@inproceedings{69c676ee36434c00b7ef5b847e08a16c,
title = "An automatic vulnerabilities classification method based on their relevance",
abstract = "In this paper, we focus on the need for mining the relevance of computer security vulnerabilities and propose an automatic vulnerability classification method using the relevance. Based on the theory of privilege elevation, we set five privilege levels and use the concept of Prerequisite Privilege (PRE) and Result Privilege (RES) of each vulnerability to illustrate the change of an attacker{\textquoteright}s privilege due to the vulnerabilities exploited by the attacker. We design two classifiers - one is based on TFIDF and the other is based on Naive Bayes theory - to automatically find out the PRE and RES of each vulnerability after trained by more than 7000 training data. Finally, we fuse these two classifiers and the experiment results on Linux vulnerability data show that this method has high accuracy and efficiency. Using this method, we successfully exploit the category of each new vulnerability and analyze the relevance between different vulnerabilities.",
keywords = "Classifier fusion, Relevance, Security vulnerability",
author = "Hao Zhang and Kun Lv and Changzhen Hu",
note = "Publisher Copyright: {\textcopyright} Springer International Publishing AG 2017.; 11th International Conference on Network and System Security, NSS 2017 ; Conference date: 21-08-2017 Through 23-08-2017",
year = "2017",
doi = "10.1007/978-3-319-64701-2_35",
language = "English",
isbn = "9783319647005",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer Verlag",
pages = "475--485",
editor = "Zheng Yan and Refik Molva and Wojciech Mazurczyk and Raimo Kantola",
booktitle = "Network and System Security - 11th International Conference, NSS 2017, Proceedings",
address = "Germany",
}