A vulnerability analysis and prediction framework. Issue 92 (May 2020)
- Record Type:
- Journal Article
- Title:
- A vulnerability analysis and prediction framework. Issue 92 (May 2020)
- Main Title:
- A vulnerability analysis and prediction framework
- Authors:
- Williams, Mark A.
Barranco, Roberto Camacho
Naim, Sheikh Motahar
Dey, Sumi
Shahriar Hossain, M.
Akbar, Monika - Abstract:
- Abstract: As the world approaches a state of greater dependence on technology, many products face increasing threats from malicious attackers who are attempting to take advantage of vulnerabilities in software design. Most of the known vulnerability information is already aggregated, stored in text format, and readily accessible to the public, making such an aggregated database a prime corpus for analysis using data mining methods. Multiple research efforts have been launched in which individual aspects of such cyber-security corpora were analyzed to create taxonomies, assess vulnerability impact, and improve vulnerability detection. However, minimal effort has been committed to analyze cyber-security corpora to explore correlations between vulnerabilities, to study the evolution of a vulnerability from its genesis, and to predict vulnerabilities using multi-faceted algorithms. In this paper, we propose an integrated data mining framework to automatically describe how vulnerabilities develop over time and detect the evolution of a specific vulnerability. Additionally, our framework has a predictive functionality that can be used to predict specific vulnerabilities or to estimate future appearance probabilities of vulnerability groups. In our framework, we use (1) a Topically Supervised Evolution Model (TSEM) that can discover temporal themes from a text corpus, (2) a diffusion-based storytelling technique that sifts through past vulnerability reports to describe how aAbstract: As the world approaches a state of greater dependence on technology, many products face increasing threats from malicious attackers who are attempting to take advantage of vulnerabilities in software design. Most of the known vulnerability information is already aggregated, stored in text format, and readily accessible to the public, making such an aggregated database a prime corpus for analysis using data mining methods. Multiple research efforts have been launched in which individual aspects of such cyber-security corpora were analyzed to create taxonomies, assess vulnerability impact, and improve vulnerability detection. However, minimal effort has been committed to analyze cyber-security corpora to explore correlations between vulnerabilities, to study the evolution of a vulnerability from its genesis, and to predict vulnerabilities using multi-faceted algorithms. In this paper, we propose an integrated data mining framework to automatically describe how vulnerabilities develop over time and detect the evolution of a specific vulnerability. Additionally, our framework has a predictive functionality that can be used to predict specific vulnerabilities or to estimate future appearance probabilities of vulnerability groups. In our framework, we use (1) a Topically Supervised Evolution Model (TSEM) that can discover temporal themes from a text corpus, (2) a diffusion-based storytelling technique that sifts through past vulnerability reports to describe how a current vulnerability threat evolved, and (3) several prediction models that use features from a cyber-security corpus to predict vulnerabilities. A series of experiments demonstrate that the proposed framework can not only discover evolutionary patterns in today's most pressing vulnerabilities with a high degree of precision, but it can also predict vulnerabilities with impressive accuracy. As case studies, we also explore the development of vulnerabilities in certain products, providing a unique insight into the correspondence between seemingly unrelated vulnerabilities and the impact of that correspondence on overall software security. … (more)
- Is Part Of:
- Computers & security. Issue 92(2020)
- Journal:
- Computers & security
- Issue:
- Issue 92(2020)
- Issue Display:
- Volume 92, Issue 92 (2020)
- Year:
- 2020
- Volume:
- 92
- Issue:
- 92
- Issue Sort Value:
- 2020-0092-0092-0000
- Page Start:
- Page End:
- Publication Date:
- 2020-05
- Subjects:
- Cyber-security -- Vulnerabilities -- Temporal topic modeling -- Storytelling -- Deep neural networks -- Regression
Computer security -- Periodicals
Electronic data processing departments -- Security measures -- Periodicals
005.805 - Journal URLs:
- http://www.sciencedirect.com/science/journal/01674048 ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.cose.2020.101751 ↗
- Languages:
- English
- ISSNs:
- 0167-4048
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 3394.781000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 13519.xml