CVE-LLM: Ontology-Assisted Automatic Vulnerability Evaluation Using Large Language Models

Rikhiya Ghosh; Hans-Martin von Stockhausen; Martin Schmitt; George Marica Vasile; Sanjeev Kumar Karn; Oladimeji Farri

doi:10.1609/aaai.v39i28.35139

Authors

Rikhiya Ghosh Digital Technology and Innovation, Siemens Healthineers USA
Hans-Martin von Stockhausen Cybersecurity, Siemens Healthineers Germany
Martin Schmitt Cybersecurity, Siemens Healthineers Germany
George Marica Vasile Corporate Technology, Siemens AG Romania
Sanjeev Kumar Karn Digital Technology and Innovation, Siemens Healthineers USA
Oladimeji Farri Digital Technology and Innovation, Siemens Healthineers USA

DOI:

https://doi.org/10.1609/aaai.v39i28.35139

Abstract

The National Vulnerability Database (NVD) publishes over a thousand new vulnerabilities monthly, with a projected 25 percent increase in 2024, highlighting the crucial need for rapid vulnerability identification to mitigate cybersecurity attacks and save costs and resources. In this work, we propose using large language models (LLMs) to learn vulnerability evaluation from historical assessments of medical device vulnerabilities in a single manufacturer's portfolio. We highlight the effectiveness and challenges of using LLMs for automatic vulnerability evaluation and introduce a method to enrich historical data with cybersecurity ontologies, enabling the system to understand new vulnerabilities without retraining the LLM. Our LLM system integrates with the in-house application - Cybersecurity Management System (CSMS) - to help Siemens Healthineers (SHS) product cybersecurity experts efficiently assess the vulnerabilities in our products. Also, we present guidelines for efficient integration of LLMs into the cybersecurity tool.

CVE-LLM: Ontology-Assisted Automatic Vulnerability Evaluation Using Large Language Models

Authors

DOI:

Abstract

Downloads

Published

How to Cite

Issue

Section

Information