BugWhisperer: Fine-Tuning LLMs for SoC Hardware Vulnerability Detection
By: Shams Tarek , Dipayan Saha , Sujan Kumar Saha and more
Potential Business Impact:
Finds computer chip security flaws automatically.
The current landscape of system-on-chips (SoCs) security verification faces challenges due to manual, labor-intensive, and inflexible methodologies. These issues limit the scalability and effectiveness of security protocols, making bug detection at the Register-Transfer Level (RTL) difficult. This paper proposes a new framework named BugWhisperer that utilizes a specialized, fine-tuned Large Language Model (LLM) to address these challenges. By enhancing the LLM's hardware security knowledge and leveraging its capabilities for text inference and knowledge transfer, this approach automates and improves the adaptability and reusability of the verification process. We introduce an open-source, fine-tuned LLM specifically designed for detecting security vulnerabilities in SoC designs. Our findings demonstrate that this tailored LLM effectively enhances the efficiency and flexibility of the security verification process. Additionally, we introduce a comprehensive hardware vulnerability database that supports this work and will further assist the research community in enhancing the security verification process.
Similar Papers
Can We Enhance Bug Report Quality Using LLMs?: An Empirical Study of LLM-Based Bug Report Generation
Software Engineering
Makes bug reports clear for faster fixes.
Large Language Model based Smart Contract Auditing with LLMBugScanner
Cryptography and Security
Finds hidden mistakes in computer money code.
Vulnerability Detection: From Formal Verification to Large Language Models and Hybrid Approaches: A Comprehensive Overview
Software Engineering
Finds software bugs better by mixing old and new methods.