1. 毕业设计(论文)的内容和要求
2017年勒索病毒席卷全球,造成直接经济损失就达上百万美元。
软件开发人员不得不将软件安全漏洞问题列为重点研究对象。
但目前针对软件漏洞(特别是安全漏洞)的预测技术仍不完善,一方面受制于安全漏洞缺陷数据集的大量匮乏,另一方面由于代码表示仍然是一个开放课题,使用传统软件度量特征不能够精确表示程序代码。
2. 参考文献
[1]周志华.机器学习[M].清华大学出版社,2016. [2]吴世忠.软件漏洞分析技术[M].科学出版社,2014. [3]李珍,邹德清,王泽丽,金海.面向源代码的软件漏洞静态检测综述[J].网络与信息安全学报,2019,5(01):1-14. [4]戎宇.基于机器学习的二进制软件漏洞挖掘技术研究[D].北京邮电大学,2019. [5]蔡军,邹鹏,熊达鹏,何骏.结合静态分析与动态符号执行的软件漏洞检测方法[J].计算机工程与科学,2016,38(12):2536-2541. [6] Jrgen Schmidhuber. Deep learning in neural networks: An overview. Neural Networks 61: 85-117 (2015). [7] Geoffrey E. Hinton, Simon Osindero, Yee Whye The. A Fast Learning Algorithm for Deep Belief Nets. Neural Computation 18(7): 1527-1554 (2006). [8] Yann LeCun, Yoshua Bengio, Geoffrey E. Hinton. Deep learning. Nature 521(7553): 436-444 (2015). [9] Patrick Kwaku Kudjo, Jinfu Chen. A cost-effective strategy for software vulnerability prediction based on bellwether analysis. ISSTA 2019: 424-427. [10] Christopher Theisen, Laurie Williams. Better together: Comparing vulnerability prediction models. Information Software Technology 119 (2020). [11] Kazi Zakia Sultana, Byron J. Williams, Amiangshu Bosu. A Comparison of Nano-Patterns vs. Software Metrics in Vulnerability Prediction. APSEC 2018: 355-364. [12] Sayem Mohammad Imtiaz, Tanmay Bhowmik. Towards data-driven vulnerability prediction for requirements. ESEC/SIGSOFT FSE 2018: 744-748. [13] Kazi Zakia Sultana. Towards a software vulnerability prediction model using traceable code patterns and software metrics. ASE 2017: 1022-1025. [14] Matthieu Jimenez, Mike Papadakis, Yves Le Traon. Vulnerability Prediction Models: A Case Study on the Linux Kernel. SCAM 2016: 1-10.
