{"id":"https://openalex.org/W44938389","doi":"https://doi.org/10.1007/978-3-642-11747-3_6","title":"Idea: Towards Architecture-Centric Security Analysis of Software","display_name":"Idea: Towards Architecture-Centric Security Analysis of Software","publication_year":2010,"publication_date":"2010-01-01","ids":{"openalex":"https://openalex.org/W44938389","doi":"https://doi.org/10.1007/978-3-642-11747-3_6","mag":"44938389"},"language":"en","primary_location":{"id":"doi:10.1007/978-3-642-11747-3_6","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-642-11747-3_6","pdf_url":null,"source":{"id":"https://openalex.org/S106296714","display_name":"Lecture notes in computer science","issn_l":"0302-9743","issn":["0302-9743","1611-3349"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"book series"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Lecture Notes in Computer Science","raw_type":"book-chapter"},"type":"book-chapter","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5052280722","display_name":"Karsten Sohr","orcid":"https://orcid.org/0000-0001-6781-4226"},"institutions":[{"id":"https://openalex.org/I4210155548","display_name":"Technology Transfer Center Bremerhaven","ror":"https://ror.org/04ky74j22","country_code":"DE","type":"facility","lineage":["https://openalex.org/I4210155548"]}],"countries":["DE"],"is_corresponding":true,"raw_author_name":"Karsten Sohr","raw_affiliation_strings":["Technologie-Zentrum Informatik, Bremen, Germany"],"affiliations":[{"raw_affiliation_string":"Technologie-Zentrum Informatik, Bremen, Germany","institution_ids":["https://openalex.org/I4210155548"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5074604321","display_name":"Bernhard Berger","orcid":"https://orcid.org/0000-0001-6093-9229"},"institutions":[{"id":"https://openalex.org/I4210155548","display_name":"Technology Transfer Center Bremerhaven","ror":"https://ror.org/04ky74j22","country_code":"DE","type":"facility","lineage":["https://openalex.org/I4210155548"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Bernhard Berger","raw_affiliation_strings":["Technologie-Zentrum Informatik, Bremen, Germany"],"affiliations":[{"raw_affiliation_string":"Technologie-Zentrum Informatik, Bremen, Germany","institution_ids":["https://openalex.org/I4210155548"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5052280722"],"corresponding_institution_ids":["https://openalex.org/I4210155548"],"apc_list":{"value":5000,"currency":"EUR","value_usd":5392},"apc_paid":null,"fwci":6.0358,"has_fulltext":false,"cited_by_count":26,"citation_normalized_percentile":{"value":0.96717172,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"70","last_page":"78"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9947999715805054,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8630526065826416},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.709356427192688},{"id":"https://openalex.org/keywords/static-analysis","display_name":"Static analysis","score":0.5636526346206665},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.557458758354187},{"id":"https://openalex.org/keywords/buffer-overflow","display_name":"Buffer overflow","score":0.5166438221931458},{"id":"https://openalex.org/keywords/java","display_name":"Java","score":0.4987916946411133},{"id":"https://openalex.org/keywords/security-testing","display_name":"Security testing","score":0.46829336881637573},{"id":"https://openalex.org/keywords/static-program-analysis","display_name":"Static program analysis","score":0.4652717113494873},{"id":"https://openalex.org/keywords/sherwood-applied-business-security-architecture","display_name":"Sherwood Applied Business Security Architecture","score":0.46133100986480713},{"id":"https://openalex.org/keywords/secure-coding","display_name":"Secure coding","score":0.43763455748558044},{"id":"https://openalex.org/keywords/middleware","display_name":"Middleware (distributed applications)","score":0.41271716356277466},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.38455909490585327},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.37234339118003845},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.3661212921142578},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.3320823311805725},{"id":"https://openalex.org/keywords/software-development","display_name":"Software