The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Oct. 14, 2025
Filed:
Mar. 04, 2022
Microsoft Technology Licensing, Llc., Redmond, WA (US);
Colin Bruce Clement, Seattle, WA (US);
Matthew Glenn Jin, Seattle, WA (US);
Anant Girish Kharkar, Huntersville, NC (US);
Xiaoyu Liu, Sammamish, WA (US);
Xin Shi, Kirkland, WA (US);
Neelakantan Sundaresan, Bellevue, WA (US);
Roshanak Zilouchian Moghaddam, Kirkland, WA (US);
Microsoft Technology Licensing, LLC, Redmond, WA (US);
Abstract
A false positive vulnerability system detects whether a software vulnerability identified by a static code vulnerability analyzer is a true vulnerability or a false positive. The system utilizes deep learning models to predict whether an identified vulnerability is accurate given the source code context of the identified vulnerability. A neural encoder transformer model is trained to classify a false positive given the method body including the identified vulnerability. A neural decoder transformer model is trained to predict a candidate line-of-code to complete a prompt inserted into the context of the identified vulnerability. The candidate line-of-code that successfully completes the prompt is used as a signal to identify that the identified vulnerability is a false positive.