Abstract
Recently, deep learning techniques have garnered substantial attention for their ability to identify vulnerable code patterns accurately. However, current state-of-the-art deep learning models, such as Convolutional Neural Networks (CNN), and Long Short-Term Memories (LSTMs) require substantial computational resources. This results in a level of overhead that makes their implementation unfeasible for deployment in realtime settings. This study presents a novel transformer-based vulnerability detection framework, referred to as VulDetect, which is achieved through the fine-tuning of a pretrained large language model, (GPT) on various benchmark datasets of vulnerable code. Our empirical findings indicate that our framework is capable of identifying vulnerable software code with an accuracy of up to 92.65%. Our proposed technique outperforms SyseVR and VuIDeBERT, two state-of-the-art vulnerability detection techniques.
Original language | English |
---|---|
Title of host publication | 2023 IEEE International Conference on Cyber Security and Resilience (CSR) |
Publisher | Institute of Electrical and Electronics Engineers Inc. |
Number of pages | 6 |
ISBN (Electronic) | 9798350311709 |
ISBN (Print) | 9798350311716 |
DOIs | |
Publication status | Published - 28 Aug 2023 |
Event | 3rd IEEE International Conference on Cyber Security and Resilience, CSR 2023 - Hybrid, Venice, Italy Duration: 31 Jul 2023 → 2 Aug 2023 |
Conference
Conference | 3rd IEEE International Conference on Cyber Security and Resilience, CSR 2023 |
---|---|
Country/Territory | Italy |
City | Hybrid, Venice |
Period | 31/07/23 → 2/08/23 |