{"id":"https://openalex.org/W2937448485","doi":"https://doi.org/10.1109/icait.2018.8686548","title":"CPGVA: Code Property Graph based Vulnerability Analysis by Deep Learning","display_name":"CPGVA: Code Property Graph based Vulnerability Analysis by Deep Learning","publication_year":2018,"publication_date":"2018-08-01","ids":{"openalex":"https://openalex.org/W2937448485","doi":"https://doi.org/10.1109/icait.2018.8686548","mag":"2937448485"},"language":"en","primary_location":{"id":"doi:10.1109/icait.2018.8686548","is_oa":false,"landing_page_url":"https://doi.org/10.1109/icait.2018.8686548","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2018 10th International Conference on Advanced Infocomm Technology (ICAIT)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5100423398","display_name":"Xiaomeng Wang","orcid":"https://orcid.org/0000-0002-7591-0127"},"institutions":[{"id":"https://openalex.org/I4210160629","display_name":"China Information Technology Security Evaluation Center","ror":"https://ror.org/053cexp66","country_code":"CN","type":"government","lineage":["https://openalex.org/I4210160629"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Wang Xiaomeng","raw_affiliation_strings":["China Information Technology Security Evaluation Center, Beijing, China"],"affiliations":[{"raw_affiliation_string":"China Information Technology Security Evaluation Center, Beijing, China","institution_ids":["https://openalex.org/I4210160629"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100375792","display_name":"Tao Zhang","orcid":"https://orcid.org/0000-0002-2980-6281"},"institutions":[{"id":"https://openalex.org/I4210160629","display_name":"China Information Technology Security Evaluation Center","ror":"https://ror.org/053cexp66","country_code":"CN","type":"government","lineage":["https://openalex.org/I4210160629"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Zhang Tao","raw_affiliation_strings":["China Information Technology Security Evaluation Center, Beijing, China"],"affiliations":[{"raw_affiliation_string":"China Information Technology Security Evaluation Center, Beijing, China","institution_ids":["https://openalex.org/I4210160629"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5081590846","display_name":"Runpu Wu","orcid":null},"institutions":[{"id":"https://openalex.org/I4210160629","display_name":"China Information Technology Security Evaluation Center","ror":"https://ror.org/053cexp66","country_code":"CN","type":"government","lineage":["https://openalex.org/I4210160629"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Wu Runpu","raw_affiliation_strings":["China Information Technology Security Evaluation Center, Beijing, China"],"affiliations":[{"raw_affiliation_string":"China Information Technology Security Evaluation Center, Beijing, China","institution_ids":["https://openalex.org/I4210160629"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101481528","display_name":"Xin Wei","orcid":"https://orcid.org/0000-0002-5849-6462"},"institutions":[{"id":"https://openalex.org/I4210160629","display_name":"China Information Technology Security Evaluation Center","ror":"https://ror.org/053cexp66","country_code":"CN","type":"government","lineage":["https://openalex.org/I4210160629"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xin Wei","raw_affiliation_strings":["China Information Technology Security Evaluation Center, Beijing, China"],"affiliations":[{"raw_affiliation_string":"China Information Technology Security Evaluation Center, Beijing, China","institution_ids":["https://openalex.org/I4210160629"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5060479278","display_name":"Hou Changyu","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Hou Changyu","raw_affiliation_strings":["China Anhua Technology Limited Company, Beijing, China"],"affiliations":[{"raw_affiliation_string":"China Anhua Technology Limited Company, Beijing, China","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5100423398"],"corresponding_institution_ids":["https://openalex.org/I4210160629"],"apc_list":null,"apc_paid":null,"fwci":3.1415,"has_fulltext":false,"cited_by_count":34,"citation_normalized_percentile":{"value":0.93683445,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":93,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"184","last_page":"188"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9987000226974487,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.996999979019165,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7424173355102539},{"id":"https://openalex.org/keywords/source-code","display_name":"Source