An Software Vulnerability Number Prediction Model Based on Micro-Parameters

Nie Chujiang; Zhao Xianfeng; Chen Kai; Han Zhengqing

Journal of Computer Research and Development > 2011 > 48(7): 1279-1287.

Nie Chujiang, Zhao Xianfeng, Chen Kai, Han Zhengqing. An Software Vulnerability Number Prediction Model Based on Micro-Parameters[J]. Journal of Computer Research and Development, 2011, 48(7): 1279-1287.

Citation:

PDF (1407 KB)

An Software Vulnerability Number Prediction Model Based on Micro-Parameters

1(State Key Laboratory of Information Security(Institute of Software, Chinese Academy of Sciences), Beijing 100190) 2(State Key Laboratory of Information Security(Graduate University of Chinese Academy of Sciences), Beijing 100049) 3(Institute of Computing Technology of Northern Jiaotong University, Beijing 100029)

More Information

Published Date: July 14, 2011

Graphical Abstract

Abstract

Abstract

As the cost caused by software vulnerabilities keeps increasing, people pay more and more attention to the researches on the vulnerability. Although discovering vulnerability is difficult because of the defect of vulnerability analysis, to predict the number of vulnerabilities is very useful in some domain, such as information security assessment. At present, the main methods to estimate the density of the vulnerabilities focus on the macro level, but they can not reflect the essential of vulnerability. A prediction model based on micro-parameter is proposed to predict the number of vulnerability with the micro-parameters of software, and it extracts the typical micro-parameters from some software series for the purpose of discovering the relationship between the vulnerability number and micro-parameters. With the hypothesis of vulnerability inheriting, the prediction model abstracts the micro-parameters from software and tries to find a linear relationship between the vulnerability number and some micro-parameters. This model also gives a method to predict the vulnerability number of software with its micro-parameters and the vulnerability number of its previous versions. This method is verified with 7 software series, and the results show the prediction model is effective.
- vulnerability predicts,
- software analysis,
- inherited vulnerability,
- history vulnerability,
- microscopic parameters

FullText(HTML)

References (0)

[1]	Li Han, Yan Mingyu, Lü Zhengyang, Li Wenming, Ye Xiaochun, Fan Dongrui, Tang Zhimin. Survey on Graph Neural Network Acceleration Architectures[J]. Journal of Computer Research and Development, 2021, 58(6): 1204-1229. DOI: 10.7544/issn1000-1239.2021.20210166
[2]	Zhang Chao, Li Deyu. Interval-Valued Hesitant Fuzzy Graphs Decision Making with Correlations and Prioritization Relationships[J]. Journal of Computer Research and Development, 2019, 56(11): 2438-2447. DOI: 10.7544/issn1000-1239.2019.20180314
[3]	Huang Tiejun, Yu Zhaofei, Liu Yijun. Brain-like Machine: Thought and Architecture[J]. Journal of Computer Research and Development, 2019, 56(6): 1135-1148. DOI: 10.7544/issn1000-1239.2019.20190240
[4]	Xu Zhiwei, Zeng Chen, Chao Lu, Peng Xiaohui. Zone-Oriented Architecture: An Architectural Style for Smart Web of Everything[J]. Journal of Computer Research and Development, 2019, 56(1): 90-102. DOI: 10.7544/issn1000-1239.2019.20180775
[5]	Zhong Shan, Liu Quan, Fu Qiming, Zhang Zongzhang, Zhu Fei, Gong Shengrong. A Heuristic Dyna Optimizing Algorithm Using Approximate Model Representation[J]. Journal of Computer Research and Development, 2015, 52(12): 2764-2775. DOI: 10.7544/issn1000-1239.2015.20148160
[6]	Jin Wenbing, Shi Feng, Zuo Qi, Zhang Yang. Study of Ahead Branch Prediction Architecture and Algorithm[J]. Journal of Computer Research and Development, 2013, 50(10): 2228-2238.
[7]	Zhou Xinyun, Li Zhi, Li Liqun, Sun Limin. An Architecture of Mobile Delay Tolerant Networks and Its Application[J]. Journal of Computer Research and Development, 2012, 49(3): 518-528.
[8]	Lu Xiaoyi, Lin Jian, Zha Li. Architecture and Key Technologies of LingCloud[J]. Journal of Computer Research and Development, 2011, 48(7): 1111-1122.
[9]	Li Zusong, Xu Xianchao, Hu Weiwu, Tang Zhimin. Research on Simultaneous Multi-Microthreading Architecture[J]. Journal of Computer Research and Development, 2007, 44(5): 768-774.
[10]	Wang Wei, Han Yinhe, Hu Yu, Li Xiaowei, Zhang Yousheng. An Effective Low-Power Scan Architecture—PowerCut[J]. Journal of Computer Research and Development, 2007, 44(3).