The current network vulnerability detection model adopts the scanning mode, ignoring the semantic relationship between network nodes, resulting in serious problems of missed and false detection, and low detection accuracy of the model. Model for optimizing the above defects, the Figure convolution neural network based network security holes static detection model. Abstract syntax tree tool is used to build the code attribute graph of network security vulnerability, and the vulnerability is statically analyzed according to the code attribute graph. The vulnerability detection model is constructed by taking the matrix composed of eigenvectors of neighboring basic block and the adjacency matrix of control flow graph as the input of graph convolution network model. In the detection model experiment, the average effective detection rate of the constructed model for vulnerabilities is 96.26%, and the missed detection rate and false detection rate are significantly lower than other methods, and the detection accuracy of the model is better.
|