FastEmbed: Predicting vulnerability exploitation possibility based on ensemble machine learning algorithm

Fang, Yong; Liu, Yongcheng; Huang, Cheng; Liu, Liang

doi:10.1371/journal.pone.0228439

Cited by 56 publications

(28 citation statements)

References 35 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…After the security vulnerabilities are published in the NVD database, the official notification is completed. However, the criticism that the definitions in the reports do not adequately express the relevant weakness is emphasized by the experts in the field [16]. With these criticisms, security vulnerability databases have been published by different organizations due to the problems caused by the institutional structures of CVE and NVD.…”

Section: Related Workmentioning

confidence: 99%

A New Vulnerability Reporting Framework for Software Vulnerability Databases

Kekül¹,

Ergen²,

Arslan³

2021

IJEME

View full text Add to dashboard Cite

Cyber security is one of the fundamental research areas of software engineering. The systems that make up today's information systems infrastructure have been developed largely with software support. Security vulnerabilities in the software used in these systems may cause undesirable results. It is very important to manage software vulnerabilities correctly. In addition, an effective communication mechanism and certain standards should be established among those working in this field. The importance of the subject has been understood in recent years and the studies in this area have gradually increased. The use of machine learning algorithms is increasing in recent studies in this area. Although there is a large data set accumulated in vulnerability databases, there is often the problem of unstructured data. Vulnerability databases and security reports are created in natural language that people can understand and interpret. These reports are difficult to read and understand by machines. Our study focuses on the difficulties of this unstructured and natural language system. In order to investigate this problem, firstly, up-to-date and accessible databases used in scientific research were examined and evaluated. Then, a three-stage security framework was proposed, consisting of the use of vulnerabilities by machines to assist experts from the notification stage to the reporting stage. The rules and flow charts of each stage are defined. In order to increase the usability of different databases in their own systems, the framework rules are defined as a guideline containing flexible directions, not rigid items. The point of consideration is not the methods and tools used, but the definition of outputs as common and similar attributes.

show abstract

Section: Related Workmentioning

confidence: 99%

A New Vulnerability Reporting Framework for Software Vulnerability Databases

Kekül¹,

Ergen²,

Arslan³

2021

IJEME

View full text Add to dashboard Cite

show abstract

“…SecurityFocus en önemli ve en saygın güvenlik açığı veri tabanlarından biridir. NVD veri tabanındaki tanımlamalara göre SecurityFocus listelerindeki tanımlamalar güvenlik açığının etkisini ve sömürülebilirliğini daha spesifik olarak açıklamaktadır (Fang et al 2020).…”

Section: Securityfocusunclassified

“…Fang vd. (Fang et al 2020), güvenlik açıklarının sadece küçük bir bölümünün saldırganlar tarafından istismar edildiğini belirtmiştir. Bu nedenle istismar edilemez güvenlik açıkları ile diğerlerinin ayırt edilmesinin sınırlı kaynakların verimli kullanımını sağlayacağını vurgulamaktadır.…”

Section: Introductionunclassified

Yazılım Güvenlik Açığı Veri Tabanları

Kekül¹,

Ergen²,

Arslan³

2021

European Journal of Science and Technology

View full text Add to dashboard Cite

ÖzBir yazılım bileşeninin güvenlik açığı eğiliminin öngörülmesi, yazılım mühendisliğinin zorlayıcı araştırma alanlarından biridir. Bir bileşenin güvenlik açığı eğilimi hakkında önceden bilgi sahibi olmak, test çabasını ve süreyi önemli ölçüde azaltabilir. Yazılım güvenlik açıklarının belirlenmesi ve sınıflandırılması geliştiricilere yazılımın geliştirilmesinde doğru karar verme noktasında yardımcı olacaktır. Bu sebeple yazılımlarda tespit edilen açıklar çok uzun zamandır veri tabanlarına kaydedilmektedir. Farklı araştırma grupları tarafından pek çok veri tabanı oluşmuştur. Bu çeşitlilik her veri tabanına kendi içinde avantajlar ve dezavantajlar sağlamıştır. Bu çalışmada araştırmacıların çalışmalarında hangi veri tabanını kullanacaklarına karar vermelerine yardımcı olmak ve literatürde kullanılan en güncel ve erişime açık olanların sistematik bir listesi oluşturulmuştur. Yazılım güvenlik açığı tespiti ve sınıflandırmasında kullanan birçok farklı veri tabanının incelenmesi ve karşılaştırması yer almaktadır. Çalışmanın sonunda sonuçlar sunulmuş ve gelecekteki çalışmalar için yönlendirici tavsiyeler verilmiştir.

show abstract

“…Additionally, a vulnerability prediction system, which was developed based on ensemble machine learning algorithms, employed the FastText model for the encoding task [7]. Given these points, many word embedding techniques had been implemented for detecting vulnerabilities in software code.…”

Section: Related Workmentioning

confidence: 99%

An Extended Benchmark System of Word Embedding Methods for Vulnerability Detection

Ngoc

Viet

Uehara

2020

The 4th International Conference on Future Networks and Distributed Systems (ICFNDS)

View full text Add to dashboard Cite

Security researchers have used Natural Language Processing (NLP) and Deep Learning techniques for programming code analysis tasks such as automated bug detection and vulnerability prediction or classification. These studies mainly generate the input vectors for the deep learning models based on the NLP embedding methods. Nevertheless, while there are many existing embedding methods, the structures of neural networks are diverse and usually heuristic. This makes it difficult to select effective combinations of neural models and the embedding techniques for training the code vulnerability detectors. To address this challenge, we extended a benchmark system to analyze the compatibility of four popular word embedding techniques with four different neural networks, including the standard Bidirectional Long Short-Term Memory (Bi-LSTM), the Bi-LSTM applied attention mechanism, the Convolutional Neural Network (CNN), and the classic Deep Neural Network (DNN). We trained and tested the models by using two types of vulnerable function datasets written in C code. Our results revealed that the Bi-LSTM model combined with the FastText embedding technique showed the most efficient detection rate on a real-world but not on an artificially constructed dataset. Further comparisons with the other combinations are also discussed in detail in our result. CCS CONCEPTS• Computing methodologies → Natural language processing; Information extraction; Neural networks; • Security and privacy → Software security engineering.

show abstract

FastEmbed: Predicting vulnerability exploitation possibility based on ensemble machine learning algorithm

Cited by 56 publications

References 35 publications

A New Vulnerability Reporting Framework for Software Vulnerability Databases

A New Vulnerability Reporting Framework for Software Vulnerability Databases

Yazılım Güvenlik Açığı Veri Tabanları

An Extended Benchmark System of Word Embedding Methods for Vulnerability Detection

Contact Info

Product

Resources

About