TL;DR
This paper introduces a semi-supervised, bootstrapping framework for extracting cybersecurity concepts and relations from text, aiding analysts with minimal labeled data.
Contribution
It presents a novel bootstrapping algorithm with active learning for relation extraction in cybersecurity, requiring minimal initial input and showing promising preliminary results.
Findings
Achieved 82% precision in initial tests
Requires only a few seed relations or patterns
Incorporates active learning to improve accuracy
Abstract
In order to assist security analysts in obtaining information pertaining to their network, such as novel vulnerabilities, exploits, or patches, information retrieval methods tailored to the security domain are needed. As labeled text data is scarce and expensive, we follow developments in semi-supervised Natural Language Processing and implement a bootstrapping algorithm for extracting security entities and their relationships from text. The algorithm requires little input data, specifically, a few relations or patterns (heuristics for identifying relations), and incorporates an active learning component which queries the user on the most important decisions to prevent drifting from the desired relations. Preliminary testing on a small corpus shows promising results, obtaining precision of .82.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Code & Models
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
