利用机器学习对软件漏洞进行误报分析

2018 IEEE International Conference on Cloud Computing in Emerging Markets (CCEM) Pub Date : 2018-11-01 DOI:10.1109/CCEM.2018.00010

Sumanth Gowda, Divyesh L Prajapati, Ranjit Singh, Swanand S. Gadre

{"title":"利用机器学习对软件漏洞进行误报分析","authors":"Sumanth Gowda, Divyesh L Prajapati, Ranjit Singh, Swanand S. Gadre","doi":"10.1109/CCEM.2018.00010","DOIUrl":null,"url":null,"abstract":"Dynamic Application Security Testing is conducted with the help of automated tools that have built-in scanners which automatically crawl all the webpages of the application and report security vulnerabilities based on certain set of pre-defined scan rules. Such pre-defined rules cannot fully determine the accuracy of a vulnerability and very often one needs to manually validate these results to remove the false positives. Eliminating false positives from such results can be a quite painful and laborious task. This article proposes an approach of eliminating false positives by using machine learning . Based on the historic data available on false positives, suitable machine learning models are deployed to predict if the reported defect is a real vulnerability or a false positive","PeriodicalId":156315,"journal":{"name":"2018 IEEE International Conference on Cloud Computing in Emerging Markets (CCEM)","volume":"34 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":"{\"title\":\"False Positive Analysis of Software Vulnerabilities Using Machine Learning\",\"authors\":\"Sumanth Gowda, Divyesh L Prajapati, Ranjit Singh, Swanand S. Gadre\",\"doi\":\"10.1109/CCEM.2018.00010\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Dynamic Application Security Testing is conducted with the help of automated tools that have built-in scanners which automatically crawl all the webpages of the application and report security vulnerabilities based on certain set of pre-defined scan rules. Such pre-defined rules cannot fully determine the accuracy of a vulnerability and very often one needs to manually validate these results to remove the false positives. Eliminating false positives from such results can be a quite painful and laborious task. This article proposes an approach of eliminating false positives by using machine learning . Based on the historic data available on false positives, suitable machine learning models are deployed to predict if the reported defect is a real vulnerability or a false positive\",\"PeriodicalId\":156315,\"journal\":{\"name\":\"2018 IEEE International Conference on Cloud Computing in Emerging Markets (CCEM)\",\"volume\":\"34 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2018-11-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"4\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2018 IEEE International Conference on Cloud Computing in Emerging Markets (CCEM)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/CCEM.2018.00010\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 IEEE International Conference on Cloud Computing in Emerging Markets (CCEM)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CCEM.2018.00010","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 4

摘要

动态应用程序安全测试是在自动化工具的帮助下进行的，这些工具内置了扫描器，可以自动抓取应用程序的所有网页，并根据某些预定义的扫描规则报告安全漏洞。这种预定义的规则不能完全确定漏洞的准确性，通常需要手动验证这些结果以消除误报。从这样的结果中消除假阳性可能是一项相当痛苦和费力的任务。本文提出了一种利用机器学习消除误报的方法。根据假阳性的历史数据，部署合适的机器学习模型来预测报告的缺陷是真正的漏洞还是假阳性

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

False Positive Analysis of Software Vulnerabilities Using Machine Learning

Dynamic Application Security Testing is conducted with the help of automated tools that have built-in scanners which automatically crawl all the webpages of the application and report security vulnerabilities based on certain set of pre-defined scan rules. Such pre-defined rules cannot fully determine the accuracy of a vulnerability and very often one needs to manually validate these results to remove the false positives. Eliminating false positives from such results can be a quite painful and laborious task. This article proposes an approach of eliminating false positives by using machine learning . Based on the historic data available on false positives, suitable machine learning models are deployed to predict if the reported defect is a real vulnerability or a false positive

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2018 IEEE International Conference on Cloud Computing in Emerging Markets (CCEM)

自引率

0.00%

发文量