Recently, deep learning techniques have garnered substantial attention for their ability to identify vulnerable code patterns accurately. However, current state-of-the-art deep learning models, such as Convolutional Neural Networks (CNN), and Long Short-Term Memories (LSTMs) require substantial computational resources. This results in a level of overhead that makes their implementation unfeasible for deployment in realtime settings. This study presents a novel transformer-based vulnerability detection framework, referred to as VulDetect, which is achieved through the fine-tuning of a pre-trained large language model, (GPT) on various benchmark datasets of vulnerable code. Our empirical findings indicate that our framework is capable of identifying vulnerable software code with an accuracy of up to 92.65%. Our proposed technique outperforms SyseVR and VulDeBERT, two state-of-the-art vulnerability detection techniques
翻译:最近,深层次的学习技术因其准确识别脆弱代码模式的能力而引起大量关注。然而,目前最先进的深层次学习模型,如革命神经网络(CNN)和长期短期记忆(LSTMs),需要大量的计算资源。这导致间接费用水平高,使其无法实时部署。本研究报告提出了一个新的基于变压器的脆弱性检测框架,称为Vul探测器,这是通过微调关于脆弱代码各种基准数据集的预先培训的大型语言模型(GPT)实现的。我们的经验调查结果表明,我们的框架能够识别脆弱软件代码,精确度高达92.65%。我们提议的技术超越了SyseVR和VulDeBERT,这是两种最先进的脆弱性检测技术。
相关内容
微信扫码咨询专知VIP会员