A performance evaluation of deep‐learnt features for software vulnerability detection

Artigo Revisado por pares

A performance evaluation of deep‐learnt features for software vulnerability detection

2018; Wiley; Volume: 31; Issue: 19 Linguagem: Inglês

10.1002/cpe.5103

ISSN

1532-0634

Autores

Xinbo Ban, Shigang Liu, Chao Chen, Caslon Chua,

Tópico(s)

Advanced Malware Detection Techniques

Resumo

Summary Software vulnerability is a critical issue in the realm of cyber security. In terms of techniques, machine learning (ML) has been successfully used in many real‐world problems such as software vulnerability detection, malware detection and function recognition, for high‐quality feature representation learning. In this paper, we propose a performance evaluation study on ML based solutions for software vulnerability detection, conducting three experiments: machine learning‐based techniques for software vulnerability detection based on the scenario of single type of vulnerability and multiple types of vulnerabilities per dataset; machine learning‐based techniques for cross‐project software vulnerability detection; and software vulnerability detection when facing the class imbalance problem with varying imbalance ratios. Experimental results show that it is possible to employ software vulnerability detection based on ML techniques. However, ML‐based techniques suffer poor performance on both cross‐project and class imbalance problem in software vulnerability detection.

Ver no editor

Altmetric

PlumX

Entrar

Lembrar minha senha

Receber meu e-mail de confirmação

A performance evaluation of deep‐learnt features for software vulnerability detection