基于gpt的自动诱导:医疗软件中的漏洞检测。

IF 7.7 2区 医学 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS IEEE Journal of Biomedical and Health Informatics Pub Date : 2026-03-01 Epub Date: 2025-02-21 DOI:10.1109/JBHI.2025.3544560
Liangjun Deng;Hang Lei;Fazlullah Khan;Gautam Srivastava;Jingxue Chen;Mainul Haque
{"title":"基于gpt的自动诱导:医疗软件中的漏洞检测。","authors":"Liangjun Deng;Hang Lei;Fazlullah Khan;Gautam Srivastava;Jingxue Chen;Mainul Haque","doi":"10.1109/JBHI.2025.3544560","DOIUrl":null,"url":null,"abstract":"Integrating natural language processing (NLP) with generative pre-trained transformer (GPT) models plays a pivotal role in enhancing the accuracy and efficiency of healthcare software, which is essential for patient safety and providing high-quality care. The precision of healthcare software is fundamental to protecting the patient's well-being. In addition, it can ensure the delivery of superior care, maintain the integrity of healthcare systems, and promote trust and cost-effectiveness. It is necessary to emphasize the importance of software reliability in its development and deployment. Symbolic execution serves as a vital technology in automated vulnerability detection. However, it often faces problems such as path explosion, which seriously affects efficiency. Although several studies have been conducted to reduce the number of computational paths, this problem remains a significant obstacle. Therefore, more efficient solutions are urgently needed to ensure software security. This paper proposes a large-scale language model (LLM) induction method mitigating path explosion applied to symbolic execution engines. In contrast to traditional symbolic execution engines, which often result in timeout or out-of-memory detection, our approach achieves the task of detecting vulnerabilities in seconds. Furthermore, our proposal improves the scalability of symbolic execution, allowing more extensive and complex programs to be analyzed without significant increases in computational resources or time. This scalability is crucial to tackling modern software systems and improving the efficiency and effectiveness of automated defect verification in healthcare software.","PeriodicalId":13073,"journal":{"name":"IEEE Journal of Biomedical and Health Informatics","volume":"30 5","pages":"3732-3743"},"PeriodicalIF":7.7000,"publicationDate":"2026-03-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"GPT-Based Automated Induction: Vulnerability Detection in Medical Software\",\"authors\":\"Liangjun Deng;Hang Lei;Fazlullah Khan;Gautam Srivastava;Jingxue Chen;Mainul Haque\",\"doi\":\"10.1109/JBHI.2025.3544560\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Integrating natural language processing (NLP) with generative pre-trained transformer (GPT) models plays a pivotal role in enhancing the accuracy and efficiency of healthcare software, which is essential for patient safety and providing high-quality care. The precision of healthcare software is fundamental to protecting the patient's well-being. In addition, it can ensure the delivery of superior care, maintain the integrity of healthcare systems, and promote trust and cost-effectiveness. It is necessary to emphasize the importance of software reliability in its development and deployment. Symbolic execution serves as a vital technology in automated vulnerability detection. However, it often faces problems such as path explosion, which seriously affects efficiency. Although several studies have been conducted to reduce the number of computational paths, this problem remains a significant obstacle. Therefore, more efficient solutions are urgently needed to ensure software security. This paper proposes a large-scale language model (LLM) induction method mitigating path explosion applied to symbolic execution engines. In contrast to traditional symbolic execution engines, which often result in timeout or out-of-memory detection, our approach achieves the task of detecting vulnerabilities in seconds. Furthermore, our proposal improves the scalability of symbolic execution, allowing more extensive and complex programs to be analyzed without significant increases in computational resources or time. This scalability is crucial to tackling modern software systems and improving the efficiency and effectiveness of automated defect verification in healthcare software.\",\"PeriodicalId\":13073,\"journal\":{\"name\":\"IEEE Journal of Biomedical and Health Informatics\",\"volume\":\"30 5\",\"pages\":\"3732-3743\"},\"PeriodicalIF\":7.7000,\"publicationDate\":\"2026-03-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"IEEE Journal of Biomedical and Health Informatics\",\"FirstCategoryId\":\"5\",\"ListUrlMain\":\"https://ieeexplore.ieee.org/document/10899829/\",\"RegionNum\":2,\"RegionCategory\":\"医学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"2025/2/21 0:00:00\",\"PubModel\":\"Epub\",\"JCR\":\"Q1\",\"JCRName\":\"COMPUTER SCIENCE, INFORMATION SYSTEMS\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Journal of Biomedical and Health Informatics","FirstCategoryId":"5","ListUrlMain":"https://ieeexplore.ieee.org/document/10899829/","RegionNum":2,"RegionCategory":"医学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"2025/2/21 0:00:00","PubModel":"Epub","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}
引用次数: 0

