Security Trend Analysis with CVE Topic Models – ISSRE 2010

by Stephan Neuhaus, Thomas Zimmermann

We study the vulnerability reports in the Common Vulnerability and Exposures (CVE) database by using topic models on their description texts to find prevalent vulnerability types and new trends semi-automatically. In our study of the 39,393 unique CVEs until the end of 2009, we identify the following trends, given here in the form of a weather forecast:
PHP: declining, with occasional SQL injection.
Buffer Overflows: flattening out after decline.
Format Strings: in steep decline.
SQL Injection and XSS: remaining strong, and rising.
Cross-Site Request Forgery: a sleeping giant perhaps, stirring.
Application Servers: rising steeply.

Download as PDF.

Reference

Stephan Neuhaus, Thomas Zimmermann. Security Trend Analysis with CVE Topic Models. In Proceedings of the 21st IEEE International Symposium on Software Reliability Engineering (ISSRE 2010), San Jose, California, USA, November 2010.

BibTeX Entry

@inproceedings{neuhaus-issre-2010,
    title = "Security Trend Analysis with CVE Topic Models",
    author = "Stephan Neuhaus and Thomas Zimmermann",
    year = "2010",
    month = "November",
    booktitle = "Proceedings of the 21st IEEE International Symposium on Software Reliability Engineering",
    location = "San Jose, California, USA",
}