Refining Traceability Links Between Vulnerability and Software Component in a Vulnerability Knowledge Graph

“…For searching specific vulnerabilities or weaknesses from software repositories, simple keyword searches based on CVE and CWE identifiers seem more robust. These commonly used [4,13,31] domain-specific searches could be augmented by the information retrieval techniques [5], however. In other words: it might be possible to prefer the regular expression searches as a primary retrieval technique and use the information retrieval techniques as a secondary method for retrieving additional content not captured by the keyword-based searches.…”

“…1), web crawling could be used to gather a truly massive dataset for text mining. Recent work [4] shows also some promise for web crawling approaches. But the larger the datasets, the coarser the mappings, and the bigger the validity concerns.…”

“…As is typical in vulnerability tracking [4,21,30], the Snyk database contains first-order and (online) second-order relations. As illustrated in Fig.…”

“…A typical way to tackle the issue is to compare text mining results against labels made by human experts [3]. The same applies in the vulnerability context [4,27]. However, the approach adopted takes a different path: the text mining results are compared against simple but relatively robust regular expression searches.…”

Toward Validation of Textual Information Retrieval Techniques for Software Weaknesses

“…For searching specific vulnerabilities or weaknesses from software repositories, simple keyword searches based on CVE and CWE identifiers seem more robust. These commonly used [4,13,31] domain-specific searches could be augmented by the information retrieval techniques [5], however. In other words: it might be possible to prefer the regular expression searches as a primary retrieval technique and use the information retrieval techniques as a secondary method for retrieving additional content not captured by the keyword-based searches.…”

“…1), web crawling could be used to gather a truly massive dataset for text mining. Recent work [4] shows also some promise for web crawling approaches. But the larger the datasets, the coarser the mappings, and the bigger the validity concerns.…”

“…As is typical in vulnerability tracking [4,21,30], the Snyk database contains first-order and (online) second-order relations. As illustrated in Fig.…”

“…A typical way to tackle the issue is to compare text mining results against labels made by human experts [3]. The same applies in the vulnerability context [4,27]. However, the approach adopted takes a different path: the text mining results are compared against simple but relatively robust regular expression searches.…”

Toward Validation of Textual Information Retrieval Techniques for Software Weaknesses

“…Just as we are concerned with the vulnerability domain, Syed conceptualized an ontological representation that integrates social media intelligence with official information for the purpose of vulnerability management [13]. Du et al developed a software vulnerability ontology to keep track of links between vulnerabilities and software components, applying two ontology matching techniques [14].…”

Critical Relation Path Aggregation-Based Industrial Control Component Exploitable Vulnerability Reasoning

Automatic Analysis and Reasoning Based on Vulnerability Knowledge Graph