Vul-Mirror: A Few-Shot Learning Method for Discovering Vulnerable Code Clone

Authors

DOI:

https://doi.org/10.4108/eai.13-7-2018.165275

Keywords:

Vulnerability, few-shot learning, code clone, distance-metric

Abstract

It is quite common for reusing code in soft development, which may lead to the wide spread of the vulnerability, so automatic detection of vulnerable code clone is becoming more and more important. However, the existing solutions either cannot automatically extract the characteristics of the vulnerable codes or cannot select different algorithms according to different codes, which results in low detection accuracy. In this paper, we consider the identification of vulnerable code clone as a code recognition task and propose a method named Vul-Mirror based on a few-shot learning model for discovering clone vulnerable codes. It can not only automatically extract features of vulnerabilities, but also use the network to measure similarity. The results of experiments on open-source projects of five operating systems show that the accuracy of Vul-Mirror is 95.7%, and its performance is better than the state-of-the-art methods.

Downloads

Published

10-06-2020

How to Cite

He, Y. ., Wang, W. ., Sun, H. ., & Zhang, Y. (2020). Vul-Mirror: A Few-Shot Learning Method for Discovering Vulnerable Code Clone. EAI Endorsed Transactions on Security and Safety, 7(23), e4. https://doi.org/10.4108/eai.13-7-2018.165275

Issue

Vol. 7 No. 23 (2020): EAI Endorsed Transactions on Security and Safety

Section

Research article

License

Copyright (c) 2022 EAI Endorsed Transactions on Security and Safety

Creative Commons License

This work is licensed under a Creative Commons Attribution 3.0 Unported License.

This is an open-access article distributed under the terms of the Creative Commons Attribution CC BY 3.0 license, which permits unlimited use, distribution, and reproduction in any medium so long as the original work is properly cited.

Funding data