Efficient Feature Selection for Static Analysis Vulnerability Prediction

Filus, Katarzyna; Boryszko, Pawel; Domańska, Joanna; Siavvas, Miltiadis; Gelenbe, Erol

doi:10.3390/s21041133

Cited by 17 publications

(4 citation statements)

References 43 publications

(70 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The field that started with the need to encrypt data and create secure systems through strong means for security such as passwords, authentication schemes, firewalls and cryptographic keys, has now substantially evolved towards the detection and mitigation of cyberattacks. In addition issues with respect to software's own specific vulnerabilities [23] and the need to detect and mitigate such properties has also become important [23,24,44,88,109,110].…”

Section: Discussionmentioning

confidence: 99%

AI and Quality of Service Driven Attack Detection, Mitigation and Energy Optimization: A Review of Some EU Project Results

Caglayan

2022

Communications in Computer and Information Science

View full text Add to dashboard Cite

This article summarizes briefly the contributions presented in this EuroCyberSecurity Workshop 2021 which is organized as part of the series of International Symposia on Computer and Information Sciences (ISCIS), with the support of the European Commission funded IoTAC Project, that was held on November and in NIce, France, and sponsored by the Institute of Teoretical and Applied Informatics of the Polish Academy of Sciences. It also summarizes some of the research contributions of several EU Projects including NEMESYS, GHOST, KONFIDO, SDK4ED and IoTAC, primarily with a cybersecurity and Machine Learning orientation. Thus subjects covered include the cybersecurity of Mobile Networks and of the Internet of Things (IoT), the design of IoT Gateways and their performance, the security of networked health systems that provide health services to individuals across the EU Member states, as well as the issues of energy consumption by ICT which are becoming increasingly important, including in the cybersecurity perspective, as we focus increasingly on climate change and the needed transition towards highly reduced emissions. Many of the techniques and results discussed in this article are based either on Machine Learning (ML) methods, or on methods for the performance modeling and optimization of networked and distributed computer systems.

show abstract

Section: Discussionmentioning

confidence: 99%

AI and Quality of Service Driven Attack Detection, Mitigation and Energy Optimization: A Review of Some EU Project Results

Caglayan

2022

Communications in Computer and Information Science

View full text Add to dashboard Cite

show abstract

“…But it has now substantially been revolutionized as a means to detect and mitigate cyberattacks. Software's own specific vulnerabilities [187] have also become critical [176], [188]- [192]. Indeed, static means of Cybersecurity assurance are largely ineffective unless they incorportd real-time methods that can detect and rapidly react to attacks and malicious actions against a system.…”

Section: The Iotac Projectmentioning

confidence: 99%

Review of Some Recent European Cybersecurity Research and Innovation Projects

Caglayan¹

2022

Infocommunications journal

View full text Add to dashboard Cite

This paper reviews research from several EU Projects that have addressed cybersecurity using techniques based on Machine Learning, including the security of Mobile Networks and the Internet of Things (IoT). These research projects have considered IoT Gateways and their design, security and performance, the security of digital health systems that are interconnected across Europe to provide health services to pople who travel through the EU, and related issues of the energy consumption and sustainability in Information and Communication Technologies (ICT) and their cybersecurity. The methods used in much of these research projects are based on Machine Learning both for attack detection and dynamic attack mitigation, as well as performance analysis and measurement techniques based on applied probability models.

show abstract

“…Apart from alert-specific information, we decided to integrate security-related information retrieved from the software project itself. In particular, we applied text mining-based deep learning vulnerability prediction models [25][26][27] (see Section 4), in order to spot the security hot-spots of the software products, i.e., software classes that are likely to contain vulnerabilities. By highlighting the security hot-spots, we expect our approach to consider as more critical those static analysis alerts that belong to the identified hot-spots.…”

Section: Data Collection and Pre-processingmentioning

confidence: 99%

A Self-adaptive Approach for Assessing the Criticality of Security-Related Static Analysis Alerts

Siavvas

Kalouptsoglou

Tsoukalas

et al. 2021

Computational Science and Its Applications – ICCSA 2021

Self Cite

View full text Add to dashboard Cite

Despite the acknowledged ability of automated static analysis to detect software vulnerabilities, its adoption in practice is limited, mainly due to the large number of false alerts (i.e., false positives) that it generates. Although several machine learning-based techniques for assessing the actionability of the produced alerts and for filtering out false positives have been proposed, none of them have demonstrated sufficient results, whereas limited attempts focus on assessing the criticality of the alerts from a security viewpoint. To this end, in the present paper we propose an approach for assessing the criticality of security-related static analysis alerts. In particular, we develop a machine learning-based technique for prioritizing and classifying security-related static analysis alerts based on their criticality, by considering information retrieved from the alerts themselves, vulnerability prediction models, and user feedback. The concept of retraining is also adopted to enable the model to correct itself and adapt to previously unknown software products. The technique has been evaluated through a case study, which revealed its capacity to effectively assess the criticality of alerts of previously unknown projects, as well as its ability to dynamically adapt to the characteristics of the new project and provide more accurate assessments through retraining.

show abstract

Efficient Feature Selection for Static Analysis Vulnerability Prediction

Cited by 17 publications

References 43 publications

AI and Quality of Service Driven Attack Detection, Mitigation and Energy Optimization: A Review of Some EU Project Results

AI and Quality of Service Driven Attack Detection, Mitigation and Energy Optimization: A Review of Some EU Project Results

Review of Some Recent European Cybersecurity Research and Innovation Projects

A Self-adaptive Approach for Assessing the Criticality of Security-Related Static Analysis Alerts

Contact Info

Product

Resources

About