A tree-based machine learning methodology to automatically classify software vulnerabilities

2021 IEEE International Conference on Cyber Security and Resilience (CSR) Pub Date : 2021-07-26 DOI:10.1109/CSR51186.2021.9527965

Georgios Aivatoglou, Mike Anastasiadis, Georgios Spanos, A. Voulgaridis, K. Votis, D. Tzovaras

{"title":"A tree-based machine learning methodology to automatically classify software vulnerabilities","authors":"Georgios Aivatoglou, Mike Anastasiadis, Georgios Spanos, A. Voulgaridis, K. Votis, D. Tzovaras","doi":"10.1109/CSR51186.2021.9527965","DOIUrl":null,"url":null,"abstract":"Software vulnerabilities have become a major problem for the security analysts, since the number of new vulnerabilities is constantly growing. Thus, there was a need for a categorization system, in order to group and handle these vulnerabilities in a more efficient way. Hence, the MITRE corporation introduced the Common Weakness Enumeration that is a list of the most common software and hardware vulnerabilities. However, the manual task of understanding and analyzing new vulnerabilities by security experts, is a very slow and exhausting process. For this reason, a new automated classification methodology is introduced in this paper, based on the vulnerability textual descriptions from National Vulnerability Database. The proposed methodology, combines textual analysis and tree-based machine learning techniques in order to classify vulnerabilities automatically. The results of the experiments showed that the proposed methodology performed pretty well achieving an overall accuracy close to 80%.","PeriodicalId":253300,"journal":{"name":"2021 IEEE International Conference on Cyber Security and Resilience (CSR)","volume":"28 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-07-26","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 IEEE International Conference on Cyber Security and Resilience (CSR)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CSR51186.2021.9527965","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 4

Abstract

Software vulnerabilities have become a major problem for the security analysts, since the number of new vulnerabilities is constantly growing. Thus, there was a need for a categorization system, in order to group and handle these vulnerabilities in a more efficient way. Hence, the MITRE corporation introduced the Common Weakness Enumeration that is a list of the most common software and hardware vulnerabilities. However, the manual task of understanding and analyzing new vulnerabilities by security experts, is a very slow and exhausting process. For this reason, a new automated classification methodology is introduced in this paper, based on the vulnerability textual descriptions from National Vulnerability Database. The proposed methodology, combines textual analysis and tree-based machine learning techniques in order to classify vulnerabilities automatically. The results of the experiments showed that the proposed methodology performed pretty well achieving an overall accuracy close to 80%.

查看原文本刊更多论文

一种基于树的自动分类软件漏洞的机器学习方法

由于新的漏洞数量不断增加，软件漏洞已经成为安全分析人员面临的主要问题。因此，需要一个分类系统，以便以更有效的方式对这些漏洞进行分组和处理。因此，MITRE公司引入了Common Weakness Enumeration，这是一个最常见的软件和硬件漏洞列表。然而，由安全专家手动理解和分析新的漏洞是一个非常缓慢和累人的过程。为此，本文提出了一种基于国家漏洞数据库中漏洞文本描述的自动分类方法。该方法结合了文本分析和基于树的机器学习技术，以便对漏洞进行自动分类。实验结果表明，所提出的方法性能良好，总体精度接近80%。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2021 IEEE International Conference on Cyber Security and Resilience (CSR)

自引率

0.00%

发文量