{"id":"https://openalex.org/W4416129645","doi":"https://doi.org/10.1007/978-3-032-10344-4_14","title":"Towards a Systematic Approach to Memory Safety: A Case Study Integrating Techniques and Practices Over the Software Development Life Cycle (SDLC)","display_name":"Towards a Systematic Approach to Memory Safety: A Case Study Integrating Techniques and Practices Over the Software Development Life Cycle (SDLC)","publication_year":2025,"publication_date":"2025-11-12","ids":{"openalex":"https://openalex.org/W4416129645","doi":"https://doi.org/10.1007/978-3-032-10344-4_14"},"language":"en","primary_location":{"id":"doi:10.1007/978-3-032-10344-4_14","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-032-10344-4_14","pdf_url":null,"source":{"id":"https://openalex.org/S4210216571","display_name":"Lecture notes on data engineering and communications technologies","issn_l":"2367-4512","issn":["2367-4512","2367-4520"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319972","host_organization_name":"Springer International Publishing","host_organization_lineage":["https://openalex.org/P4310319972","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer International Publishing","Springer Nature"],"type":"book series"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Lecture Notes on Data Engineering and Communications Technologies","raw_type":"book-chapter"},"type":"book-chapter","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5120394602","display_name":"Isaia Tonini","orcid":"https://orcid.org/0009-0009-5052-8173"},"institutions":[{"id":"https://openalex.org/I193223587","display_name":"University of Trento","ror":"https://ror.org/05trd4x28","country_code":"IT","type":"education","lineage":["https://openalex.org/I193223587"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Isaia Tonini","raw_affiliation_strings":["University of Trento, Trento, Italy"],"raw_orcid":"https://orcid.org/0009-0009-5052-8173","affiliations":[{"raw_affiliation_string":"University of Trento, Trento, Italy","institution_ids":["https://openalex.org/I193223587"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5012263438","display_name":"Giacomo Nalli","orcid":"https://orcid.org/0000-0002-5667-3429"},"institutions":[{"id":"https://openalex.org/I60488453","display_name":"Middlesex University","ror":"https://ror.org/01rv4p989","country_code":"GB","type":"education","lineage":["https://openalex.org/I60488453"]}],"countries":["GB"],"is_corresponding":true,"raw_author_name":"Giacomo Nalli","raw_affiliation_strings":["Computer Science, Science and Technology, Middlesex University London, London, NW4 4BT, UK"],"raw_orcid":"https://orcid.org/0000-0002-5667-3429","affiliations":[{"raw_affiliation_string":"Computer Science, Science and Technology, Middlesex University London, London, NW4 4BT, UK","institution_ids":["https://openalex.org/I60488453"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5018991988","display_name":"Luca Piras","orcid":"https://orcid.org/0000-0002-7530-4119"},"institutions":[{"id":"https://openalex.org/I2277624104","display_name":"Fondazione Bruno Kessler","ror":"https://ror.org/01j33xk10","country_code":"IT","type":"facility","lineage":["https://openalex.org/I2277624104"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Luca Piras","raw_affiliation_strings":["Center for Cybersecurity, Fondazione Bruno Kessler (FBK), Trento, Italy"],"raw_orcid":"https://orcid.org/0000-0002-7530-4119","affiliations":[{"raw_affiliation_string":"Center for Cybersecurity, Fondazione Bruno Kessler (FBK), Trento, Italy","institution_ids":["https://openalex.org/I2277624104"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5038910115","display_name":"Pietro De Matteis","orcid":null},"institutions":[{"id":"https://openalex.org/I4210131886","display_name":"SpazioDati (Italy)","ror":"https://ror.org/03ks3fa41","country_code":"IT","type":"company","lineage":["https://openalex.org/I4210131886"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Pietro De Matteis","raw_affiliation_strings":["Co-Innovation Lab, Dedagroup Spa, Trento, Italy"],"raw_orcid":"https://orcid.org/0009-0006-7684-7189","affiliations":[{"raw_affiliation_string":"Co-Innovation Lab, Dedagroup