Security vulnerabilities constitute a big problem for organizations, facing the need for a categorization system to handle these vulnerabilities. Moreover, because the number of new vulnerabilities is constantly increasing, manual categorization of them is a time-consuming task that is prone to errors. An alternative way to analyze vulnerabilities is to automate the process using machine learning (ML) algorithms. The purpose of the current research is to evaluate the performance of different ML algorithms for vulnerability categorization and prioritization based on the data obtained from a Danish company operating in the public transport sector. Overall, the experimental results indicate that the ML models performed effectively, demonstrating that ML is a suitable approach for automated vulnerability analysis. In this work, we present and evaluate two approaches: a hybrid model combining Random Forest (RF) with a Multi-Layer Perceptron (MLP), and a Learning to Rank (LtR) algorithm, LambdaRank. We also examine how class imbalance in real-world vulnerability data can affect model performance, and discuss broader implications of the results for designing more secure, resilient and trustworthy systems in related domains.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Vulnerability Categorization and Prioritization with Machine Learning in the Transport Sector

  • Michela Sbetta,
  • Lejla Islami

摘要

Security vulnerabilities constitute a big problem for organizations, facing the need for a categorization system to handle these vulnerabilities. Moreover, because the number of new vulnerabilities is constantly increasing, manual categorization of them is a time-consuming task that is prone to errors. An alternative way to analyze vulnerabilities is to automate the process using machine learning (ML) algorithms. The purpose of the current research is to evaluate the performance of different ML algorithms for vulnerability categorization and prioritization based on the data obtained from a Danish company operating in the public transport sector. Overall, the experimental results indicate that the ML models performed effectively, demonstrating that ML is a suitable approach for automated vulnerability analysis. In this work, we present and evaluate two approaches: a hybrid model combining Random Forest (RF) with a Multi-Layer Perceptron (MLP), and a Learning to Rank (LtR) algorithm, LambdaRank. We also examine how class imbalance in real-world vulnerability data can affect model performance, and discuss broader implications of the results for designing more secure, resilient and trustworthy systems in related domains.