IDENTIFYING SECURITY EVENTS IN PROGRAMMING CODE FOR LOGGING

    公开(公告)号:US20240045955A1

    公开(公告)日:2024-02-08

    申请号:US17880385

    申请日:2022-08-03

    Applicant: SAP SE

    CPC classification number: G06F21/563 G06F21/552 G06N20/00 G06F2221/033

    Abstract: A trained machine learning model can determine whether a portion of programming code contains a security event. The determination can be included in a security assessment. The category of security event can also be determined. During training, observed portions of programming code labeled according to whether they contain a security event and the category of security event can be tokenized. Vectors can be generated from the tokens. The machine learning model can generate a new vector for an incoming portion of programming code and compare against combined vectors for the observed portions of programming code. A security assessment can indicate whether the incoming portion of programming code contains a security event, the category of the event, or both. For training purposes, security logging statements can be removed from training code.

Patent Agency Ranking