Pattern-based methods for vulnerability discovery
Author:
Abstract
Discovering and eliminating critical vulnerabilities in program code is a key requirement for the secure operation of software systems. This task rests primarily on the shoulders of experienced code analysts who inspect programs in-depth to identify weaknesses. As software systems grow in complexity, while the amount of security critical code increases, supplying these analysts with effective methods to assist in their work becomes even more crucial. Unfortunately, exact methods for automated software analysis are rarely of help in practice, as they do not scale to the complexity of contemporary software projects, and are not designed to benefit from the analyst's domain knowledge. To address this problem, we present pattern-based vulnerability discovery, a novel approach of devising assistant methods for vulnerability discovery that are build with a high focus on practical requirements. The approach combines techniques of static analysis, machine learning, and graph mining to lend imprecise but highly effective methods that allow analysts to benefit from the machine's pattern recognition abilities without sacrificing the strengths of manual analysis.
- Citation
- BibTeX
Yamaguchi, F.,
(2017).
Pattern-based methods for vulnerability discovery.
it - Information Technology: Vol. 59, No. 5.
Berlin:
De Gruyter.
(S. 101).
DOI: 10.1515/itit-2016-0037
@article{mci/Yamaguchi2017,
author = {Yamaguchi, Fabian},
title = {Pattern-based methods for vulnerability discovery},
journal = {it - Information Technology},
volume = {59},
number = {5},
year = {2017},
,
pages = { 101 } ,
doi = { 10.1515/itit-2016-0037 }
}
author = {Yamaguchi, Fabian},
title = {Pattern-based methods for vulnerability discovery},
journal = {it - Information Technology},
volume = {59},
number = {5},
year = {2017},
,
pages = { 101 } ,
doi = { 10.1515/itit-2016-0037 }
}
Sollte hier kein Volltext (PDF) verlinkt sein, dann kann es sein, dass dieser aus verschiedenen Gruenden (z.B. Lizenzen oder Copyright) nur in einer anderen Digital Library verfuegbar ist. Versuchen Sie in diesem Fall einen Zugriff ueber die verlinkte DOI: 10.1515/itit-2016-0037
Haben Sie fehlerhafte Angaben entdeckt? Sagen Sie uns Bescheid: Send Feedback
More Info
ISSN: 1611-2776
xmlui.MetaDataDisplay.field.date: 2017
Language: (en)
Content Type: Text/Journal Article