code","score":0.6998969912528992},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.6622292399406433},{"id":"https://openalex.org/keywords/vulnerability-assessment","display_name":"Vulnerability assessment","score":0.6256038546562195},{"id":"https://openalex.org/keywords/deep-learning","display_name":"Deep learning","score":0.5263867378234863},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.5235183835029602},{"id":"https://openalex.org/keywords/graph","display_name":"Graph","score":0.5059885382652283},{"id":"https://openalex.org/keywords/capability-maturity-model","display_name":"Capability Maturity Model","score":0.4846280515193939},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.4735535681247711},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.453377902507782},{"id":"https://openalex.org/keywords/identification","display_name":"Identification (biology)","score":0.44557052850723267},{"id":"https://openalex.org/keywords/secure-coding","display_name":"Secure coding","score":0.42699044942855835},{"id":"https://openalex.org/keywords/property","display_name":"Property (philosophy)","score":0.4220763146877289},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.39162132143974304},{"id":"https://openalex.org/keywords/data-science","display_name":"Data science","score":0.37937504053115845},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.3735836446285248},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.3596940040588379},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.34152740240097046},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.32955944538116455},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.27128395438194275},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.1434505581855774}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7424173355102539},{"id":"https://openalex.org/C43126263","wikidata":"https://www.wikidata.org/wiki/Q128751","display_name":"Source code","level":2,"score":0.6998969912528992},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.6622292399406433},{"id":"https://openalex.org/C167063184","wikidata":"https://www.wikidata.org/wiki/Q1400839","display_name":"Vulnerability assessment","level":3,"score":0.6256038546562195},{"id":"https://openalex.org/C108583219","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep learning","level":2,"score":0.5263867378234863},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.5235183835029602},{"id":"https://openalex.org/C132525143","wikidata":"https://www.wikidata.org/wiki/Q141488","display_name":"Graph","level":2,"score":0.5059885382652283},{"id":"https://openalex.org/C85890633","wikidata":"https://www.wikidata.org/wiki/Q929673","display_name":"Capability Maturity Model","level":3,"score":0.4846280515193939},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.4735535681247711},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.453377902507782},{"id":"https://openalex.org/C116834253","wikidata":"https://www.wikidata.org/wiki/Q2039217","display_name":"Identification (biology)","level":2,"score":0.44557052850723267},{"id":"https://openalex.org/C22680326","wikidata":"https://www.wikidata.org/wiki/Q7444867","display_name":"Secure coding","level":5,"score":0.42699044942855835},{"id":"https://openalex.org/C189950617","wikidata":"https://www.wikidata.org/wiki/Q937228","display_name":"Property (philosophy)","level":2,"score":0.4220763146877289},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.39162132143974304},{"id":"https://openalex.org/C2522767166","wikidata":"https://www.wikidata.org/wiki/Q2374463","display_name":"Data science","level":1,"score":0.37937504053115845},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.3735836446285248},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.3596940040588379},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.34152740240097046},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.32955944538116455},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.27128395438194275},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.1434505581855774},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.0},{"id":"https://openalex.org/C111472728","wikidata":"https://www.wikidata.org/wiki/Q9471","display_name":"Epistemology","level":1,"score":0.0},{"id":"https://openalex.org/C137176749","wikidata":"https://www.wikidata.org/wiki/Q4105337","display_name":"Psychological