{"id":"https://openalex.org/W4407537131","doi":"https://doi.org/10.1007/s10207-025-00989-2","title":"Software vulnerability detection under poisoning attacks using CNN-based image processing","display_name":"Software vulnerability detection under poisoning attacks using CNN-based image processing","publication_year":2025,"publication_date":"2025-02-13","ids":{"openalex":"https://openalex.org/W4407537131","doi":"https://doi.org/10.1007/s10207-025-00989-2"},"language":"en","primary_location":{"id":"doi:10.1007/s10207-025-00989-2","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s10207-025-00989-2","pdf_url":"https://link.springer.com/content/pdf/10.1007/s10207-025-00989-2.pdf","source":{"id":"https://openalex.org/S164062316","display_name":"International Journal of Information Security","issn_l":"1615-5262","issn":["1615-5262","1615-5270"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"International Journal of Information Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"hybrid","oa_url":"https://link.springer.com/content/pdf/10.1007/s10207-025-00989-2.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5051341942","display_name":"Lorena Gonz\u00e1lez\u2010Manzano","orcid":"https://orcid.org/0000-0002-3490-621X"},"institutions":[{"id":"https://openalex.org/I4210145102","display_name":"Institut Polytechnique de Paris","ror":"https://ror.org/042tfbd02","country_code":"FR","type":"education","lineage":["https://openalex.org/I4210145102"]},{"id":"https://openalex.org/I50357001","display_name":"Universidad Carlos III de Madrid","ror":"https://ror.org/03ths8210","country_code":"ES","type":"education","lineage":["https://openalex.org/I50357001"]}],"countries":["ES","FR"],"is_corresponding":true,"raw_author_name":"Lorena Gonz\u00e1lez-Manzano","raw_affiliation_strings":["SAMOVAR, T\u00e9l\u00e9com SudParis, Institut Polytechnique de Paris, Palaiseau, 91120, France","Universidad Carlos III de Madrid, Legan\u00e9s, Spain"],"affiliations":[{"raw_affiliation_string":"SAMOVAR, T\u00e9l\u00e9com SudParis, Institut Polytechnique de Paris, Palaiseau, 91120, France","institution_ids":["https://openalex.org/I4210145102"]},{"raw_affiliation_string":"Universidad Carlos III de Madrid, Legan\u00e9s, Spain","institution_ids":["https://openalex.org/I50357001"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5011415694","display_name":"Joaqu\u00edn Garc\u00eda-Alfaro","orcid":"https://orcid.org/0000-0002-7453-4393"},"institutions":[{"id":"https://openalex.org/I4210145102","display_name":"Institut Polytechnique de Paris","ror":"https://ror.org/042tfbd02","country_code":"FR","type":"education","lineage":["https://openalex.org/I4210145102"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Joaquin Garcia-Alfaro","raw_affiliation_strings":["SAMOVAR, T\u00e9l\u00e9com SudParis, Institut Polytechnique de Paris, Palaiseau, 91120, France"],"affiliations":[{"raw_affiliation_string":"SAMOVAR, T\u00e9l\u00e9com SudParis, Institut Polytechnique de Paris, Palaiseau, 91120, France","institution_ids":["https://openalex.org/I4210145102"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5051341942"],"corresponding_institution_ids":["https://openalex.org/I4210145102","https://openalex.org/I50357001"],"apc_list":{"value":2590,"currency":"EUR","value_usd":3190},"apc_paid":{"value":2590,"currency":"EUR","value_usd":3190},"fwci":1.5532,"has_fulltext":true,"cited_by_count":1,"citation_normalized_percentile":{"value":0.77417679,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":95},"biblio":{"volume":"24","issue":"2","first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9914000034332275,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9822999835014343,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7956411838531494},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.664475679397583},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.5258693695068359},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5234493613243103},{"id":"https://openalex.org/keywords/image-processing","display_name":"Image processing","score":0.5213109850883484},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.4843250513076782},{"id":"https://openalex.org/keywords/image","display_name":"Image (mathematics)","score":0.4645167887210846},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.40517014265060425},{"id":"https://openalex.org/keywords/pattern-recognition","display_name":"Pattern recognition (psychology)","score":0.32340413331985474},{"id":"https://openalex.org/keywords/computer-vision","display_name":"Computer vision","score":0.32137513160705566},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.09509333968162537}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7956411838531494},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.664475679397583},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.5258693695068359},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5234493613243103},{"id":"https://openalex.org/C9417928","wikidata":"https://www.wikidata.org/wiki/Q1070689","display_name":"Image processing","level":3,"score":0.5213109850883484},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.4843250513076782},{"id":"https://openalex.org/C115961682","wikidata":"https://www.wikidata.org/wiki/Q860623","display_name":"Image (mathematics)","level":2,"score":0.4645167887210846},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.40517014265060425},{"id":"https://openalex.org/C153180895","wikidata":"https://www.wikidata.org/wiki/Q7148389","display_name":"Pattern recognition (psychology)","level":2,"score":0.32340413331985474},{"id":"https://openalex.org/C31972630","wikidata":"https://www.wikidata.org/wiki/Q844240","display_name":"Computer vision","level":1,"score":0.32137513160705566},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.09509333968162537}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1007/s10207-025-00989-2","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s10207-025-00989-2","pdf_url":"https://link.springer.com/content/pdf/10.1007/s10207-025-00989-2.pdf","source":{"id":"https://openalex.org/S164062316","display_name":"International Journal of Information Security","issn_l":"1615-5262","issn":["1615-5262","1615-5270"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"International Journal of Information Security","raw_type":"journal-article"},{"id":"pmh:oai:HAL:hal-05033755v1","is_oa":true,"landing_page_url":"https://hal.science/hal-05033755","pdf_url":"https://hal.science/hal-05033755/document","source":{"id":"https://openalex.org/S4406922466","display_name":"SPIRE - Sciences Po Institutional REpository","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"International Journal of Information Security, 2025, 24 (75), pp.1-22. &#x27E8;10.1007/s10207-025-00989-2&#x27E9;","raw_type":"Journal articles"}],"best_oa_location":{"id":"doi:10.1007/s10207-025-00989-2","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s10207-025-00989-2","pdf_url":"https://link.springer.com/content/pdf/10.1007/s10207-025-00989-2.pdf","source":{"id":"https://openalex.org/S164062316","display_name":"International Journal of Information Security","issn_l":"1615-5262","issn":["1615-5262","1615-5270"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"International Journal of Information Security","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[],"funders":[{"id":"https://openalex.org/F4320320300","display_name":"European Commission","ror":"https://ror.org/00k4n6c32"},{"id":"https://openalex.org/F4320323770","display_name":"Universidad Carlos III de Madrid","ror":"https://ror.org/03ths8210"},{"id":"https://openalex.org/F4320327970","display_name":"Instituto Nacional de Ciberseguridad","ror":null}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4407537131.pdf","grobid_xml":"https://content.openalex.org/works/W4407537131.grobid-xml"},"referenced_works_count":48,"referenced_works":["https://openalex.org/W1034159276","https://openalex.org/W2010065958","https://openalex.org/W2069143585","https://openalex.org/W2148423957","https://openalex.org/W2161663128","https://openalex.org/W2781491433","https://openalex.org/W2789876780","https://openalex.org/W2792256830","https://openalex.org/W2795170942","https://openalex.org/W2798477988","https://openalex.org/W2885030880","https://openalex.org/W2906762511","https://openalex.org/W2976836186","https://openalex.org/W3004658838","https://openalex.org/W3006334803","https://openalex.org/W3016970378","https://openalex.org/W3017210109","https://openalex.org/W3033777149","https://openalex.org/W3047291452","https://openalex.org/W3049465447","https://openalex.org/W3101228802","https://openalex.org/W3115260384","https://openalex.org/W3177116043","https://openalex.org/W3183469243","https://openalex.org/W3194346579","https://openalex.org/W4205733352","https://openalex.org/W4214525227","https://openalex.org/W4214753187","https://openalex.org/W4226017353","https://openalex.org/W4284667406","https://openalex.org/W4288758078","https://openalex.org/W4308627220","https://openalex.org/W4312044266","https://openalex.org/W4312436517","https://openalex.org/W4312690534","https://openalex.org/W4312969325","https://openalex.org/W4318562265","https://openalex.org/W4319337832","https://openalex.org/W4372279901","https://openalex.org/W4385564894","https://openalex.org/W4385571453","https://openalex.org/W4387298393","https://openalex.org/W4388229767","https://openalex.org/W4388826738","https://openalex.org/W4393406994","https://openalex.org/W4402263672","https://openalex.org/W6600882715","https://openalex.org/W6718889817"],"related_works":["https://openalex.org/W2095999892","https://openalex.org/W2018764758","https://openalex.org/W2383689843","https://openalex.org/W1550668881","https://openalex.org/W617913288","https://openalex.org/W2062873522","https://openalex.org/W2319323865","https://openalex.org/W2951745010","https://openalex.org/W2347958299","https://openalex.org/W2963125730"],"abstract_inverted_index":{"Abstract":[0],"Design":[1],"flows,":[2],"code":[3,34,153],"errors,":[4],"or":[5],"inadequate":[6],"countermeasures":[7],"may":[8,202],"occur":[9],"in":[10,19,126,132,171,211],"software":[11],"development.":[12],"Some":[13],"of":[14,51,62,118,124,141,200],"them":[15],"lead":[16],"to":[17,25,31,136,183,217],"vulnerabilities":[18],"the":[20,23,49,59,60,116,133,138,142,172,198],"code,":[21],"opening":[22],"door":[24],"attacks.":[26],"Assorted":[27],"techniques":[28],"are":[29,83],"developed":[30],"detect":[32],"vulnerable":[33],"samples,":[35],"making":[36],"artificial":[37],"intelligence":[38],"techniques,":[39],"such":[40],"as":[41],"Machine":[42],"Learning":[43],"(ML),":[44],"a":[45,54,121,128,204],"common":[46],"practice.":[47],"Nonetheless,":[48],"security":[50],"ML":[52],"is":[53,68,106,113,130,146,214],"major":[55],"concern.":[56],"This":[57,86],"includes":[58],"case":[61],"ML-based":[63,98],"detection":[64,76,94,192],"whose":[65],"training":[66,134],"process":[67],"affected":[69],"by":[70],"data":[71,135],"poisoning.":[72],"More":[73],"generally,":[74],"vulnerability":[75,93,169],"can":[77],"be":[78],"evaded":[79],"unless":[80],"poisoning":[81,125],"attacks":[82,219],"properly":[84],"handled.":[85],"paper":[87],"tackles":[88],"this":[89],"problem.":[90],"A":[91],"novel":[92],"system":[95],"based":[96],"on":[97],"image":[99],"processing,":[100],"using":[101],"Convolutional":[102],"Neural":[103],"Network":[104],"(CNN),":[105],"proposed.":[107],"The":[108],"system,":[109],"hereinafter":[110],"called":[111],"IVul,":[112],"evaluated":[114,147],"under":[115],"presence":[117],"backdoor":[119],"attacks,":[120],"precise":[122],"type":[123,199],"which":[127],"pattern":[129],"introduced":[131],"alter":[137],"expected":[139],"behavior":[140],"learned":[143],"models.":[144],"IVul":[145,164],"with":[148,156],"more":[149,207,215],"than":[150,208,220],"three":[151],"thousand":[152],"samples":[154],"associated":[155],"two":[157],"representative":[158],"programming":[159],"languages":[160],"(C#":[161],"and":[162],"PHP).":[163],"outperforms":[165],"other":[166],"comparable":[167],"state-of-the-art":[168],"detectors":[170],"literature,":[173],"reaching":[174],"$$82\\%$$":[175],"<mml:math":[176,185],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\">":[177,186],"<mml:mrow>":[178,187],"<mml:mn>82</mml:mn>":[179],"<mml:mo>%</mml:mo>":[180,189],"</mml:mrow>":[181,190],"</mml:math>":[182,191],"$$99\\%$$":[184],"<mml:mn>99</mml:mn>":[188],"accuracy.":[193],"Besides,":[194],"results":[195],"show":[196],"that":[197],"attack":[201],"affect":[203],"particular":[205],"language":[206],"another,":[209],"though,":[210],"general,":[212],"PHP":[213],"resilient":[216],"proposed":[218],"C#.":[221]},"counts_by_year":[{"year":2025,"cited_by_count":1}],"updated_date":"2026-03-20T23:20:44.827607","created_date":"2025-10-10T00:00:00"}