A Case Study of Large Language Models (ChatGPT and CodeBERT) for Security-Oriented Code Analysis | allinfosecnews.com

May 3, 2024, 4:15 a.m. | Zhilong Wang, Lan Zhang, Chen Cao, Nanqing Luo, Peng Liu

cs.CR updates on arXiv.org arxiv.org

arXiv:2307.12488v4 Announce Type: replace
Abstract: LLMs can be used on code analysis tasks like code review, vulnerabilities analysis and etc. However, the strengths and limitations of adopting these LLMs to the code analysis are still unclear. In this paper, we delve into LLMs' capabilities in security-oriented program analysis, considering perspectives from both attackers and security analysts. We focus on two representative LLMs, ChatGPT and CodeBert, and evaluate their performance in solving typical analytic tasks with varying levels of difficulty. Our …

analysis arxiv can capabilities case chatgpt code code analysis code review cs.ai cs.cr etc language language models large limitations llms review security study vulnerabilities

More from arxiv.org / cs.CR updates on arXiv.org

Dihedral Quantum Codes 1 day, 14 hours ago | arxiv.org

arxiv block class code +9

A Privacy Preserving System for Movie Recommendations Using Federated Learning 1 day, 14 hours ago | arxiv.org

arxiv businesses cs.cr cs.ir +20

VulLibGen: Identifying Vulnerable Third-Party Libraries via Generative Pre-Trained Model 1 day, 14 hours ago | arxiv.org

accelerate advisory arxiv cs.cr +24

Simultaneous Haar Indistinguishability with Applications to Unclonable Cryptography 1 day, 14 hours ago | arxiv.org

applications arxiv build cloning +11

SoK: Prudent Evaluation Practices for Fuzzing 1 day, 14 hours ago | arxiv.org

afl arxiv bugs concept +13

The Effect of Quantization in Federated Learning: A R\'enyi Differential Privacy Perspective 1 day, 14 hours ago | arxiv.org

arxiv can cs.cr cs.dc +15

Unveiling the Potential: Harnessing Deep Metric Learning to Circumvent Video Streaming Encryption 1 day, 14 hours ago | arxiv.org

arxiv attacks body cs.ai +16

SecureLLM: Using Compositionality to Build Provably Secure Language Models for Private, Sensitive, and Secret Data 1 day, 14 hours ago | arxiv.org

access arxiv back build +15

IBD-PSC: Input-level Backdoor Detection via Parameter-oriented Scaling Consistency 1 day, 14 hours ago | arxiv.org

adversaries arxiv attacks backdoor +22

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

Associate Engineer (Security Operations Centre)

@ People Profilers | Singapore, Singapore, Singapore

View on infosec-jobs.com

DevSecOps Engineer

@ Australian Payments Plus | Sydney, New South Wales, Australia

View on infosec-jobs.com

Senior Cybersecurity Specialist

@ SmartRecruiters Inc | Poland, Poland

View on infosec-jobs.com