Advancing Software Vulnerability Scoring: A Statistical Approach with Machine Learning Techniques and GridSearchCV Parameter Tuning

被引:0
|
作者
Birendra Kumar Verma
Ajay Kumar Yadav
机构
[1] Banasthali Vidyapith,
[2] JSS Academy of Technical Education,undefined
关键词
Statistical technique; GridSearchCV; Software vulnerability scoring;
D O I
10.1007/s42979-024-02942-x
中图分类号
学科分类号
摘要
The growing complexity, diversity, and importance of software pose a significant threat to computer system security due to exploitable software vulnerabilities. Important infrastructure systems, including banking, electricity, healthcare, and the military, are at risk of loss due to these vulnerabilities that permit unwanted access. This study investigates statistical features that contribute to improved outcomes, even though existing approaches primarily utilize natural language processing for vulnerability descriptions. We present an innovative scoring method that incorporates six well-known machine learning techniques: Linear Regressor, Decision Tree Regressor, Random Forest Regressor, K Nearest Neighbors Regressor, AdaBoost Regressor, and Support Vector Regressor into its framework. An assessment is conducted on 159,979 vulnerabilities obtained from the National Vulnerability Database using six metrics: explained variance, mean absolute error, mean squared log error, R-squared, root mean squared error, and mean squared error. GridSearchCV and tenfold cross-validation have validated the Random Forest Regressor as superior, yielding an accuracy of 0.9486. This approach demonstrates promise in proactive risk management across multiple sectors, including healthcare, energy, defense, and finance, by integrating machine learning techniques and statistical features.
引用
收藏
相关论文
共 50 条
  • [1] Software security with natural language processing and vulnerability scoring using machine learning approach
    Verma B.K.
    Yadav A.K.
    [J]. Journal of Ambient Intelligence and Humanized Computing, 2024, 15 (04) : 2641 - 2651
  • [2] Survey of Machine Learning for Database Parameter Tuning Techniques
    Jiang, Lulu
    Gao, Jintao
    [J]. Computer Engineering and Applications, 60 (03): : 1 - 16
  • [3] A Machine Learning Approach for Statistical Software Testing
    Baskiotis, Nicolas
    Sebag, Michele
    Gaudel, Marie-Claude
    Gouraud, Sandrine
    [J]. 20TH INTERNATIONAL JOINT CONFERENCE ON ARTIFICIAL INTELLIGENCE, 2007, : 2274 - 2279
  • [4] Addressing software dependability with statistical and machine learning techniques
    Fox, A
    [J]. ICSE 05: 27th International Conference on Software Engineering, Proceedings, 2005, : 8 - 8
  • [5] Machine learning techniques for software vulnerability prediction: a comparative study
    Gul Jabeen
    Sabit Rahim
    Wasif Afzal
    Dawar Khan
    Aftab Ahmed Khan
    Zahid Hussain
    Tehmina Bibi
    [J]. Applied Intelligence, 2022, 52 : 17614 - 17635
  • [6] Machine learning techniques for software vulnerability prediction: a comparative study
    Jabeen, Gul
    Rahim, Sabit
    Afzal, Wasif
    Khan, Dawar
    Khan, Aftab Ahmed
    Hussain, Zahid
    Bibi, Tehmina
    [J]. APPLIED INTELLIGENCE, 2022, 52 (15) : 17614 - 17635
  • [7] Advancing groundwater vulnerability assessment in Bangladesh: a comprehensive machine learning approach
    Raisa, Saima Sekander
    Sarkar, Showmitra Kumar
    Sadiq, Md Ashhab
    [J]. GROUNDWATER FOR SUSTAINABLE DEVELOPMENT, 2024, 25
  • [8] A statistical learning based approach for parameter fine-tuning of metaheuristics
    Calvet, Laura
    Juan, Angel A.
    Serrat, Caries
    Ries, Jana
    [J]. SORT-STATISTICS AND OPERATIONS RESEARCH TRANSACTIONS, 2016, 40 (01) : 201 - 223
  • [9] Stack Ensemble Oriented Parkinson Disease Prediction Using Machine Learning Approaches Utilizing GridSearchCV-Based Hyper Parameter Tuning
    Suroor N.
    Jaiswal A.
    Sachdeva N.
    [J]. Critical Reviews in Biomedical Engineering, 2022, 50 (05) : 39 - 58
  • [10] A Lithology Identification Approach Based on Machine Learning With Evolutionary Parameter Tuning
    Saporetti, Camila Martins
    da Fonseca, Leonardo Goliatt
    Pereira, Egberto
    [J]. IEEE GEOSCIENCE AND REMOTE SENSING LETTERS, 2019, 16 (12) : 1819 - 1823