Spa, Trento, Italy","institution_ids":["https://openalex.org/I4210131886"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5035092195","display_name":"Stamatis Kapetanakis","orcid":"https://orcid.org/0009-0002-1660-387X"},"institutions":[{"id":"https://openalex.org/I4210127824","display_name":"Electrical Distribution Design (United States)","ror":"https://ror.org/03jgkwp62","country_code":"US","type":"company","lineage":["https://openalex.org/I4210127824"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Stelios Kapetanakis","raw_affiliation_strings":["Distributed Labs, Distributed Analytics Solutions, 30 Churchill Pl, London, 14 5RE, UK"],"raw_orcid":"https://orcid.org/0009-0002-1660-387X","affiliations":[{"raw_affiliation_string":"Distributed Labs, Distributed Analytics Solutions, 30 Churchill Pl, London, 14 5RE, UK","institution_ids":["https://openalex.org/I4210127824"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5047487115","display_name":"Silvio Ranise","orcid":"https://orcid.org/0000-0001-7269-9285"},"institutions":[{"id":"https://openalex.org/I193223587","display_name":"University of Trento","ror":"https://ror.org/05trd4x28","country_code":"IT","type":"education","lineage":["https://openalex.org/I193223587"]},{"id":"https://openalex.org/I2277624104","display_name":"Fondazione Bruno Kessler","ror":"https://ror.org/01j33xk10","country_code":"IT","type":"facility","lineage":["https://openalex.org/I2277624104"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Silvio Ranise","raw_affiliation_strings":["Center for Cybersecurity, Fondazione Bruno Kessler (FBK), Trento, Italy","University of Trento, Trento, Italy"],"raw_orcid":"https://orcid.org/0000-0001-7269-9285","affiliations":[{"raw_affiliation_string":"Center for Cybersecurity, Fondazione Bruno Kessler (FBK), Trento, Italy","institution_ids":["https://openalex.org/I2277624104"]},{"raw_affiliation_string":"University of Trento, Trento, Italy","institution_ids":["https://openalex.org/I193223587"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5012263438"],"corresponding_institution_ids":["https://openalex.org/I60488453"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.51520868,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"147","last_page":"159"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.5163000226020813,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.5163000226020813,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T13295","display_name":"Safety Systems Engineering in Autonomy","score":0.15950000286102295,"subfield":{"id":"https://openalex.org/subfields/2213","display_name":"Safety, Risk, Reliability and Quality"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.048900000751018524,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/memory-protection","display_name":"Memory protection","score":0.4672999978065491},{"id":"https://openalex.org/keywords/software-development","display_name":"Software development","score":0.4462999999523163},{"id":"https://openalex.org/keywords/software-development-process","display_name":"Software development process","score":0.4169999957084656},{"id":"https://openalex.org/keywords/memory-leak","display_name":"Memory leak","score":0.41019999980926514},{"id":"https://openalex.org/keywords/memory-management","display_name":"Memory management","score":0.3970000147819519},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.3828999996185303},{"id":"https://openalex.org/keywords/trusted-computing-base","display_name":"Trusted computing base","score":0.3497999906539917},{"id":"https://openalex.org/keywords/reliability","display_name":"Reliability (semiconductor)","score":0.3476000130176544}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.697700023651123},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.4747999906539917},{"id":"https://openalex.org/C18131444","wikidata":"https://www.wikidata.org/wiki/Q163585","display_name":"Memory protection","level":5,"score":0.4672999978065491},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.4657999873161316},{"id":"https://openalex.org/C529173508","wikidata":"https://www.wikidata.org/wiki/Q638608","display_name":"Software development","level":3,"score":0.4462999999523163},{"id":"https://openalex.org/C180152950","wikidata":"https://www.wikidata.org/wiki/Q2904257","display_name":"Software