Commit-Level, Neural Vulnerability Detection and Assessment
Yi Li, Aashish Yadavally, Jiaxing Zhang, Shaohua Wang, Tien N. Nguyen
Abstract
Software Vulnerabilities (SVs) are security flaws that are exploitable in cyber-attacks. Delay in the detection and assessment of SVs might cause serious consequences due to the unknown impacts on the attacked systems. The state-of-the-art approaches have been proposed to work directly on the committed code changes for early detection. However, none of them could provide both commit-level vulnerability detection and assessment at once. Moreover, the assessment approaches still suffer low accuracy due to limited representations for code changes and surrounding contexts.
Topics & Concepts
CommitVulnerability (computing)Computer scienceVulnerability assessmentCode (set theory)Computer securitySoftwarePsychologyOperating systemProgramming languageSet (abstract data type)PsychotherapistPsychological resilienceDatabaseSoftware Engineering ResearchAdvanced Malware Detection TechniquesInformation and Cyber Security