Vul-Mirror: A Few-Shot Learning Method for Discovering Vulnerable Code Clone

Authors

DOI:

https://doi.org/10.4108/eai.13-7-2018.165275

Keywords:

Vulnerability, few-shot learning, code clone, distance-metric

Abstract

It is quite common for reusing code in soft development, which may lead to the wide spread of the vulnerability, so automatic detection of vulnerable code clone is becoming more and more important. However, the existing solutions either cannot automatically extract the characteristics of the vulnerable codes or cannot select different algorithms according to different codes, which results in low detection accuracy. In this paper, we consider the identification of vulnerable code clone as a code recognition task and propose a method named Vul-Mirror based on a few-shot learning model for discovering clone vulnerable codes. It can not only automatically extract features of vulnerabilities, but also use the network to measure similarity. The results of experiments on open-source projects of five operating systems show that the accuracy of Vul-Mirror is 95.7%, and its performance is better than the state-of-the-art methods.

Downloads

Published

10-06-2020

How to Cite

He, Y. ., Wang, W. ., Sun, H. ., & Zhang, Y. (2020). Vul-Mirror: A Few-Shot Learning Method for Discovering Vulnerable Code Clone. EAI Endorsed Transactions on Security and Safety, 7(23), e4. https://doi.org/10.4108/eai.13-7-2018.165275

Funding data