Asleep at the Keyboard? Assessing the Security of GitHub Copilot's Code Contributions

Overview

Explore a conference talk examining the security implications of GitHub Copilot's code contributions. Delve into the assessment of AI-generated code, focusing on common vulnerabilities and weaknesses. Learn about the experiment overview, including examples of buffer overflow, use-after-free, and command injection issues. Analyze the results, discussing knowledge-based errors and the impact of prompt diversity. Gain insights into AI tools in software development and their potential security risks.

Syllabus

Introduction
What is GitHub Copilot
Language Models
Demo
Why is this happening
Common Weakness Enumeration Taxonomy
Relevance Scenarios
Three Dimensions
Experiment Overview
CWE 787 Example
Use After Free Example
Command Injection Example
Results
Knowledgebased errors
Diversity of Prompt
Verilog
Conclusions
AI Tools
Questions
Question from Fish

Taught by

IEEE Symposium on Security and Privacy

Reviews

Start your review of Asleep at the Keyboard? Assessing the Security of GitHub Copilot's Code Contributions

3000+ Courses from California Community Colleges

Most common

Popular subjects

Popular courses

Asleep at the Keyboard? Assessing the Security of GitHub Copilot's Code Contributions

Overview

Syllabus

Taught by

Tags

Reviews

3000+ Courses from California Community Colleges

Taught by

Tags

In Need of 'Pair' Review - Vulnerable Code Contributions by GitHub Copilot

100+ Free Online Courses and Webinars on Artificial Intelligence in Healthcare

AI for Everyone: 10 Best Free Artificial Intelligence Courses for 2024

Never Stop Learning.