상세 보기
- Choi, Myoung-oh;
- Shin, Mincheol;
- Kang, Hyonjun;
- Man, Ka Lok;
- Kim, Mucheol
WEB OF SCIENCE
0SCOPUS
0초록
The escalating complexity and heterogeneity of modern energy systems—particularly in smart grid and distributed energy infrastructures—has intensified the need for intelligent and scalable security vulnerability classification. To address this challenge, we propose Vulnerability2Vec, a graph-embedding-based framework designed to enhance the automated classification of security vulnerabilities that threaten energy system resilience. Vulnerability2Vec converts Common Vulnerabilities and Exposures (CVE) text explanations to semantic graphs, where nodes represent CVE IDs and key terms (nouns, verbs, and adjectives), and edges capture co-occurrence relationships. Then, it embeds the semantic graphs to a low-dimensional vector space with random-walk sampling and skip-gram with negative sampling. It is possible to identify the latent relationships and structural patterns that traditional sparse vector methods fail to capture. Experimental results demonstrate a classification accuracy of up to 80%, significantly outperforming baseline methods. This approach offers a theoretical basis for classifying vulnerability types as structured semantic patterns in complex software systems. The proposed method models the semantic structure of vulnerabilities, providing a theoretical foundation for their classification.
키워드
- 제목
- Vulnerability2Vec: A Graph-Embedding Approach for Enhancing Vulnerability Classification
- 저자
- Choi, Myoung-oh; Shin, Mincheol; Kang, Hyonjun; Man, Ka Lok; Kim, Mucheol
- 발행일
- 2025-09
- 유형
- Article; Early Access
- 권
- 144
- 호
- 3
- 페이지
- 3191 ~ 3212