User: Guest  Login
Title:

Automated Identification of Security-Relevant Configuration Settings Using NLP

Document type:
Konferenzbeitrag
Contribution type:
Textbeitrag / Aufsatz
Author(s):
Stöckle, Patrick; Wasserer, Theresa; Grobauer, Bernd; Pretschner, Alexander
Abstract:
To secure computer infrastructure, we need to configure all security-relevant settings. We need security experts to identify security-relevant settings, but this process is time-consuming and expensive. Our proposed solution uses state-of-the-art natural language processing to classify settings as security-relevant based on their description. Our evaluation shows that our trained classifiers do not perform well enough to replace the human security experts but can help them classify the settin...     »
Keywords:
Hardening; Security Configuration; Natural Language Processing
Dewey Decimal Classification:
000 Informatik, Wissen, Systeme
Book / Congress title:
Proceedings of the 37th IEEE/ACM International Conference on Automated Software Engineering
Organization:
IEEE/ACM
Date of congress:
2022-10-10--2022-10-14
Publisher:
Association for Computing Machinery
Publisher address:
New York City, NY, USA
Year:
2022
Pages:
5
E-ISBN:
978-1-4503-9475-8/22/10
Bookseries title:
ASE '22
Reviewed:
ja
Language:
en
Publication format:
WWW
WWW:
https://mediatum.ub.tum.de/doc/1685448/1685448.pdf
TUM Institution:
Chair of Software and Systems Engineering / TUM School of Computation, Information and Technology
Copyright statement:
Format:
Text
 BibTeX