基于双注意力机制和改进对抗训练的漏洞分类方法  

作　　者：杨尽能 李汶珊 何俊江 周绍鸿 李涛 王运鹏 Yang Jinneng;Li Wenshan;He Junjiang;Zhou Shaohong;Li Tao;Wang Yunpeng(School of Cyber Science&Engineering,Sichuan University,Chengdu 610207,China;School of Cyber Science&Engineering,Chengdu University of Information Technology,Chengdu 610225,China;Smart Rongcheng Operation Center,Xindu District,Chengdu 610095,China)

机构地区：[1]四川大学网络空间安全学院,成都610207 [2]成都信息工程大学网络空间安全学院,成都610225 [3]四川省成都市新都区智慧蓉城运行中心,成都610095

出　　处：《计算机应用研究》2024年第11期3447-3454,共8页Application Research of Computers

基　　金：国家重点研发计划资助项目(2020YFB1805400);国家自然科学基金资助项目(62032002,62101358);四川省科技计划重点研发项目(2023YFG0294);四川省自然科学青年基金资助项目(2023NSFSC1395)。

摘　　要：漏洞报告在网络安全中发挥着重要作用,大量且不断增加的漏洞对漏洞分类的效率和准确性提出了巨大挑战。为了缓解漏洞分类深度学习模型无法关注重要特征和容易陷入过拟合的问题,提出了一种新颖的基于双注意力机制和改进对抗训练的漏洞分类方法。首先,提出TextCNN-DA(text convolutional neural network with double attention)模型,将空间注意力和通道注意力机制与TextCNN结合,以更好地关注到重要特征。然后,提出SWV-FGM (single word vector-fast gradient method)算法,对模型进行对抗训练,进而提高模型的鲁棒性和泛化性。在漏洞数据集上与其他基线算法进行了对比,并且对不同漏洞类型数据的表现进行了具体分析,该方法在accuracy、macro-F_1等多项指标上都有更良好的表现,能够更好地完成漏洞分类任务。Vulnerability reports play a pivotal role in cybersecurity,and the ever-growing number of vulnerabilities challenges the efficiency and accuracy of vulnerability classification.To alleviate issues with deep learning models in vulnerability classification,which often fail to focus on significant features and are prone to overfitting,this paper introduced a novel vulnerability classification approach based on a double attention mechanism and improved adversarial training.Firstly,this paper proposed the TextCNN-DA model,which augmented the conventional TextCNN with spatial and channel attention mechanisms to enhance focus on pertinent features.Furthermore,this paper introduced the SWV-FGM algorithm for adversarial training to increase the robustness and generalization of the model.Comparative analysis with other baseline algorithms on a vulnerability dataset,and specific performance evaluation across different vulnerability types,show that the proposed method outperforms in several key metrics such as accuracy and macro-F 1,effectively advancing vulnerability classification tasks.

关 键 词：网络安全 漏洞分类 注意力机制 对抗训练 

分 类 号：TP319[自动化与计算机技术—计算机软件与理论]