Extracting Information about Security Vulnerabilities from Web Text

The Web is an important source of information about computer security threats, vulnerabilities and cyber-attacks. We present initial work on developing a framework to detect and extract information about vulnerabilities and attacks from Web text. Our prototype system uses Wikitology, a general purpo...

Full description

Saved in:
Bibliographic Details
Published in2011 IEEE/WIC/ACM International Conferences on Web Intelligence and Intelligent Agent Technology Vol. 3; pp. 257 - 260
Main Authors Mulwad, V., Wenjia Li, Joshi, A., Finin, T., Viswanathan, K.
Format Conference Proceeding
LanguageEnglish
Published IEEE 01.08.2011
Subjects
Computer security
Data mining
Electronic publishing
Encyclopedias
entity linking
information extraction
Internet
security
vulnerability
Online AccessGet full text
ISBN9781457713736
145771373X
DOI10.1109/WI-IAT.2011.26

Cover

More Information
Summary:The Web is an important source of information about computer security threats, vulnerabilities and cyber-attacks. We present initial work on developing a framework to detect and extract information about vulnerabilities and attacks from Web text. Our prototype system uses Wikitology, a general purpose knowledge base derived from Wikipedia, to extract concepts that describe specific vulnerabilities and attacks, map them to related concepts from DBpedia and generate machine understandable assertions. Such a framework will be useful in adding structure to already existing vulnerability descriptions as well as detecting new ones. We evaluate our approach against vulnerability descriptions from the National Vulnerability Database. Our results suggest that it can be useful in monitoring streams of text from social media or chat rooms to identify potential new attacks and vulnerabilities or to collect data on the spread and volume of existing ones.
ISBN:9781457713736
145771373X
DOI:10.1109/WI-IAT.2011.26