Automatic vulnerability detection is challenging。 In this paper, we report our in-progress work of vulnerability prediction based on graph neural network (GNN)。 We propose a general GNN-based framework for predicting the vulnerabilities in program functions。 We study the different instantiations of the framework in representative program graph representations, initial node encodings, and GNN learning methods。 The preliminary experimental results on a representative benchmark indicate that the GNN-based method can improve the accuracy and recall rates of vulnerability prediction。
Vulnerability predicationGNNASTCFGCPG
Qi Feng、Chendong Feng、Weijiang Hong
展开 >
College of Computer, National University of Defense Technology, Changsha, China
IEEE International Conference on Software Maintenance and Evolution
Adelaide(AU)
2020 IEEE International Conference on Software Maintenance and Evolution
NETL
IEEE