development","score":0.2916485369205475},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.24636101722717285},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.19976434111595154},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.18276658654212952},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.1559963822364807}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8630526065826416},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.709356427192688},{"id":"https://openalex.org/C97686452","wikidata":"https://www.wikidata.org/wiki/Q7604153","display_name":"Static analysis","level":2,"score":0.5636526346206665},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.557458758354187},{"id":"https://openalex.org/C40842320","wikidata":"https://www.wikidata.org/wiki/Q19423","display_name":"Buffer overflow","level":2,"score":0.5166438221931458},{"id":"https://openalex.org/C548217200","wikidata":"https://www.wikidata.org/wiki/Q251","display_name":"Java","level":2,"score":0.4987916946411133},{"id":"https://openalex.org/C195518309","wikidata":"https://www.wikidata.org/wiki/Q13424265","display_name":"Security testing","level":5,"score":0.46829336881637573},{"id":"https://openalex.org/C137287247","wikidata":"https://www.wikidata.org/wiki/Q1329550","display_name":"Static program analysis","level":4,"score":0.4652717113494873},{"id":"https://openalex.org/C60172848","wikidata":"https://www.wikidata.org/wiki/Q7495506","display_name":"Sherwood Applied Business Security Architecture","level":5,"score":0.46133100986480713},{"id":"https://openalex.org/C22680326","wikidata":"https://www.wikidata.org/wiki/Q7444867","display_name":"Secure coding","level":5,"score":0.43763455748558044},{"id":"https://openalex.org/C169468491","wikidata":"https://www.wikidata.org/wiki/Q146923","display_name":"Middleware (distributed applications)","level":2,"score":0.41271716356277466},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.38455909490585327},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.37234339118003845},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.3661212921142578},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.3320823311805725},{"id":"https://openalex.org/C529173508","wikidata":"https://www.wikidata.org/wiki/Q638608","display_name":"Software development","level":3,"score":0.2916485369205475},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.24636101722717285},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.19976434111595154},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.18276658654212952},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.1559963822364807},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1007/978-3-642-11747-3_6","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-642-11747-3_6","pdf_url":null,"source":{"id":"https://openalex.org/S106296714","display_name":"Lecture notes in computer science","issn_l":"0302-9743","issn":["0302-9743","1611-3349"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"book series"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Lecture Notes in Computer Science","raw_type":"book-chapter"},{"id":"pmh:oai:CiteSeerX.psu:10.1.1.156.9073","is_oa":false,"landing_page_url":"http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.156.9073","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"http://www.informatik.uni-bremen.de/~sohr/papers/essos2010.pdf","raw_type":"text"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.46000000834465027}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":16,"referenced_works":["https://openalex.org/W83579376","https://openalex.org/W1485483288","https://openalex.org/W1494570513","https://openalex.org/W1505465226","https://openalex.org/W1580328473","https://openalex.org/W1595540307","https://openalex.org/W1597357394","https://openalex.org/W1600965014","https://openalex.org/W1725369746","https://openalex.org/W1859617653","https://openalex.org/W1963887709","https://openalex.org/W2015004885","https://openalex.org/W2098465784","https://openalex.org/W2101834106","https://openalex.org/W2119736157","https://openalex.org/W2169088656"],"related_works":["https://openalex.org/W2541903208","https://openalex.org/W1983248291","https://openalex.org/W2155353733","https://openalex.org/W2393442563","https://openalex.org/W2293245356","https://openalex.org/W2101502756","https://openalex.org/W2773767792","https://openalex.org/W2903188055","https://openalex.org/W2167924718","https://openalex.org/W2181627506"],"abstract_inverted_index":null,"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2022,"cited_by_count":2},{"year":2020,"cited_by_count":1},{"year":2019,"cited_by_count":2},{"year":2017,"cited_by_count":2},{"year":2014,"cited_by_count":3},{"year":2013,"cited_by_count":6},{"year":2012,"cited_by_count":2}],"updated_date":"2026-04-05T17:49:38.594831","created_date":"2025-10-10T00:00:00"}