Litcius/Paper detail

Automated Keyword Extraction from "One-day" Vulnerabilities at Disclosure

Clément Elbaz, Louis Rilling, Christine Morin

202012 citationsDOIOpen Access PDF

Abstract

Common Vulnerabilities and Exposures (CVE) databases such as Mitre’s CVE List and NIST’s NVD database identify every disclosed vulnerability affecting any public software. However, during the early hours of a vulnerability disclosure, the metadata associated with these vulnerabilities is either missing, wrong, or at best sparse. This creates a challenge for robust automated analysis of new vulnerabilities. We present a new technique based on TF-IDF to assess the software products most probably affected by newly disclosed vulnerabilities, formulated as an ordered list of relevant keywords. For doing so we rely only on the human readable description of a new vulnerability without any need for its metadata. Our evaluation results suggest real world applicability of our technique.

Topics & Concepts

MetadataComputer scienceVulnerability (computing)NISTSoftwareComputer securityInformation retrievalVulnerability assessmentWorld Wide WebDatabaseNatural language processingPsychological resilienceProgramming languagePsychotherapistPsychologySoftware Reliability and Analysis ResearchWeb Application Security VulnerabilitiesInformation and Cyber Security