Predicting Software Vulnerability Using Security Discussion in Social Media

Andrei Queiroz, Brian Keegan, Fredrick Mtenzi

Research output: Contribution to conferencePaperpeer-review

Abstract

Social media has been used as a tool for the dissemination and exchange of information among people in many different areas of knowledge. Computer security is one which utilises social media in this way. Researchers and specialists in security are using social media tools for informing their discoveries on subjects as computer security, software vulnerabilities, exploits, data breach and hacker intrusion. Within the context of social media, Twitter might be the first channel used by security researchers for disclosing novelty (such as exploits or backdoors) in computer security. This paper proposes a Support Vector Machine (SVM) classification model using Twitter posts (tweets) as a source for filtering relevant information related to software vulnerabilities. In this paper, tweets considered relevant will be those alerting about new vulnerabilities in software (being exploited or not), as well as posts alerting software users about security patches and updates. The non- relevant information will be considered as those which have no warning characteristic, i.e.: tweets about opinion, general conversation and topics which have no sense of alert. The proposed model achieved an accuracy of 94% by using simple features such as the frequency of words (unigram and bigram). Reasonable rates of recall and precision into the desirable class values were recorded as, 68% and 46% respectively for the same simple features. This experiment opens a path for future studies about the relationship between how alerts and discoveries in computer security are expressed by the security community on social media posts.
Original languageEnglish
DOIs
Publication statusPublished - 2017
EventEuropean Conference on Information Warfare and Security, ECCWS - Dublin, Ireland
Duration: 1 Jan 201731 Dec 2017

Conference

ConferenceEuropean Conference on Information Warfare and Security, ECCWS
Country/TerritoryIreland
CityDublin
Period1/01/1731/12/17

Keywords

  • social media
  • computer security
  • software vulnerabilities
  • exploits
  • data breach
  • hacker intrusion
  • Twitter
  • Support Vector Machine
  • SVM
  • classification model
  • tweets
  • security patches
  • updates
  • accuracy
  • recall
  • precision

Fingerprint

Dive into the research topics of 'Predicting Software Vulnerability Using Security Discussion in Social Media'. Together they form a unique fingerprint.

Cite this