Java vulnerability classification method based on natural language processing and deep forest

The invention discloses a Java vulnerability classification method based on natural language processing and a deep forest, and belongs to the technical field of source code vulnerability mining and classification. The method mainly comprises two aspects of vulnerability source code feature extractio...

Ausführliche Beschreibung

Gespeichert in:

Bibliographische Detailangaben
Hauptverfasser:	DING JIAMAN, FU WEIKANG
Format:	Patent
Sprache:	chi ; eng
Schlagworte:	CALCULATING COMPUTER SYSTEMS BASED ON SPECIFIC COMPUTATIONAL MODELS COMPUTING COUNTING ELECTRIC DIGITAL DATA PROCESSING PHYSICS
Online-Zugang:	Volltext bestellen
Tags:	Tag hinzufügen Keine Tags, Fügen Sie den ersten Tag hinzu!

container_end_page
container_issue
container_start_page
container_title
container_volume
creator	DING JIAMAN FU WEIKANG
description	The invention discloses a Java vulnerability classification method based on natural language processing and a deep forest, and belongs to the technical field of source code vulnerability mining and classification. The method mainly comprises two aspects of vulnerability source code feature extraction and representation and a vulnerability source code classification method. Aiming at the problems of low efficiency and high false alarm rate of a current Java source code static analysis method, a source code is analyzed into an abstract syntax tree, the abstract syntax tree is cut into expression sub-trees through an NLP-based ASTNN coding layer, the expression sub-trees are traversed twice to obtain a statement sequence, and final vector representation of the source code is obtained through multi-granularity scanning. The vector representations are then classified through a cascade forest. An OWASP vulnerability data set is selected as a sample in an experiment, and the effectiveness of the Java source code vul
format	Patent
fullrecord	<record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_CN115630368A</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>CN115630368A</sourcerecordid><originalsourceid>FETCH-epo_espacenet_CN115630368A3</originalsourceid><addsrcrecordid>eNqNi00KwjAUBrtxIeodngcQLMXiVooiLly5lfI1eY2B-BLyU_D2duEBXA0DM8vqecMEmooTjhiss_lDyiElO1qFbL3Qm_PLaxqQWNPsglwiHDmIKTBMIXrF8yGGIJo0c6DRR055XS1GuMSbH1fV9nJ-dNcdB99zClAsnPvuXteHttk37fHU_NN8AUgPPLc</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>Java vulnerability classification method based on natural language processing and deep forest</title><source>esp@cenet</source><creator>DING JIAMAN ; FU WEIKANG</creator><creatorcontrib>DING JIAMAN ; FU WEIKANG</creatorcontrib><description>The invention discloses a Java vulnerability classification method based on natural language processing and a deep forest, and belongs to the technical field of source code vulnerability mining and classification. The method mainly comprises two aspects of vulnerability source code feature extraction and representation and a vulnerability source code classification method. Aiming at the problems of low efficiency and high false alarm rate of a current Java source code static analysis method, a source code is analyzed into an abstract syntax tree, the abstract syntax tree is cut into expression sub-trees through an NLP-based ASTNN coding layer, the expression sub-trees are traversed twice to obtain a statement sequence, and final vector representation of the source code is obtained through multi-granularity scanning. The vector representations are then classified through a cascade forest. An OWASP vulnerability data set is selected as a sample in an experiment, and the effectiveness of the Java source code vul</description><language>chi ; eng</language><subject>CALCULATING ; COMPUTER SYSTEMS BASED ON SPECIFIC COMPUTATIONAL MODELS ; COMPUTING ; COUNTING ; ELECTRIC DIGITAL DATA PROCESSING ; PHYSICS</subject><creationdate>2023</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20230120&DB=EPODOC&CC=CN&NR=115630368A$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,308,780,885,25564,76547</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20230120&DB=EPODOC&CC=CN&NR=115630368A$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>DING JIAMAN</creatorcontrib><creatorcontrib>FU WEIKANG</creatorcontrib><title>Java vulnerability classification method based on natural language processing and deep forest</title><description>The