Saudi cloud infrastructure: a security analysis

Rajeh, Wahid; Jin, Hai; Zou, Deqing

doi:10.1007/s11432-016-0322-7

Cited by 5 publications

(2 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…M OST cyber attacks are caused by the exploitation of one or multiple vulnerabilities [1], [2]. It is unfortunate that vulnerabilities are inevitable, for many reasons (e.g., software complexity, steady growth in internet complexity [3]). Given that vulnerabilities cannot be prevented, an alternate defense approach is to detect and patch vulnerabilities sooner rather than later, leading to the field of vulnerability detection.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

μVulDeePecker: A Deep Learning-Based System for Multiclass Vulnerability Detection

Zou

Wang

et al. 2019

IEEE Trans. Dependable and Secure Comput.

Self Cite

150

View full text Add to dashboard Cite

Fine-grained software vulnerability detection is an important and challenging problem. Ideally, a detection system (or detector) not only should be able to detect whether or not a program contains vulnerabilities, but also should be able to pinpoint the type of a vulnerability in question. Existing vulnerability detection methods based on deep learning can detect the presence of vulnerabilities (i.e., addressing the binary classification or detection problem), but cannot pinpoint types of vulnerabilities (i.e., incapable of addressing multiclass classification). In this paper, we propose the first deep learning-based system for multiclass vulnerability detection, dubbed µVulDeePecker. The key insight underlying µVulDeePecker is the concept of code attention, which can capture information that can help pinpoint types of vulnerabilities, even when the samples are small. For this purpose, we create a dataset from scratch and use it to evaluate the effectiveness of µVulDeePecker. Experimental results show that µVulDeePecker is effective for multiclass vulnerability detection and that accommodating control-dependence (other than data-dependence) can lead to higher detection capabilities.

show abstract

Section: Introductionmentioning

confidence: 99%

“…Algorithm 1 elaborates Step I. 3. Consider a library/API function call f vi made in a statement p v , which is represented as a node n in the SDG in question.…”

mentioning

confidence: 99%