Greenberg News

    Green Futures: Innovate, Sustain, Thrive

    Entropy, Vol. 27, Pages 392: GBsim: A Robust GCN-BERT Approach for Cross-Architecture Binary Code Similarity Analysis

    Greenberg     April 7, 2025 in News - 1 Minute


    Entropy, Vol. 27, Pages 392: GBsim: A Robust GCN-BERT Approach for Cross-Architecture Binary Code Similarity Analysis

    Entropy doi: 10.3390/e27040392

    Authors:
    Jiang Du
    Qiang Wei
    Yisen Wang
    Xingyu Bai

    Recent advances in graph neural networks have transformed structural pattern learning in domains ranging from social network analysis to biomolecular modeling. Nevertheless, practical deployments in mission-critical scenarios such as binary code similarity detection face two fundamental obstacles: first, the inherent noise in graph construction processes exemplified by incomplete control flow edges during binary function recovery; second, the substantial distribution discrepancies caused by cross-architecture instruction set variations. Conventional GNN architectures demonstrate severe performance degradation under such low signal-to-noise ratio conditions and cross-domain operational environments, particularly in security-sensitive vulnerability identification tasks where feature instability or domain shifts could trigger critical false judgments. To address these challenges, we propose GBsim, a novel approach that combines graph neural networks with natural language processing. GBsim employs a cross-architecture language model to transform binary functions into semantic graphs, leverages a multilayer GCN for structural feature extraction, and employs a Transformer layer to integrate semantic information, generates robust cross-architecture embeddings that maintain high performance despite significant distribution shifts. Extensive experiments on a large-scale cross-architecture dataset show that GBsim achieves an MRR of 0.901 and a Recall@1 of 0.831, outperforming state-of-the-art methods. In real-world vulnerability detection tasks, GBsim achieves an average recall rate of 81.3% on a 1-day vulnerability dataset, demonstrating its practical effectiveness in identifying security threats and outperforming existing methods by 2.1%. This performance advantage stems from GBsim’s ability to maximize information preservation across architectural boundaries, enhancing model robustness in the presence of noise and distribution shifts.



    Source link

    Jiang Du www.mdpi.com

    Related Posts

    Applied Sciences, Vol. 15, Pages 4063: Fractal Dimension of the Condylar Bone Structure in Patients with Unilateral Condylar Hyperplasia: Cross-Sectional Retrospective Study
    April 7, 2025
    The Unseen Costs Of Food Spoilage: A Growing Sustainability Issue
    April 7, 2025
    CIMB, Vol. 47, Pages 255: The Effect of Kidney Transplantation and Immunosuppressive Therapy on Adipose Tissue Content and Adipocytokine Plasma Concentration—Preliminary Study
    April 7, 2025

    Greenberg

    Learn More →
    This website uses cookies to improve user experience. By continuing to use the site, you consent to the use of cookies.