Automatic event graph construction method and device for multi-source vulnerability information

Assignee

• YANGZHOU UNIVERSITY · CN

Inventors

• Ying Wei · Shanghai, CN
• Xiaobing Sun · Tianjin, CN
• Lili Bo · 安丰镇, CN
• Bin Li · Beijing, CN
• Xingqi Cheng · Suzhou, CN

Key dates

Classification

• Technology area (CPC Y)Emerging Cross-Sectional Technologies
• CPC primaryY02D10/00
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

Provided is an automatic event graph construction method for multi-source vulnerability information. The method includes the following steps. A vulnerability report is crawled from a vulnerability database, a cause of vulnerability is taken as an event trigger word, and a vulnerability type is determined through the cause of vulnerability. An attacker, consequence, location and other information in a description are identified by named-entity recognition, and information completion is performed. An explicit relation between events is extracted by using text information, an implicit relation between events is extracted by using text similarity, and vulnerability-related code representation is performed. Obtained vulnerability event information is visualized into an event graph through a visualization tool.