{"id":"https://openalex.org/W4413680167","doi":"https://doi.org/10.1109/csr64739.2025.11130068","title":"Metamorphic Relation Prediction for Security Vulnerability Testing of Online Banking Applications","display_name":"Metamorphic Relation Prediction for Security Vulnerability Testing of Online Banking Applications","publication_year":2025,"publication_date":"2025-08-04","ids":{"openalex":"https://openalex.org/W4413680167","doi":"https://doi.org/10.1109/csr64739.2025.11130068"},"language":"en","primary_location":{"id":"doi:10.1109/csr64739.2025.11130068","is_oa":false,"landing_page_url":"https://doi.org/10.1109/csr64739.2025.11130068","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2025 IEEE International Conference on Cyber Security and Resilience (CSR)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5059660557","display_name":"Karishma Rahman","orcid":null},"institutions":[{"id":"https://openalex.org/I23732399","display_name":"Montana State University","ror":"https://ror.org/02w0trx84","country_code":"US","type":"education","lineage":["https://openalex.org/I23732399","https://openalex.org/I4210126032"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Karishma Rahman","raw_affiliation_strings":["Montana State University,Gianforte School of Computing,Bozeman,MT,USA"],"affiliations":[{"raw_affiliation_string":"Montana State University,Gianforte School of Computing,Bozeman,MT,USA","institution_ids":["https://openalex.org/I23732399"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5008975618","display_name":"Ann Marie Reinhold","orcid":"https://orcid.org/0000-0003-0411-3486"},"institutions":[{"id":"https://openalex.org/I23732399","display_name":"Montana State University","ror":"https://ror.org/02w0trx84","country_code":"US","type":"education","lineage":["https://openalex.org/I23732399","https://openalex.org/I4210126032"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Ann Marie Reinhold","raw_affiliation_strings":["Montana State University,Gianforte School of Computing,Bozeman,MT,USA"],"affiliations":[{"raw_affiliation_string":"Montana State University,Gianforte School of Computing,Bozeman,MT,USA","institution_ids":["https://openalex.org/I23732399"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5041998052","display_name":"Clemente Izurieta","orcid":"https://orcid.org/0000-0002-1002-3906"},"institutions":[{"id":"https://openalex.org/I23732399","display_name":"Montana State University","ror":"https://ror.org/02w0trx84","country_code":"US","type":"education","lineage":["https://openalex.org/I23732399","https://openalex.org/I4210126032"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Clemente Izurieta","raw_affiliation_strings":["Montana State University,Gianforte School of Computing,Bozeman,MT,USA"],"affiliations":[{"raw_affiliation_string":"Montana State University,Gianforte School of Computing,Bozeman,MT,USA","institution_ids":["https://openalex.org/I23732399"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5059660557"],"corresponding_institution_ids":["https://openalex.org/I23732399"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.30303531,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"226","last_page":"233"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.8363000154495239,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.8363000154495239,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11719","display_name":"Data Quality and Management","score":0.7336000204086304,"subfield":{"id":"https://openalex.org/subfields/1803","display_name":"Management Science and Operations Research"},"field":{"id":"https://openalex.org/fields/18","display_name":"Decision Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.6672999858856201,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.7068955898284912},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5623109936714172},{"id":"https://openalex.org/keywords/relation","display_name":"Relation (database)","score":0.5502087473869324},{"id":"https://openalex.org/keywords/vulnerability-assessment","display_name":"Vulnerability assessment","score":0.44167560338974},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.35773229598999023},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.20859017968177795},{"id":"https://openalex.org/keywords/psychology","display_name":"Psychology","score":0.07558390498161316}],"concepts":[{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.7068955898284912},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5623109936714172},{"id":"https://openalex.org/C25343380","wikidata":"https://www.wikidata.org/wiki/Q277521","display_name":"Relation (database)","level":2,"score":0.5502087473869324},{"id":"https://openalex.org/C167063184","wikidata":"https://www.wikidata.org/wiki/Q1400839","display_name":"Vulnerability assessment","level":3,"score":0.44167560338974},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.35773229598999023},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.20859017968177795},{"id":"https://openalex.org/C15744967","wikidata":"https://www.wikidata.org/wiki/Q9418","display_name":"Psychology","level":0,"score":0.07558390498161316},{"id":"https://openalex.org/C542102704","wikidata":"https://www.wikidata.org/wiki/Q183257","display_name":"Psychotherapist","level":1,"score":0.0},{"id":"https://openalex.org/C137176749","wikidata":"https://www.wikidata.org/wiki/Q4105337","display_name":"Psychological resilience","level":2,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/csr64739.2025.11130068","is_oa":false,"landing_page_url":"https://doi.org/10.1109/csr64739.2025.11130068","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2025 IEEE International Conference on Cyber Security and Resilience (CSR)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Decent work and economic growth","score":0.4300000071525574,"id":"https://metadata.un.org/sdg/8"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":26,"referenced_works":["https://openalex.org/W60817130","https://openalex.org/W1498436455","https://openalex.org/W1573286687","https://openalex.org/W1985205072","https://openalex.org/W2001914359","https://openalex.org/W2005662348","https://openalex.org/W2007632507","https://openalex.org/W2041713059","https://openalex.org/W2096352448","https://openalex.org/W2106860490","https://openalex.org/W2131730994","https://openalex.org/W2142049935","https://openalex.org/W2158698691","https://openalex.org/W2162036145","https://openalex.org/W2204102791","https://openalex.org/W2324595780","https://openalex.org/W2428841090","https://openalex.org/W2964191048","https://openalex.org/W2966181603","https://openalex.org/W3088599576","https://openalex.org/W4238983745","https://openalex.org/W4248123122","https://openalex.org/W4316657830","https://openalex.org/W4386278847","https://openalex.org/W4403646757","https://openalex.org/W4404006627"],"related_works":["https://openalex.org/W1883246888","https://openalex.org/W2370114625","https://openalex.org/W1756374135","https://openalex.org/W2062873522","https://openalex.org/W2947584067","https://openalex.org/W2280562859","https://openalex.org/W230721595","https://openalex.org/W3157230915","https://openalex.org/W1496728123","https://openalex.org/W2789975780"],"abstract_inverted_index":{"Software":[0],"is":[1,11,37],"essential":[2],"in":[3,23,33],"modern":[4],"systems,":[5],"and":[6,39,47,59,81],"reliable":[7],"testing":[8],"of":[9,116,139],"it":[10],"crucial":[12],"due":[13],"to":[14,20,109],"the":[15,21,97,136],"Oracle":[16],"problem,":[17],"which":[18,67],"refers":[19],"difficulties":[22],"distinguishing":[24],"correct":[25],"software":[26],"behavior.":[27],"Testing":[28,51],"outputs":[29,61],"from":[30,96],"various":[31],"inputs":[32,58],"online":[34,91,144],"banking":[35,92,145],"applications":[36,93],"complex":[38],"costly,":[40],"making":[41],"full":[42],"automation":[43],"necessary":[44],"for":[45,90,120,142],"efficiency":[46],"cost":[48],"reduction.":[49],"Metamorphic":[50,64],"(MT)":[52],"addresses":[53],"this":[54,140],"by":[55],"generating":[56],"test":[57],"evaluating":[60],"based":[62],"on":[63],"Relations":[65],"(MRs),":[66],"dictate":[68],"output":[69],"changes":[70],"with":[71,94],"input":[72],"modifications.":[73],"However,":[74],"identifying":[75],"MRs":[76,119,128],"has":[77],"traditionally":[78],"been":[79],"manual":[80],"time-consuming.":[82],"This":[83],"paper":[84],"presents":[85],"an":[86],"automated":[87,148],"MT":[88],"approach":[89,141],"vulnerabilities":[95],"OWASP":[98],"top":[99],"10.":[100],"We":[101],"created":[102],"a":[103,114],"prediction":[104,130],"model":[105],"using":[106],"graph":[107],"representations":[108],"automate":[110],"MR":[111],"detection,":[112],"providing":[113],"catalog":[115],"8":[117],"system-agnostic":[118],"enhanced":[121],"security":[122,146],"testing.":[123,150],"Results":[124],"indicate":[125],"that":[126],"most":[127],"achieve":[129],"scores":[131],"over":[132],"$80":[133],"\\%$,":[134],"demonstrating":[135],"practical":[137],"effectiveness":[138],"improving":[143],"through":[147],"metamorphic":[149]},"counts_by_year":[],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}