Predicting Vulnerable Software Components via Text Mining

Scandariato R.; Walden J.; Hovsepyan A.; Joosen W.

首页> 外文期刊>Software Engineering, IEEE Transactions on >Predicting Vulnerable Software Components via Text Mining

【24h】

Predicting Vulnerable Software Components via Text Mining

机译：通过文本挖掘预测易受攻击的软件组件

获取原文

获取原文并翻译 | 示例

获取外文期刊封面封底 >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

This paper presents an approach based on machine learning to predict which components of a software application contain security vulnerabilities. The approach is based on text mining the source code of the components. Namely, each component is characterized as a series of terms contained in its source code, with the associated frequencies. These features are used to forecast whether each component is likely to contain vulnerabilities. In an exploratory validation with 20 Android applications, we discovered that a dependable prediction model can be built. Such model could be useful to prioritize the validation activities, e.g., to identify the components needing special scrutiny.

机译：本文提出了一种基于机器学习的方法，以预测软件应用程序的哪些组件包含安全漏洞。该方法基于文本挖掘组件的源代码。即，每个组件的特征是包含在其源代码中的一系列术语以及相关的频率。这些功能用于预测每个组件是否可能包含漏洞。在对20个Android应用程序进行的探索性验证中，我们发现可以构建可靠的预测模型。这种模型可用于确定验证活动的优先级，例如，确定需要特殊检查的组件。

著录项

来源
《Software Engineering, IEEE Transactions on》 |2014年第10期|993-1006|共14页
作者
Scandariato R.; Walden J.; Hovsepyan A.; Joosen W.;
展开▼
作者单位

IBBT-DistriNet, KU Leuven, 3001 Leuven, Belgium;

展开▼
收录信息美国《科学引文索引》(SCI);美国《工程索引》(EI);
原文格式 PDF
正文语种 eng
中图分类
关键词
Androids; Humanoid robots; Measurement; Predictive models; Security; Software; Text mining; Vulnerabilities; machine learning; prediction model;

机译：安卓;人形机器人测量;预测模型;安全;软件;文本挖掘;漏洞;机器学习预测模型;

相似文献

外文文献
中文文献
专利

1. A data- and ontology-driven text mining-based construction of reliability model to analyze and predict component failures [J] . Rajpathak Dnyanesh, De Soumen Knowledge and information systems . 2016,第1期

机译：基于数据和本体驱动的文本挖掘的可靠性模型构建，用于分析和预测组件故障
2. Automatic Feature Learning for Predicting Vulnerable Software Components [J] . Hoa Khanh Dam, Truyen Tran, Trang Pham, IEEE Transactions on Software Engineering . 2021,第1期

机译：用于预测易受攻击软件组件的自动特征学习
3. Feeding consequences of orphans after the mother’s death: a study using text mining softwareConsecuencias en la alimentación de ni?os huérfanos tras la muerte materna: una investigación mediante softwares de minería de textos [J] . Salazar-López María Esther, Vanin Aline Aver, Cazella Silvio César, Cadernos de Saúde Pública . 2020,第3期

机译：母亲死后喂养孤儿的转化：在产妇死后使用文本挖掘软件的研究：通过文本挖掘软件进行调查
4. Predicting Vulnerable Components via Text Mining or Software Metrics? An Effort-Aware Perspective [C] . Tang Yaming, Zhao Fei, Yang Yibiao, IEEE International Conference on Software Quality, Reliability and Security . 2015

机译：通过文本挖掘或软件指标预测易受攻击的组件？努力意识的观点
5. Discovering latent topical phrases in document collections and networks with text components: Leveraging text mining and information network analysis for human oriented applications. [D] . Danilevsky, Marina Grigoryevna. 2014

机译：在文档集合和带有文本组件的网络中发现潜在的主题短语：利用面向人类的应用程序的文本挖掘和信息网络分析。
6. Deploying mutation impact text-mining software with the SADI Semantic Web Services framework [O] . Alexandre Riazanov, Jonas Bergman Laurila, Christopher JO Baker 2011

机译：使用SADI语义Web服务框架部署变异影响文本挖掘软件
7. Predicting vulnerable software components via text mining [O] . Scandariato Riccardo, Walden James, Hovsepyan Aram, 2014

机译：通过文本挖掘预测易受攻击的软件组件

Predicting Vulnerable Software Components via Text Mining

摘要

著录项

相似文献

相关主题

期刊订阅