we propose an effective approach to obtain software security vulnerabilities in web with vertical search technique in this paper. We use a keyword-trainer to get domain keywords in software security domain. Then the web page filter is designed after analyzing the obtained domain keywords and the structure of the URL topology. Finally, we design a vertical search crawler based on the webpage filter to search for the information of software security vulnerabilities in Web. This approach effectively discovers and digs out the information of software security vulnerabilities presenting in Web. It helps provides the primary knowledge and information for constructing security-knowledge database and analyze the vulnerabilities of software.
In recent years, the security of software becomes one significant feature of software. This paper improves trustworthy software engineering through a knowledge based expert system. We propose the knowledge collection and organization method, and threats analyzing algorithm in detail which are the kernel of the expert system. The software threat information is divided into threat state and exploit, and stored in the knowledge database together with the state production and exploit production representing the relationships between threat state and exploit. The threat analysis calculates the threat degree quantitatively of an application based on this knowledge in a formal way and give security advice to mitigate threats. Our method can reduce the work of an experienced security expert which is time consuming and economic costly, therefore popularizes the trustworthy software engineering.
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.
hi@scite.ai
10624 S. Eastern Ave., Ste. A-614
Henderson, NV 89052, USA
Copyright © 2024 scite LLC. All rights reserved.
Made with 💙 for researchers
Part of the Research Solutions Family.