Deep learning based automatic software defects detection framework

Authors

  • Artem Chrenousov Samsung R&D Institute Ukraine, Ukraine
  • Artem Savchenko Samsung R&D Institute Ukraine, Ukraine
  • Serhii Osadchyi Samsung R&D Institute Ukraine, Ukraine
  • Yevhen Kubiuk Samsung R&D Institute Ukraine, Ukraine
  • Yevhen Kostenko Samsung R&D Institute Ukraine, Ukraine
  • Dmytro Likhomanov Samsung R&D Institute Ukraine, Ukraine

DOI:

https://doi.org/10.20535/tacs.2664-29132019.1.169086

Abstract

We present the VulDetect, a source code vulnerability detection system. This system uses deep learning methods to organizate rules for deciding whether a code fragment is vulnerable. This approach is an improvement of the approach proposed in VulDeePecker. The model uses the AST representation of the source code. We compared vulnerability detection results of both systems on the Bitcoin Core project.

Downloads

Published

2019-05-29

Issue

Section

Software code vulnerabilities investigation and secure applications development