{"id":"https://openalex.org/W2925390008","doi":"https://doi.org/10.1109/access.2019.2907977","title":"E-WBM: An Effort-Based Vulnerability Discovery Model","display_name":"E-WBM: An Effort-Based Vulnerability Discovery Model","publication_year":2019,"publication_date":"2019-01-01","ids":{"openalex":"https://openalex.org/W2925390008","doi":"https://doi.org/10.1109/access.2019.2907977","mag":"2925390008"},"language":"en","primary_location":{"id":"doi:10.1109/access.2019.2907977","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2019.2907977","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/8600701/08676014.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://ieeexplore.ieee.org/ielx7/6287639/8600701/08676014.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5067372916","display_name":"Xiajing Wang","orcid":"https://orcid.org/0000-0002-9897-0579"},"institutions":[{"id":"https://openalex.org/I125839683","display_name":"Beijing Institute of Technology","ror":"https://ror.org/01skt4w74","country_code":"CN","type":"education","lineage":["https://openalex.org/I125839683","https://openalex.org/I890469752"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Xiajing Wang","raw_affiliation_strings":["School of Computer Science and Technology, Beijing Institute of Technology, Beijing, China"],"raw_orcid":"https://orcid.org/0000-0002-9897-0579","affiliations":[{"raw_affiliation_string":"School of Computer Science and Technology, Beijing Institute of Technology, Beijing, China","institution_ids":["https://openalex.org/I125839683"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101551878","display_name":"Rui Ma","orcid":"https://orcid.org/0000-0003-1728-0056"},"institutions":[{"id":"https://openalex.org/I125839683","display_name":"Beijing Institute of Technology","ror":"https://ror.org/01skt4w74","country_code":"CN","type":"education","lineage":["https://openalex.org/I125839683","https://openalex.org/I890469752"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Rui Ma","raw_affiliation_strings":["School of Computer Science and Technology, Beijing Institute of Technology, Beijing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Computer Science and Technology, Beijing Institute of Technology, Beijing, China","institution_ids":["https://openalex.org/I125839683"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100406164","display_name":"Binbin Li","orcid":"https://orcid.org/0000-0002-1732-7785"},"institutions":[{"id":"https://openalex.org/I125839683","display_name":"Beijing Institute of Technology","ror":"https://ror.org/01skt4w74","country_code":"CN","type":"education","lineage":["https://openalex.org/I125839683","https://openalex.org/I890469752"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Binbin Li","raw_affiliation_strings":["School of Computer Science and Technology, Beijing Institute of Technology, Beijing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Computer Science and Technology, Beijing Institute of Technology, Beijing, China","institution_ids":["https://openalex.org/I125839683"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5059751912","display_name":"Donghai Tian","orcid":"https://orcid.org/0000-0003-2217-4514"},"institutions":[{"id":"https://openalex.org/I125839683","display_name":"Beijing Institute of Technology","ror":"https://ror.org/01skt4w74","country_code":"CN","type":"education","lineage":["https://openalex.org/I125839683","https://openalex.org/I890469752"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Donghai Tian","raw_affiliation_strings":["School of Computer Science and Technology, Beijing Institute of Technology, Beijing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Computer Science and Technology, Beijing Institute of Technology, Beijing, China","institution_ids":["https://openalex.org/I125839683"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5100696143","display_name":"Xuefei Wang","orcid":"https://orcid.org/0000-0003-2389-3537"},"institutions":[{"id":"https://openalex.org/I125839683","display_name":"Beijing Institute of Technology","ror":"https://ror.org/01skt4w74","country_code":"CN","type":"education","lineage":["https://openalex.org/I125839683","https://openalex.org/I890469752"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xuefei Wang","raw_affiliation_strings":["School of Computer Science and Technology, Beijing Institute of Technology, Beijing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Computer Science and Technology, Beijing Institute of Technology, Beijing, China","institution_ids":["https://openalex.org/I125839683"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5067372916"],"corresponding_institution_ids":["https://openalex.org/I125839683"],"apc_list":{"value":1850,"currency":"USD","value_usd":1850},"apc_paid":{"value":1850,"currency":"USD","value_usd":1850},"fwci":3.9524,"has_fulltext":true,"cited_by_count":14,"citation_normalized_percentile":{"value":0.93466387,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":"7","issue":null,"first_page":"44276","last_page":"44292"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9966999888420105,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9929999709129333,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7599859237670898},{"id":"https://openalex.org/keywords/weibull-distribution","display_name":"Weibull distribution","score":0.634304404258728},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.5752047300338745},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.521782398223877},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.5190711617469788},{"id":"https://openalex.org/keywords/statistics","display_name":"Statistics","score":0.1720145046710968},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.11984393000602722},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.08989474177360535},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.08984088897705078}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7599859237670898},{"id":"https://openalex.org/C173291955","wikidata":"https://www.wikidata.org/wiki/Q732332","display_name":"Weibull distribution","level":2,"score":0.634304404258728},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.5752047300338745},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.521782398223877},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.5190711617469788},{"id":"https://openalex.org/C105795698","wikidata":"https://www.wikidata.org/wiki/Q12483","display_name":"Statistics","level":1,"score":0.1720145046710968},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.11984393000602722},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.08989474177360535},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.08984088897705078}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/access.2019.2907977","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2019.2907977","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/8600701/08676014.