The Latest in IT Security

Vulnerability Finding Using Machine Learning

20
Apr
2020
Vulnerability Finding Using Machine Learning

image credit: freepik

At Microsoft, 47,000 developers generate nearly 30 thousand bugs a month. These items get stored across over 100 AzureDevOps and GitHub repositories. To better label and prioritize bugs at that scale, we couldn’t just apply more people to the problem. However, large volumes of semi-curated data are perfect for machine learning. Since 2001 Microsoft has collected 13 million work items and bugs. We used that data to develop a process and machine learning model that correctly distinguishes between security and non-security bugs 99 percent of the time and accurately identifies the critical, high priority security bugs, 97 percent of the time.

Related posts:
  1. Researcher Publishes Four Zero-Day Exploits in Three Days
  2. Microsoft Patches Internet Explorer Vulnerability Exploited in Attacks
  3. Attackers Still Finding Plenty of Systems Vulnerable to Bluekeep
  4. Unofficial Patch Released for Recently Disclosed Internet Explorer Zero-Day
  5. Over 22,000 Vulnerabilities Disclosed in 2019: Report

Read More

Tags:  
Written by Schneier
0 Comments
Comments are closed.

Categories

SUNDAY, FEBRUARY 23, 2025
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments