公开(公告)号：US11971997B2

公开(公告)日：2024-04-30

申请号：US18132783

申请日：2023-04-10

申请人： Raytheon BBN Technologies Corp.

发明人： Michael Hassan Atighetchi ,  Borislava Ivanova Simidchieva

IPC分类号： G06F21/57 ,  G06F8/10

CPC分类号： G06F21/577 ,  G06F8/10 ,  G06F2221/034

摘要： Techniques for automated system requirements analysis are disclosed. A system requirements analysis (SRA) service generates a system model that includes system requirements, at least by performing natural-language processing on a natural-language representation of the system requirements. Based at least on the system model, the SRA service performs an analysis of the system requirements against codified system requirements rules. The SRA service determines, based at least on the analysis of the system requirements against the codified system requirements rules, that the system requirements include a violation of a system requirements rule. The SRA service generates a report that identifies at least (a) the violation of the system requirements rule and (b) a suggested action to remediate the violation of the system requirements rule.

公开(公告)号：US20230376609A1

公开(公告)日：2023-11-23

申请号：US18132783

申请日：2023-04-10

申请人： Raytheon BBN Technologies Corp.

发明人： Michael Hassan Atighetchi ,  Borislava Ivanova Simidchieva

IPC分类号： G06F21/57 ,  G06F8/10

CPC分类号： G06F21/577 ,  G06F8/10 ,  G06F2221/034

摘要： Techniques for automated system requirements analysis are disclosed. A system requirements analysis (SRA) service generates a system model that includes system requirements, at least by performing natural-language processing on a natural-language representation of the system requirements. Based at least on the system model, the SRA service performs an analysis of the system requirements against codified system requirements rules. The SRA service determines, based at least on the analysis of the system requirements against the codified system requirements rules, that the system requirements include a violation of a system requirements rule. The SRA service generates a report that identifies at least (a) the violation of the system requirements rule and (b) a suggested action to remediate the violation of the system requirements rule.

公开(公告)号：US20200252418A1

公开(公告)日：2020-08-06

申请号：US16444630

申请日：2019-06-18

申请人： Raytheon BBN Technologies Corp.

发明人： Michael Hassan Atighetchi ,  Borislava Ivanova Simidchieva

IPC分类号： H04L29/06

摘要： A method of performing a security assessment of a system includes analyzing a static structure of the system; storing, in a semantic system model, structure information about the static structure of the system; observing the system during a plurality of discrete temporal system states; storing, in the semantic system model, dynamic information about the system during the plurality of discrete temporal system states; performing a semantic composition analysis on the structure information to identify at least one vulnerability of the system; performing a flow analysis on the dynamic information to identify at least one anomalous behavior of the system during at least one of the plurality of discrete temporal system states; and generating, based on the at least one vulnerability of the system and the at least one anomalous behavior of the system, a vulnerability assessment of the system.

公开(公告)号：US11651079B2

公开(公告)日：2023-05-16

申请号：US16683185

申请日：2019-11-13

申请人： Raytheon BBN Technologies Corp.

发明人： Michael Hassan Atighetchi ,  Borislava Ivanova Simidchieva

IPC分类号： G06F21/57 ,  G06F8/10

CPC分类号： G06F21/577 ,  G06F8/10 ,  G06F2221/034

摘要： Techniques for automated system requirements analysis are disclosed. A system requirements analysis (SRA) service generates a system model that includes system requirements, at least by performing natural-language processing on a natural-language representation of the system requirements. Based at least on the system model, the SRA service performs an analysis of the system requirements against codified system requirements rules. The SRA service determines, based at least on the analysis of the system requirements against the codified system requirements rules, that the system requirements include a violation of a system requirements rule. The SRA service generates a report that identifies at least (a) the violation of the system requirements rule and (b) a suggested action to remediate the violation of the system requirements rule.

公开(公告)号：US11297081B2

公开(公告)日：2022-04-05

申请号：US16444630

申请日：2019-06-18

申请人： Raytheon BBN Technologies Corp.

发明人： Michael Hassan Atighetchi ,  Borislava Ivanova Simidchieva

IPC分类号： H04L29/06

摘要： A method of performing a security assessment of a system includes analyzing a static structure of the system; storing, in a semantic system model, structure information about the static structure of the system; observing the system during a plurality of discrete temporal system states; storing, in the semantic system model, dynamic information about the system during the plurality of discrete temporal system states; performing a semantic composition analysis on the structure information to identify at least one vulnerability of the system; performing a flow analysis on the dynamic information to identify at least one anomalous behavior of the system during at least one of the plurality of discrete temporal system states; and generating, based on the at least one vulnerability of the system and the at least one anomalous behavior of the system, a vulnerability assessment of the system.