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:6adee09373eb4e9a8478bbb20ff47cbb","is_oa":true,"landing_page_url":"https://doaj.org/article/6adee09373eb4e9a8478bbb20ff47cbb","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Access, Vol 7, Pp 44276-44292 (2019)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.1109/access.2019.2907977","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2019.2907977","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/8600701/08676014.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.5600000023841858}],"awards":[{"id":"https://openalex.org/G1480663469","display_name":null,"funder_award_id":"61602035","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G3545308168","display_name":null,"funder_award_id":"2016QY07X1404","funder_id":"https://openalex.org/F4320335777","funder_display_name":"National Key Research and Development Program of China"}],"funders":[{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"},{"id":"https://openalex.org/F4320335777","display_name":"National Key Research and Development Program of China","ror":null}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":35,"referenced_works":["https://openalex.org/W114587052","https://openalex.org/W842616135","https://openalex.org/W1547298448","https://openalex.org/W1563025380","https://openalex.org/W1580060001","https://openalex.org/W1838130996","https://openalex.org/W2000847545","https://openalex.org/W2015959847","https://openalex.org/W2039171123","https://openalex.org/W2050014515","https://openalex.org/W2050489281","https://openalex.org/W2057994388","https://openalex.org/W2104556041","https://openalex.org/W2107902315","https://openalex.org/W2112333328","https://openalex.org/W2114712239","https://openalex.org/W2126513985","https://openalex.org/W2147783037","https://openalex.org/W2168479209","https://openalex.org/W2324161512","https://openalex.org/W2364602502","https://openalex.org/W2364677046","https://openalex.org/W2373370732","https://openalex.org/W2383581025","https://openalex.org/W2504000595","https://openalex.org/W2557816752","https://openalex.org/W2609547130","https://openalex.org/W2789721999","https://openalex.org/W2892115998","https://openalex.org/W2892212057","https://openalex.org/W2902634282","https://openalex.org/W4247369679","https://openalex.org/W6684845054","https://openalex.org/W7002220912","https://openalex.org/W7002366065"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2899084033","https://openalex.org/W2748952813","https://openalex.org/W3083898685","https://openalex.org/W1973754976","https://openalex.org/W189075692","https://openalex.org/W4220847856","https://openalex.org/W4220801072","https://openalex.org/W2328223263","https://openalex.org/W2374817159"],"abstract_inverted_index":{"Vulnerability":[0],"discovery":[1,67,78],"models":[2,158],"(VDMs)":[3],"have":[4],"recently":[5],"been":[6],"proposed":[7,105],"to":[8,32,63,149],"estimate":[9],"the":[10,83,101,104,122,141,150,169],"cumulative":[11],"number":[12],"of":[13,85,103,155],"vulnerabilities":[14,88],"that":[15,131,168],"will":[16],"be":[17],"disclosed":[18],"after":[19],"software":[20,34,86],"is":[21],"released.":[22],"A":[23],"precise":[24],"VDM":[25,38],"would":[26],"offer":[27],"an":[28],"available":[29],"quantitative":[30],"insight":[31],"assess":[33],"security.":[35],"Even":[36],"though":[37],"has":[39],"demonstrated":[40],"its":[41],"effectiveness":[42],"in":[43,49],"multiple":[44],"software,":[45],"it":[46],"remains":[47],"limited":[48],"accuracy,":[50],"especially":[51],"with":[52,111,177],"weak":[53],"versatility.":[54],"We":[55,90,107],"propose":[56],"a":[57,112,173,178],"novel":[58],"effort-based":[59,114,157],"VDMs,":[60],"named":[61],"E-WBM,":[62],"improve":[64],"critical":[65],"vulnerability":[66,77],"rate":[68],"algorithm":[69],"using":[70],"Weibull":[71],"probability":[72],"distribution":[73],"function":[74],"towards":[75],"efficient":[76],"models.":[79],"E-WBM":[80,92,110,132,159,170],"accurately":[81],"portrays":[82],"trend":[84],"security":[87],"disclosure.":[89],"evaluate":[91],"on":[93,121],"eight":[94,124],"popular":[95],"real-world":[96],"operating":[97,125],"systems":[98],"and":[99,117,136,143,160],"show":[100,167],"feasibility":[102],"model.":[106],"further":[108],"compare":[109],"state-of-the-art":[113],"model":[115,119,151,171],"AME":[116,135,161],"time-based":[118],"JW":[120,137],"above":[123],"systems.":[126],"Our":[127],"comparison":[128],"also":[129,163],"demonstrates":[130],"consistently":[133],"outperforms":[134],"both":[138],"at":[139],"reducing":[140],"deviations":[142],"fitting":[144],"curve":[145],"trends.":[146],"In":[147],"addition":[148],"fitting,":[152],"predictive":[153],"capabilities":[154],"two":[156],"are":[162],"examined.":[164],"The":[165],"results":[166],"yields":[172],"more":[174],"stable":[175],"prediction":[176],"significantly":[179],"less":[180],"error":[181],"than":[182],"AME.":[183]},"counts_by_year":[{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":7},{"year":2021,"cited_by_count":2},{"year":2020,"cited_by_count":2},{"year":2019,"cited_by_count":1}],"updated_date":"2026-05-19T21:40:30.786675","created_date":"2025-10-10T00:00:00"}