention relates to a system and method for fixing application vulnerabilities through a correlated remediation approach. This invention involves identifying application vulnerabilities through dynamic and static assessment of an application. The vulnerability instances reported in the static assessment is fixed using standard code fixes. The assessment results obtained from the static and the dynamic assessment are then correlated to identify how many vulnerability instances reported in the static assessment are by fixing the code based on the standard code fix. If a vulnerability instance reported in the dynamic assessment corresponds to more than one vulnerability instances reported in the static assessment then the shortest and cost effective path to fix the vulnerability instance is determined. These results are stored in a graph database and based on the graph database the application vulnerabilities are fixed.