摘要

将自然语言处理(NLP)与生成式预训练转换器(GPT)模型集成在一起,在提高医疗保健软件的准确性和效率方面发挥着关键作用,这对于患者安全和提供高质量的护理至关重要。医疗保健软件的精确度是保护患者健康的基础。此外,它可以确保提供优质护理,维护医疗保健系统的完整性,并促进信任和成本效益。在软件的开发和部署中,必须强调软件可靠性的重要性。符号执行是漏洞自动检测中的一项重要技术。然而,符号执行常常面临路径爆炸等问题,严重影响了执行效率。尽管已经有一些关于减少符号执行中计算路径数量的研究,但这个问题仍然是一个主要障碍。因此,迫切需要更高效的解决方案来保证软件的安全。提出了一种适用于符号执行引擎的大规模语言模型(LLM)归纳方法,减轻了路径爆炸的影响。传统的符号执行引擎通常会导致超时或内存不足的检测,与之相反,我们的方法可以在几秒钟内检测漏洞。此外,我们的建议提高了符号执行的可扩展性,允许在不显着增加计算资源或时间的情况下分析更广泛和复杂的程序。这种可扩展性对于处理现代软件系统和提高医疗保健软件中自动缺陷验证的效率和有效性至关重要。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
查看原文
分享 分享
微信好友 朋友圈 QQ好友 复制链接
本刊更多论文
GPT-Based Automated Induction: Vulnerability Detection in Medical Software
Integrating natural language processing (NLP) with generative pre-trained transformer (GPT) models plays a pivotal role in enhancing the accuracy and efficiency of healthcare software, which is essential for patient safety and providing high-quality care. The precision of healthcare software is fundamental to protecting the patient's well-being. In addition, it can ensure the delivery of superior care, maintain the integrity of healthcare systems, and promote trust and cost-effectiveness. It is necessary to emphasize the importance of software reliability in its development and deployment. Symbolic execution serves as a vital technology in automated vulnerability detection. However, it often faces problems such as path explosion, which seriously affects efficiency. Although several studies have been conducted to reduce the number of computational paths, this problem remains a significant obstacle. Therefore, more efficient solutions are urgently needed to ensure software security. This paper proposes a large-scale language model (LLM) induction method mitigating path explosion applied to symbolic execution engines. In contrast to traditional symbolic execution engines, which often result in timeout or out-of-memory detection, our approach achieves the task of detecting vulnerabilities in seconds. Furthermore, our proposal improves the scalability of symbolic execution, allowing more extensive and complex programs to be analyzed without significant increases in computational resources or time. This scalability is crucial to tackling modern software systems and improving the efficiency and effectiveness of automated defect verification in healthcare software.
求助全文
通过发布文献求助,成功后即可免费获取论文全文。 去求助
来源期刊
IEEE Journal of Biomedical and Health Informatics
IEEE Journal of Biomedical and Health Informatics COMPUTER SCIENCE, INFORMATION SYSTEMS-COMPUTER SCIENCE, INTERDISCIPLINARY APPLICATIONS
CiteScore
13.60
自引率
6.50%
发文量
1151
期刊介绍: IEEE Journal of Biomedical and Health Informatics publishes original papers presenting recent advances where information and communication technologies intersect with health, healthcare, life sciences, and biomedicine. Topics include acquisition, transmission, storage, retrieval, management, and analysis of biomedical and health information. The journal covers applications of information technologies in healthcare, patient monitoring, preventive care, early disease diagnosis, therapy discovery, and personalized treatment protocols. It explores electronic medical and health records, clinical information systems, decision support systems, medical and biological imaging informatics, wearable systems, body area/sensor networks, and more. Integration-related topics like interoperability, evidence-based medicine, and secure patient data are also addressed.
期刊最新文献
Multimodal Contrastive Spatiotemporal Self-Organizing Neural Networks for In-Home Activity Learning of Mild Cognitive Impairment. Integrating Multi-View Residue Graph and Protein Language Model for Cell-Penetrating Peptide Prediction via Global-Local Graph Aggregation and Cross-Attentive Fusion. Explanation-Guided Reconstruction of Missing Clinical Features for Survival Prediction in Pancreatic Cancer. Cross-subject fMRI-to-Image with Visual-cortex 2D Representation and Pre-Training. An Ultra-Lightweight Cross-scale Attention Mamba Network for Accurate Skin Lesion Segmentation.
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
0
微信
客服QQ
Book学术公众号 扫码关注我们
反馈
×
意见反馈
请填写您的意见或建议
请填写您的手机或邮箱
已复制链接
已复制链接
快去分享给好友吧!
我知道了
×
扫码分享
扫码分享
Book学术官方微信
Book学术官方微信
Book学术文献互助
Book学术文献互助群
群 号:604180095
Book学术
文献互助 智能选刊 最新文献 互助须知 联系我们:info@booksci.cn
Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。
Copyright © 2023 Book学术 All rights reserved.
ghs 京公网安备 11010802042870号 京ICP备2023020795号-1