Static Analysis of Source Code Vulnerability Using Machine Learning Techniques: A Survey
| Title | Static Analysis of Source Code Vulnerability Using Machine Learning Techniques: A Survey |
| Publication Type | Conference Paper |
| Year of Publication | 2021 |
| Authors | Wang, Jingjing, Huang, Minhuan, Nie, Yuanping, Li, Jin |
| Conference Name | 2021 4th International Conference on Artificial Intelligence and Big Data (ICAIBD) |
| Date Published | may |
| Keywords | Analytical models, composability, feature extraction, Human Behavior, machine learning, machine learning algorithms, Market research, Predictive models, pubcrawl, resilience, Resiliency, software security, source code vulnerability, static analysis, static code analysis |
| Abstract | With the rapid increase of practical problem complexity and code scale, the threat of software security is increasingly serious. Consequently, it is crucial to pay attention to the analysis of software source code vulnerability in the development stage and take efficient measures to detect the vulnerability as soon as possible. Machine learning techniques have made remarkable achievements in various fields. However, the application of machine learning in the domain of vulnerability static analysis is still in its infancy and the characteristics and performance of diverse methods are quite different. In this survey, we focus on a source code-oriented static vulnerability analysis method using machine learning techniques. We review the studies on source code vulnerability analysis based on machine learning in the past decade. We systematically summarize the development trends and different technical characteristics in this field from the perspectives of the intermediate representation of source code and vulnerability prediction model and put forward several feasible research directions in the future according to the limitations of the current approaches. |
| DOI | 10.1109/ICAIBD51990.2021.9459075 |
| Citation Key | wang_static_2021 |