invention discloses a Java vulnerability classification method based on natural language processing and a deep forest, and belongs to the technical field of source code vulnerability mining and classification. The method mainly comprises two aspects of vulnerability source code feature extraction and representation and a vulnerability source code classification method. Aiming at the problems of low efficiency and high false alarm rate of a current Java source code static analysis method, a source code is analyzed into an abstract syntax tree, the abstract syntax tree is cut into expression sub-trees through an NLP-based ASTNN coding layer, the expression sub-trees are traversed twice to obtain a statement sequence, and final vector representation of the source code is obtained through multi-granularity scanning. The vector representations are then classified through a cascade forest. An OWASP vulnerability data set is selected as a sample in an experiment, and the effectiveness of the Java source code vul</description><subject>CALCULATING</subject><subject>COMPUTER SYSTEMS BASED ON SPECIFIC COMPUTATIONAL MODELS</subject><subject>COMPUTING</subject><subject>COUNTING</subject><subject>ELECTRIC DIGITAL DATA PROCESSING</subject><subject>PHYSICS</subject><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2023</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNqNi00KwjAUBrtxIeodngcQLMXiVooiLly5lfI1eY2B-BLyU_D2duEBXA0DM8vqecMEmooTjhiss_lDyiElO1qFbL3Qm_PLaxqQWNPsglwiHDmIKTBMIXrF8yGGIJo0c6DRR055XS1GuMSbH1fV9nJ-dNcdB99zClAsnPvuXteHttk37fHU_NN8AUgPPLc</recordid><startdate>20230120</startdate><enddate>20230120</enddate><creator>DING JIAMAN</creator><creator>FU WEIKANG</creator><scope>EVB</scope></search><sort><creationdate>20230120</creationdate><title>Java vulnerability classification method based on natural language processing and deep forest</title><author>DING JIAMAN ; FU WEIKANG</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_CN115630368A3</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>chi ; eng</language><creationdate>2023</creationdate><topic>CALCULATING</topic><topic>COMPUTER SYSTEMS BASED ON SPECIFIC COMPUTATIONAL MODELS</topic><topic>COMPUTING</topic><topic>COUNTING</topic><topic>ELECTRIC DIGITAL DATA PROCESSING</topic><topic>PHYSICS</topic><toplevel>online_resources</toplevel><creatorcontrib>DING JIAMAN</creatorcontrib><creatorcontrib>FU WEIKANG</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>DING JIAMAN</au><au>FU WEIKANG</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>Java vulnerability classification method based on natural language processing and deep forest</title><date>2023-01-20</date><risdate>2023</risdate><abstract>The invention discloses a Java vulnerability classification method based on natural language processing and a deep forest, and belongs to the technical field of source code vulnerability mining and classification. The method mainly comprises two aspects of vulnerability source code feature extraction and representation and a vulnerability source code classification method. Aiming at the problems of low efficiency and high false alarm rate of a current Java source code static analysis method, a source code is analyzed into an abstract syntax tree, the abstract syntax tree is cut into expression sub-trees through an NLP-based ASTNN coding layer, the expression sub-trees are traversed twice to obtain a statement sequence, and final vector representation of the source code is obtained through multi-granularity scanning. The vector representations are then classified through a cascade forest. An OWASP vulnerability data set is selected as a sample in an experiment, and the effectiveness of the Java source code vul</abstract><oa>free_for_read</oa></addata></record>
fulltext	fulltext_linktorsrc
identifier
ispartof
issn
language	chi ; eng
recordid	cdi_epo_espacenet_CN115630368A
source	esp@cenet
subjects	CALCULATING COMPUTER SYSTEMS BASED ON SPECIFIC COMPUTATIONAL MODELS COMPUTING COUNTING ELECTRIC DIGITAL DATA PROCESSING PHYSICS
title	Java vulnerability classification method based on natural language processing and deep forest
url	https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-04T00%3A22%3A54IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=DING%20JIAMAN&rft.date=2023-01-20&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3ECN115630368A%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true