Abstract

We present the DeeDP system for automatic vulnerabilities detection and patch providing. DeeDP allows to detect vulnerabilities in C/C++ source code and generate patch for fixing the detected issue. This system uses deep learning methods to organize rules for deciding whether a code fragment is vulnerable. Patch generation processes can be performed based on neural network and rule-based approaches. The system uses the abstract syntax tree (AST) representations of the source code fragments.We have tested effectiveness of our approach on different open source projects. For example, Microsoft/Terminal (https://github.com/microsoft/Terminal) was analyzed with DeeDP: our system detected security issue and generated patch which was successfully approved and applied by Microsoft maintainers.

Highlights

  • There are many cyber attacks which are rooted in software vulnerabilities

  • Prevention of software products compromising is related to application of different techniques e.g. Microsoft Security Development Lifecycle (SDL) and deep software analysis on early stages of development process

  • Is based on deep learning approach [1] for extraction of GenProg, AE and RSRepair use various search algovulnerable fragments of code represented as abstract syntax tree (AST) [2] rithms

Read more

Summary

Introduction

There are many cyber attacks which are rooted in software vulnerabilities. Prevention of software products compromising is related to application of different techniques e.g. Microsoft Security Development Lifecycle (SDL) and deep software analysis on early stages of development process. Patches are generated by applying fixed patterns that are written by a person based on the generalization of the rules to correct common vulnerabilities. Training neural network will be supervised, based on collected samples from existed open source repositories with detected weaknesses and after patch-fix from contributor.

Results
Conclusion
Full Text
Published version (Free)

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Representation vs. Model: What Matters Most for Source Code Vulnerability Detection
Yuan Ge ... Abubakar Omari Abdallah Semasaba
-
Yuan Ge, et. al.Yuan Ge ... Abubakar Omari Abdallah Semasaba
01 Mar 2021
An empirical evaluation of deep learning‐based source code vulnerability detection: Representation versus models
Yuan Ge ... Samuel Akwasi Agyemang
Journal of Software: Evolution and Process | VOL. 35
Yuan Ge, et. al.Yuan Ge ... Samuel Akwasi Agyemang
20 Jan 2022
Deep learning based automatic software defects detection framework
Dmytro Likhomanov ... Artem Chrenousov
Theoretical and Applied Cybersecurity | VOL. 1
Dmytro Likhomanov, et. al.Dmytro Likhomanov ... Artem Chrenousov
29 May 2019
Efficient Vulnerability Detection based on abstract syntax tree and Deep Learning
Yuqing Zhang ... Hongyu Sun
-
Yuqing Zhang, et. al.Yuqing Zhang ... Hongyu Sun
01 Jul 2020
View more papers

More From: Theoretical and Applied Cybersecurity

Paper Title
Journal
Date
Author
Cryptanalysis of the «Vershyna» digital signature algorithm
Yuliia Lytvynenko ... Andrii Fesenko
Theoretical and Applied Cybersecurity | VOL. 5
Yuliia Lytvynenko, et. al.Yuliia Lytvynenko ... Andrii Fesenko
06 Nov 2023
Detection of Unauthorized Actions in Networks Using Wavelet Analysis
Pavlo Hrynchenko
Theoretical and Applied Cybersecurity | VOL. 5
Pavlo HrynchenkoPavlo Hrynchenko
06 Nov 2023
risk management of critical information infrastructure: threats-vulnerabilities-consequences
Vladyslav Kuz
Theoretical and Applied Cybersecurity | VOL. 5
Vladyslav KuzVladyslav Kuz
06 Nov 2023
Vulnerability classification using Q-analysis
Viktoriia Igorivna Polutsyhanova
Theoretical and Applied Cybersecurity | VOL. 5
Viktoriia Igorivna PolutsyhanovaViktoriia Igorivna Polutsyhanova
06 Nov 2023
View more papers