Machine Learning to Combine Static Analysis Alerts with Software Metrics to Detect Security Vulnerabilities: An Empirical Study.
José D'Abruzzo PereiraJoão R. CamposMarco VieiraPublished in: EDCC (2021)
Keyphrases
- static analysis
- security vulnerabilities
- software metrics
- source code
- machine learning
- intrusion detection
- dynamic analysis
- software systems
- software projects
- feature ranking
- open source
- intrusion detection system
- software quality
- dos attacks
- quality assurance
- software repositories
- feature selection
- regular expressions
- reverse engineering
- security properties
- test suite
- decision trees
- data analysis
- data mining
- network traffic
- computer systems
- high level
- support vector machine