resilience","level":2,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C15744967","wikidata":"https://www.wikidata.org/wiki/Q9418","display_name":"Psychology","level":0,"score":0.0},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C59822182","wikidata":"https://www.wikidata.org/wiki/Q441","display_name":"Botany","level":1,"score":0.0},{"id":"https://openalex.org/C542102704","wikidata":"https://www.wikidata.org/wiki/Q183257","display_name":"Psychotherapist","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/icait.2018.8686548","is_oa":false,"landing_page_url":"https://doi.org/10.1109/icait.2018.8686548","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2018 10th International Conference on Advanced Infocomm Technology (ICAIT)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Industry, innovation and infrastructure","score":0.4699999988079071,"id":"https://metadata.un.org/sdg/9"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":16,"referenced_works":["https://openalex.org/W47648955","https://openalex.org/W1992114977","https://openalex.org/W2028820179","https://openalex.org/W2064675550","https://openalex.org/W2072128103","https://openalex.org/W2150341604","https://openalex.org/W2297419069","https://openalex.org/W2402619042","https://openalex.org/W2511803001","https://openalex.org/W2734713605","https://openalex.org/W2743517242","https://openalex.org/W3101228802","https://openalex.org/W4205947740","https://openalex.org/W4231109964","https://openalex.org/W6601909726","https://openalex.org/W6785453403"],"related_works":["https://openalex.org/W2141388993","https://openalex.org/W1978034799","https://openalex.org/W2999607548","https://openalex.org/W2292865721","https://openalex.org/W4319165526","https://openalex.org/W2956597637","https://openalex.org/W2044639210","https://openalex.org/W2469491375","https://openalex.org/W2293245356","https://openalex.org/W4225160120"],"abstract_inverted_index":{"The":[0,32],"vast":[1],"majority":[2],"of":[3,12,19,26,36,44,51,62,72,80,86,114,130,159,171],"security":[4,27,75],"breaches":[5],"encountered":[6],"recent":[7],"years":[8],"are":[9],"direct":[10],"result":[11],"insecure":[13],"source":[14,30,110,163],"code.":[15],"Therefore,":[16],"the":[17,24,41,45,49,60,69,73,78,84,143,157,169],"protection":[18],"software":[20],"critically":[21],"depends":[22],"on":[23,40,112,122],"identification":[25],"defect":[28,165],"in":[29,179],"cod.":[31],"development":[33,61,85],"and":[34,48,92,134,188],"progress":[35],"relative":[37],"technologies":[38],"depend":[39],"analysts'":[42],"understanding":[43],"safety":[46],"issues":[47],"accumulation":[50],"long-term":[52],"experience,":[53],"which":[54,140],"provides":[55],"a":[56],"technical":[57],"basis":[58,113],"for":[59,99],"vulnerability":[63,100,149],"analysis,":[64],"but":[65],"difficult":[66],"to":[67,108],"meet":[68],"growing":[70],"demand":[71],"code":[74,111,115,145,164],"industry.":[76],"With":[77],"maturity":[79],"big":[81],"data":[82,93],"technology,":[83],"natural":[87],"language":[88],"processing,":[89],"deep":[90,105,152,161],"learning":[91,106,153,162],"mining":[94],"technology":[95],"provided":[96],"new":[97],"ideas":[98],"analysis.":[101],"This":[102],"paper":[103],"exploited":[104],"methods":[107],"review":[109],"property":[116,146],"graph.":[117],"We":[118],"implemented":[119],"our":[120],"approach":[121],"public":[123],"datasets":[124],"Software":[125],"Assurance":[126],"Reference":[127],"Dataset":[128],"(SARD)":[129],"C/C++":[131],"command":[132],"injection":[133],"compared":[135],"with":[136,168],"current":[137],"popular":[138],"methods,":[139],"proved":[141],"that":[142],"proposed":[144],"graph":[147],"based":[148],"analysis":[150,166],"by":[151],"(CPGVA)":[154],"method":[155,167],"outper-formed":[156],"state":[158],"art":[160],"improvement":[170],"about":[172],"4.5%,":[173],"4.2%,":[174],"1.7%,":[175],"7.9%,":[176],"8.1%":[177],"respectively":[178],"femeasure,":[180],"precision,":[181],"false":[182,189],"positive":[183,186],"rate,":[184],"true":[185],"rate":[187],"negative":[190],"rate.":[191]},"counts_by_year":[{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":9},{"year":2023,"cited_by_count":7},{"year":2022,"cited_by_count":7},{"year":2021,"cited_by_count":2},{"year":2020,"cited_by_count":6}],"updated_date":"2026-02-25T23:00:34.991745","created_date":"2025-10-10T00:00:00"}