{"id":"https://openalex.org/W4368232260","doi":"https://doi.org/10.1109/access.2023.3272833","title":"When Memory Corruption Met Concurrency: Vulnerabilities in Concurrent Programs","display_name":"When Memory Corruption Met Concurrency: Vulnerabilities in Concurrent Programs","publication_year":2023,"publication_date":"2023-01-01","ids":{"openalex":"https://openalex.org/W4368232260","doi":"https://doi.org/10.1109/access.2023.3272833"},"language":"en","primary_location":{"id":"doi:10.1109/access.2023.3272833","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2023.3272833","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/10005208/10114930.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://ieeexplore.ieee.org/ielx7/6287639/10005208/10114930.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5035906842","display_name":"Oscar Llorente-Vazquez","orcid":"https://orcid.org/0009-0000-7910-1995"},"institutions":[{"id":"https://openalex.org/I136040515","display_name":"Universidad de Deusto","ror":"https://ror.org/00ne6sr39","country_code":"ES","type":"education","lineage":["https://openalex.org/I136040515"]}],"countries":["ES"],"is_corresponding":false,"raw_author_name":"Oscar Llorente-Vazquez","raw_affiliation_strings":["Deusto Institute of Technology, University of Deusto, Bilbao, Spain"],"raw_orcid":"https://orcid.org/0009-0000-7910-1995","affiliations":[{"raw_affiliation_string":"Deusto Institute of Technology, University of Deusto, Bilbao, Spain","institution_ids":["https://openalex.org/I136040515"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5076655619","display_name":"Igor Santos-Grueiro","orcid":null},"institutions":[{"id":"https://openalex.org/I162361429","display_name":"Mondragon Unibertsitatea","ror":"https://ror.org/00wvqgd19","country_code":"ES","type":"education","lineage":["https://openalex.org/I162361429"]}],"countries":["ES"],"is_corresponding":false,"raw_author_name":"Igor Santos-Grueiro","raw_affiliation_strings":["Faculty of Engineering, Mondragon University, Arrasate-Mondragon, Spain","HP Labs, Bristol, U.K"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Faculty of Engineering, Mondragon University, Arrasate-Mondragon, Spain","institution_ids":["https://openalex.org/I162361429"]},{"raw_affiliation_string":"HP Labs, Bristol, U.K","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5003633944","display_name":"Pablo G. Bringas","orcid":"https://orcid.org/0000-0003-3594-9534"},"institutions":[{"id":"https://openalex.org/I136040515","display_name":"Universidad de Deusto","ror":"https://ror.org/00ne6sr39","country_code":"ES","type":"education","lineage":["https://openalex.org/I136040515"]}],"countries":["ES"],"is_corresponding":false,"raw_author_name":"Pablo Garcia Bringas","raw_affiliation_strings":["Deusto Institute of Technology, University of Deusto, Bilbao, Spain"],"raw_orcid":"https://orcid.org/0000-0003-3594-9534","affiliations":[{"raw_affiliation_string":"Deusto Institute of Technology, University of Deusto, Bilbao, Spain","institution_ids":["https://openalex.org/I136040515"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":{"value":1850,"currency":"USD","value_usd":1850},"apc_paid":{"value":1850,"currency":"USD","value_usd":1850},"fwci":0.3263,"has_fulltext":true,"cited_by_count":2,"citation_normalized_percentile":{"value":0.62935809,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":94,"max":96},"biblio":{"volume":"11","issue":null,"first_page":"44725","last_page":"44740"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10054","display_name":"Parallel Computing and Optimization Techniques","score":0.9976000189781189,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10772","display_name":"Distributed systems and fault tolerance","score":0.9973000288009644,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/concurrency","display_name":"Concurrency","score":0.8839044570922852},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8687642812728882},{"id":"https://openalex.org/keywords/multiversion-concurrency-control","display_name":"Multiversion concurrency control","score":0.6114753484725952},{"id":"https://openalex.org/keywords/optimistic-concurrency-control","display_name":"Optimistic concurrency control","score":0.5557476878166199},{"id":"https://openalex.org/keywords/isolation","display_name":"Isolation (microbiology)","score":0.5217403173446655},{"id":"https://openalex.org/keywords/concurrency-control","display_name":"Concurrency control","score":0.48196861147880554},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.47828707098960876},{"id":"https://openalex.org/keywords/concurrent-computing","display_name":"Concurrent computing","score":0.42546606063842773},{"id":"https://openalex.org/keywords/non-lock-concurrency-control","display_name":"Non-lock concurrency control","score":0.4223445653915405},{"id":"https://openalex.org/keywords/distributed-computing","display_name":"Distributed computing","score":0.372275173664093},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.317638099193573},{"id":"https://openalex.org/keywords/distributed-concurrency-control","display_name":"Distributed concurrency control","score":0.2826788127422333},{"id":"https://openalex.org/keywords/database-transaction","display_name":"Database transaction","score":0.06908541917800903}],"concepts":[{"id":"https://openalex.org/C193702766","wikidata":"https://www.wikidata.org/wiki/Q1414548","display_name":"Concurrency","level":2,"score":0.8839044570922852},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8687642812728882},{"id":"https://openalex.org/C108744092","wikidata":"https://www.wikidata.org/wiki/Q93695","display_name":"Multiversion concurrency control","level":5,"score":0.6114753484725952},{"id":"https://openalex.org/C79240183","wikidata":"https://www.wikidata.org/wiki/Q1779327","display_name":"Optimistic concurrency control","level":5,"score":0.5557476878166199},{"id":"https://openalex.org/C2775941552","wikidata":"https://www.wikidata.org/wiki/Q25212305","display_name":"Isolation (microbiology)","level":2,"score":0.5217403173446655},{"id":"https://openalex.org/C84511453","wikidata":"https://www.wikidata.org/wiki/Q2914952","display_name":"Concurrency control","level":3,"score":0.48196861147880554},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.47828707098960876},{"id":"https://openalex.org/C150495011","wikidata":"https://www.wikidata.org/wiki/Q128392","display_name":"Concurrent computing","level":2,"score":0.42546606063842773},{"id":"https://openalex.org/C61912525","wikidata":"https://www.wikidata.org/wiki/Q7048952","display_name":"Non-lock concurrency control","level":5,"score":0.4223445653915405},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.372275173664093},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.317638099193573},{"id":"https://openalex.org/C208087996","wikidata":"https://www.wikidata.org/wiki/Q5283142","display_name":"Distributed concurrency control","level":4,"score":0.2826788127422333},{"id":"https://openalex.org/C75949130","wikidata":"https://www.wikidata.org/wiki/Q848010","display_name":"Database transaction","level":2,"score":0.06908541917800903},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C89423630","wikidata":"https://www.wikidata.org/wiki/Q7193","display_name":"Microbiology","level":1,"score":0.0}],"mesh":[],"locations_count":4,"locations":[{"id":"doi:10.1109/access.2023.3272833","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2023.3272833","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/10005208/10114930.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},{"id":"pmh:oai:ebiltegia.mondragon.edu:20.500.11984/6210","is_oa":true,"landing_page_url":"https://katalogoa.mondragon.edu/janium-bin/janium_login_opac.pl?find&amp;ficha_no=172985","pdf_url":"http://ebiltegia.mondragon.edu/xmlui/bitstream/20.500.11984/6210/3/When_Memory_Corruption_Met_Concurrency_Vulnerabilities_in_Concurrent_Programs.pdf","source":{"id":"https://openalex.org/S4377196532","display_name":"eRepository Mondragon University (Mondragon University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I162361429","host_organization_name":"Mondragon Unibertsitatea","host_organization_lineage":["https://openalex.org/I162361429"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Access Vol. 11. Pp. 44725-44740, 2023","raw_type":null},{"id":"pmh:oai:doaj.org/article:66b48cb06a804920adcd3557633df517","is_oa":true,"landing_page_url":"https://doaj.org/article/66b48cb06a804920adcd3557633df517","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Access, Vol 11, Pp 44725-44740 (2023)","raw_type":"article"},{"id":"pmh:oai:dsp.tecnalia.com:11556/11063","is_oa":true,"landing_page_url":"https://hdl.handle.net/11556/11063","pdf_url":null,"source":{"id":"https://openalex.org/S4306402037","display_name":"TECNALIA Publications (Fundaci\u00f3n TECNALIA Research & Innovation)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I4210113430","host_organization_name":"Tecnalia","host_organization_lineage":["https://openalex.org/I4210113430"],"host_organization_lineage_names":[],"type":"repository"},"license":"public-domain","license_id":"https://openalex.org/licenses/public-domain","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"journal article"}],"best_oa_location":{"id":"doi:10.1109/access.2023.3272833","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2023.3272833","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/10005208/10114930.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.8199999928474426}],"awards":[],"funders":[{"id":"https://openalex.org/F4320321705","display_name":"Eusko Jaurlaritza","ror":"https://ror.org/00pz2fp31"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4368232260.pdf","grobid_xml":"https://content.openalex.org/works/W4368232260.grobid-xml"},"referenced_works_count":63,"referenced_works":["https://openalex.org/W1480909796","https://openalex.org/W1534988187","https://openalex.org/W1972544179","https://openalex.org/W2025819261","https://openalex.org/W2046368282","https://openalex.org/W2078197548","https://openalex.org/W2082766667","https://openalex.org/W2101161997","https://openalex.org/W2109033563","https://openalex.org/W2111900492","https://openalex.org/W2112521545","https://openalex.org/W2117798902","https://openalex.org/W2137270184","https://openalex.org/W2139249028","https://openalex.org/W2148011508","https://openalex.org/W2153174073","https://openalex.org/W2153229512","https://openalex.org/W2159856414","https://openalex.org/W2166841005","https://openalex.org/W2167744164","https://openalex.org/W2514974017","https://openalex.org/W2606910946","https://openalex.org/W2756868382","https://openalex.org/W2794682558","https://openalex.org/W2799137521","https://openalex.org/W2887512784","https://openalex.org/W2903402038","https://openalex.org/W2927543040","https://openalex.org/W2951489206","https://openalex.org/W2962722502","https://openalex.org/W2964241064","https://openalex.org/W2968450123","https://openalex.org/W2979357014","https://openalex.org/W2979880065","https://openalex.org/W3000335052","https://openalex.org/W3011029566","https://openalex.org/W3016185124","https://openalex.org/W3151416809","https://openalex.org/W3174544859","https://openalex.org/W3186074728","https://openalex.org/W3195446863","https://openalex.org/W3195605733","https://openalex.org/W3204018925","https://openalex.org/W3207470659","https://openalex.org/W4206250901","https://openalex.org/W4226163636","https://openalex.org/W4235116491","https://openalex.org/W4239813889","https://openalex.org/W4241885541","https://openalex.org/W4243683024","https://openalex.org/W4249000722","https://openalex.org/W4251803824","https://openalex.org/W4281863035","https://openalex.org/W4284687346","https://openalex.org/W4313043010","https://openalex.org/W6635419144","https://openalex.org/W6639560864","https://openalex.org/W6696803032","https://openalex.org/W6743843626","https://openalex.org/W6765285382","https://openalex.org/W6781274470","https://openalex.org/W6794723050","https://openalex.org/W6795356390"],"related_works":["https://openalex.org/W2907808821","https://openalex.org/W2083731697","https://openalex.org/W1489494763","https://openalex.org/W2088566435","https://openalex.org/W2114661031","https://openalex.org/W2048419619","https://openalex.org/W2117242058","https://openalex.org/W4247918562","https://openalex.org/W2132511067","https://openalex.org/W2353507796"],"abstract_inverted_index":{"Concurrent":[0],"programs":[1,185],"are":[2,39,50,126],"widespread":[3],"in":[4,22,57,64,72,104,141,171,183],"modern":[5],"systems.":[6],"They":[7,60],"make":[8],"better":[9],"use":[10],"of":[11,20,24,68,86,180],"processor":[12],"resources":[13],"but":[14,96],"inevitably":[15],"introduce":[16],"a":[17,45,65,118,194],"new":[18,94],"set":[19],"problems":[21],"terms":[23],"reliability":[25],"and":[26,35,38,120,125,143,148,165,167,191,200],"security.":[27],"Concurrency":[28],"bugs":[29],"usually":[30,114],"lead":[31,109],"to":[32,101,110,173],"program":[33],"crashes":[34],"unexpected":[36],"behavior,":[37],"an":[40],"active":[41],"research":[42],"topic.":[43],"From":[44],"security":[46,112],"perspective,":[47],"concurrency":[48,87,129,139,153,162,181,206],"vulnerabilities":[49,100,113,140,182],"those":[51],"that":[52,89,108],"exhibit":[53],"harmful":[54],"behavior":[55],"exclusively":[56],"concurrent":[58],"executions.":[59],"can":[61],"take":[62],"place":[63],"diverse":[66],"range":[67],"environments,":[69],"such":[70],"as":[71,128],"operating":[73],"system":[74,77],"kernels,":[75],"file":[76],"operations,":[78],"or":[79],"general-purpose":[80],"multithreaded":[81],"programs.":[82],"A":[83],"particular":[84],"characteristic":[85],"is":[88],"it":[90],"not":[91],"only":[92],"introduces":[93],"problems,":[95],"also":[97],"enables":[98],"traditional":[99],"be":[102],"triggered":[103],"concurrent-specific":[105],"ways.":[106],"Those":[107],"dangerous":[111],"cause":[115],"memory":[116,130,154,207],"corruption,":[117],"strong":[119],"flexible":[121],"primitive":[122],"for":[123],"exploitation,":[124],"known":[127],"corruption":[131,155],"vulnerabilities.":[132,156,174],"In":[133],"this":[134],"paper,":[135],"we":[136,176,198],"systematically":[137],"analyze":[138,199],"C":[142],"C++":[144],"programs,":[145],"their":[146,149],"exploitation":[147],"detection,":[150,166],"focusing":[151],"on":[152,161],"We":[157],"organize":[158],"previous":[159],"work":[160],"bug":[163],"characteristics":[164],"highlight":[168],"the":[169,178,188],"differences":[170],"relation":[172],"Then,":[175],"examine":[177],"existence":[179],"real-world":[184],"by":[186],"searching":[187],"CVE":[189],"database":[190],"point":[192],"out":[193],"growing":[195],"trend.":[196],"Further,":[197],"compare":[201],"existing":[202],"detection":[203],"approaches":[204],"towards":[205],"corruption.":[208]},"counts_by_year":[{"year":2023,"cited_by_count":2}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2023-05-05T00:00:00"}