development process","level":4,"score":0.4169999957084656},{"id":"https://openalex.org/C156731835","wikidata":"https://www.wikidata.org/wiki/Q751740","display_name":"Memory leak","level":4,"score":0.41019999980926514},{"id":"https://openalex.org/C176649486","wikidata":"https://www.wikidata.org/wiki/Q2308807","display_name":"Memory management","level":3,"score":0.3970000147819519},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.3828999996185303},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3763999938964844},{"id":"https://openalex.org/C147346212","wikidata":"https://www.wikidata.org/wiki/Q5492632","display_name":"Trusted computing base","level":4,"score":0.3497999906539917},{"id":"https://openalex.org/C195094911","wikidata":"https://www.wikidata.org/wiki/Q14167904","display_name":"Process management","level":1,"score":0.34940001368522644},{"id":"https://openalex.org/C43214815","wikidata":"https://www.wikidata.org/wiki/Q7310987","display_name":"Reliability (semiconductor)","level":3,"score":0.3476000130176544},{"id":"https://openalex.org/C83163435","wikidata":"https://www.wikidata.org/wiki/Q3954104","display_name":"Security management","level":2,"score":0.3199999928474426},{"id":"https://openalex.org/C28180684","wikidata":"https://www.wikidata.org/wiki/Q4080983","display_name":"Memory safety","level":3,"score":0.3086000084877014},{"id":"https://openalex.org/C18762648","wikidata":"https://www.wikidata.org/wiki/Q42213","display_name":"Work (physics)","level":2,"score":0.30140000581741333},{"id":"https://openalex.org/C119907115","wikidata":"https://www.wikidata.org/wiki/Q6815725","display_name":"Memory errors","level":3,"score":0.3005000054836273},{"id":"https://openalex.org/C168167062","wikidata":"https://www.wikidata.org/wiki/Q1117970","display_name":"Component (thermodynamics)","level":2,"score":0.29840001463890076},{"id":"https://openalex.org/C120617098","wikidata":"https://www.wikidata.org/wiki/Q559486","display_name":"Systems development life cycle","level":5,"score":0.29670000076293945},{"id":"https://openalex.org/C46355384","wikidata":"https://www.wikidata.org/wiki/Q726686","display_name":"Compromise","level":2,"score":0.2888999879360199},{"id":"https://openalex.org/C201995342","wikidata":"https://www.wikidata.org/wiki/Q682496","display_name":"Systems engineering","level":1,"score":0.2793999910354614},{"id":"https://openalex.org/C107574306","wikidata":"https://www.wikidata.org/wiki/Q1383678","display_name":"Exemplification","level":2,"score":0.2728999853134155},{"id":"https://openalex.org/C206588197","wikidata":"https://www.wikidata.org/wiki/Q846574","display_name":"Reuse","level":2,"score":0.2646999955177307},{"id":"https://openalex.org/C2780385302","wikidata":"https://www.wikidata.org/wiki/Q367158","display_name":"Protocol (science)","level":3,"score":0.26010000705718994},{"id":"https://openalex.org/C7465953","wikidata":"https://www.wikidata.org/wiki/Q1572577","display_name":"Product life-cycle management","level":2,"score":0.2502000033855438}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1007/978-3-032-10344-4_14","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-032-10344-4_14","pdf_url":null,"source":{"id":"https://openalex.org/S4210216571","display_name":"Lecture notes on data engineering and communications technologies","issn_l":"2367-4512","issn":["2367-4512","2367-4520"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319972","host_organization_name":"Springer International Publishing","host_organization_lineage":["https://openalex.org/P4310319972","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer International Publishing","Springer Nature"],"type":"book series"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Lecture Notes on Data Engineering and Communications Technologies","raw_type":"book-chapter"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":6,"referenced_works":["https://openalex.org/W2122049982","https://openalex.org/W2963709481","https://openalex.org/W2977627650","https://openalex.org/W4285129902","https://openalex.org/W4399269563","https://openalex.org/W4406602149"],"related_works":[],"abstract_inverted_index":null,"counts_by_year":[],"updated_date":"2026-06-13T06:13:01.061226","created_date":"2025-11-12T00:00:00"}