A Study on Software Vulnerability Prediction Model

被引:0
|
作者
Shamal, P. K. [1 ]
Rahamathulla, K. [1 ]
Akbar, Ali [2 ]
机构
[1] Govt Engn Coll, Comp Sci & Engn, Trichur, Kerala, India
[2] Govt Engn Coll, Comp Sci & Engn, Wayanad, Kerala, India
来源
2017 2ND IEEE INTERNATIONAL CONFERENCE ON WIRELESS COMMUNICATIONS, SIGNAL PROCESSING AND NETWORKING (WISPNET) | 2017年
关键词
Web application; software vulnerability prediction; machine learning; text mining; software metrics;
D O I
暂无
中图分类号
TM [电工技术]; TN [电子技术、通信技术];
学科分类号
0808 ; 0809 ;
摘要
Developing a secure software is time consuming and a complex activity. The main source of insecurity is vulnerabilities in the software. So the prediction of software vulnerability plays important role in software engineering, especially in web application development. A software vulnerability prediction model forecasts whether a software component is vulnerable or not. This paper describes various software vulnerability prediction models. Mainly two types of software vulnerability models are used to predict the vulnerability component in software. In software metrics based prediction model, different software metrics are used as an indicator of software vulnerability. In text analysis based method, source code of the software is used as input to the prediction model. Source code is converted into tokens and frequencies. These are used to predict the vulnerability.
引用
收藏
页码:703 / 706
页数:4
相关论文
共 50 条
  • [1] Software vulnerability prediction: A systematic mapping study
    Kalouptsoglou, Ilias
    Siavvas, Miltiadis
    Ampatzoglou, Apostolos
    Kehagias, Dionysios
    Chatzigeorgiou, Alexander
    INFORMATION AND SOFTWARE TECHNOLOGY, 2023, 164
  • [2] A Software Vulnerability Prediction Model Using Traceable Code Patterns and Software Metrics
    Sultana K.Z.
    Boyd C.B.
    Williams B.J.
    SN Computer Science, 4 (5)
  • [3] Vulnerability severity prediction model for software based on Markov chain
    Jabeen G.
    Yang X.
    Luo P.
    International Journal of Information and Computer Security, 2021, 15 (2-3) : 109 - 140
  • [4] Towards a Software Vulnerability Prediction Model using Traceable Code Patterns and Software Metrics
    Sultana, Kazi Zakia
    PROCEEDINGS OF THE 2017 32ND IEEE/ACM INTERNATIONAL CONFERENCE ON AUTOMATED SOFTWARE ENGINEERING (ASE'17), 2017, : 1022 - 1025
  • [5] Machine learning techniques for software vulnerability prediction: a comparative study
    Jabeen, Gul
    Rahim, Sabit
    Afzal, Wasif
    Khan, Dawar
    Khan, Aftab Ahmed
    Hussain, Zahid
    Bibi, Tehmina
    APPLIED INTELLIGENCE, 2022, 52 (15) : 17614 - 17635
  • [6] Machine learning techniques for software vulnerability prediction: a comparative study
    Gul Jabeen
    Sabit Rahim
    Wasif Afzal
    Dawar Khan
    Aftab Ahmed Khan
    Zahid Hussain
    Tehmina Bibi
    Applied Intelligence, 2022, 52 : 17614 - 17635
  • [7] Text mining based an automatic model for software vulnerability severity prediction
    Malhotra, Ruchika
    Vidushi
    INTERNATIONAL JOURNAL OF SYSTEM ASSURANCE ENGINEERING AND MANAGEMENT, 2024, 15 (08) : 3706 - 3724
  • [8] Variables are a Curse in Software Vulnerability Prediction
    Groppe, Jinghua
    Groppe, Sven
    Moeller, Ralf
    DATABASE AND EXPERT SYSTEMS APPLICATIONS, DEXA 2023, PT I, 2023, 14146 : 516 - 521
  • [9] Are Latent Vulnerabilities Hidden Gems for Software Vulnerability Prediction? An Empirical Study
    Triet Huynh Minh Le
    Du, Xiaoning
    Babar, M. Ali
    2024 IEEE/ACM 21ST INTERNATIONAL CONFERENCE ON MINING SOFTWARE REPOSITORIES, MSR, 2024, : 716 - 727
  • [10] Vulnerability Scrying Method for Software Vulnerability Discovery Prediction Without a Vulnerability Database
    Rahimi, Sanaz
    Zargham, Mehdi
    IEEE TRANSACTIONS ON RELIABILITY, 2013, 62 (02) : 395 - 407
12345