{"id":"https://openalex.org/W2114926976","doi":"https://doi.org/10.1109/iwsess.2009.5068460","title":"Improving perimeter security with security-oriented program transformations","display_name":"Improving perimeter security with security-oriented program transformations","publication_year":2009,"publication_date":"2009-05-01","ids":{"openalex":"https://openalex.org/W2114926976","doi":"https://doi.org/10.1109/iwsess.2009.5068460","mag":"2114926976"},"language":"en","primary_location":{"id":"doi:10.1109/iwsess.2009.5068460","is_oa":false,"landing_page_url":"https://doi.org/10.1109/iwsess.2009.5068460","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2009 ICSE Workshop on Software Engineering for Secure Systems","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5060527236","display_name":"Munawar Hafiz","orcid":null},"institutions":[{"id":"https://openalex.org/I157725225","display_name":"University of Illinois Urbana-Champaign","ror":"https://ror.org/047426m28","country_code":"US","type":"education","lineage":["https://openalex.org/I157725225"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Munawar Hafiz","raw_affiliation_strings":["University of Illinois, Urbana-Champaign, Urbana, IL, USA","University of Illinois at Urbana-Champaign, 61801, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University of Illinois, Urbana-Champaign, Urbana, IL, USA","institution_ids":["https://openalex.org/I157725225"]},{"raw_affiliation_string":"University of Illinois at Urbana-Champaign, 61801, USA","institution_ids":["https://openalex.org/I157725225"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5105988194","display_name":"Ralph E. Johnson","orcid":null},"institutions":[{"id":"https://openalex.org/I157725225","display_name":"University of Illinois Urbana-Champaign","ror":"https://ror.org/047426m28","country_code":"US","type":"education","lineage":["https://openalex.org/I157725225"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Ralph E. Johnson","raw_affiliation_strings":["University of Illinois, Urbana-Champaign, Urbana, IL, USA","University of Illinois at Urbana-Champaign, 61801, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University of Illinois, Urbana-Champaign, Urbana, IL, USA","institution_ids":["https://openalex.org/I157725225"]},{"raw_affiliation_string":"University of Illinois at Urbana-Champaign, 61801, USA","institution_ids":["https://openalex.org/I157725225"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":1.8119,"has_fulltext":false,"cited_by_count":14,"citation_normalized_percentile":{"value":0.87855131,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"61","last_page":"67"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9976999759674072,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9973999857902527,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.778757631778717},{"id":"https://openalex.org/keywords/authorization","display_name":"Authorization","score":0.6334323883056641},{"id":"https://openalex.org/keywords/transformation","display_name":"Transformation (genetics)","score":0.6140010356903076},{"id":"https://openalex.org/keywords/authentication","display_name":"Authentication (law)","score":0.5812552571296692},{"id":"https://openalex.org/keywords/computer-security-model","display_name":"Computer security model","score":0.5418792963027954},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.498124361038208},{"id":"https://openalex.org/keywords/java","display_name":"Java","score":0.4694870114326477},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.32114434242248535}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.778757631778717},{"id":"https://openalex.org/C108759981","wikidata":"https://www.wikidata.org/wiki/Q788590","display_name":"Authorization","level":2,"score":0.6334323883056641},{"id":"https://openalex.org/C204241405","wikidata":"https://www.wikidata.org/wiki/Q461499","display_name":"Transformation (genetics)","level":3,"score":0.6140010356903076},{"id":"https://openalex.org/C148417208","wikidata":"https://www.wikidata.org/wiki/Q4825882","display_name":"Authentication (law)","level":2,"score":0.5812552571296692},{"id":"https://openalex.org/C121822524","wikidata":"https://www.wikidata.org/wiki/Q5157582","display_name":"Computer security model","level":2,"score":0.5418792963027954},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.498124361038208},{"id":"https://openalex.org/C548217200","wikidata":"https://www.wikidata.org/wiki/Q251","display_name":"Java","level":2,"score":0.4694870114326477},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.32114434242248535},{"id":"https://openalex.org/C55493867","wikidata":"https://www.wikidata.org/wiki/Q7094","display_name":"Biochemistry","level":1,"score":0.0},{"id":"https://openalex.org/C104317684","wikidata":"https://www.wikidata.org/wiki/Q7187","display_name":"Gene","level":2,"score":0.0},{"id":"https://openalex.org/C185592680","wikidata":"https://www.wikidata.org/wiki/Q2329","display_name":"Chemistry","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/iwsess.2009.5068460","is_oa":false,"landing_page_url":"https://doi.org/10.1109/iwsess.2009.5068460","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2009 ICSE Workshop on Software Engineering for Secure Systems","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.6700000166893005,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[{"id":"https://openalex.org/F4320306084","display_name":"U.S. Department of Energy","ror":"https://ror.org/01bj3aw27"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":19,"referenced_works":["https://openalex.org/W575472869","https://openalex.org/W652748195","https://openalex.org/W1498770298","https://openalex.org/W1504272268","https://openalex.org/W1514298952","https://openalex.org/W1528098570","https://openalex.org/W1531064568","https://openalex.org/W1600776630","https://openalex.org/W1980261457","https://openalex.org/W2029414465","https://openalex.org/W2066998899","https://openalex.org/W2114926976","https://openalex.org/W2131441032","https://openalex.org/W2131687992","https://openalex.org/W2153887189","https://openalex.org/W2164791598","https://openalex.org/W2174721749","https://openalex.org/W2622427009","https://openalex.org/W4254691308"],"related_works":["https://openalex.org/W2749690376","https://openalex.org/W4281673905","https://openalex.org/W2997587123","https://openalex.org/W2788563018","https://openalex.org/W2786317006","https://openalex.org/W3042948800","https://openalex.org/W3206385231","https://openalex.org/W4235015634","https://openalex.org/W4285339164","https://openalex.org/W1566482460"],"abstract_inverted_index":{"A":[0],"security-oriented":[1,24,56],"program":[2,25,37,57,79],"transformation":[3,80],"maps":[4],"programs":[5,17],"to":[6,15,42,62,94],"security-augmented":[7],"programs,":[8],"i.e.":[9],"it":[10],"introduces":[11],"a":[12,29,67],"protection":[13],"mechanism":[14],"make":[16],"more":[18],"secure.":[19],"Our":[20],"previous":[21],"work":[22],"defined":[23],"transformations":[26,32,38,58,90],"[6],":[27],"introduced":[28],"catalog":[30],"of":[31,47,66],"[8],":[33],"and":[34,74,98],"showed":[35],"how":[36,55],"could":[39,59,91],"be":[40,60,92],"applied":[41],"systematically":[43],"eradicate":[44],"various":[45],"types":[46],"data":[48],"injection":[49],"attacks":[50],"[9].":[51],"This":[52],"paper":[53,84],"shows":[54],"used":[61],"improve":[63],"the":[64,89],"security":[65],"system's":[68],"perimeter":[69],"by":[70],"introducing":[71],"authentication,":[72],"authorization":[73,99],"input":[75],"validation":[76],"components.":[77],"The":[78],"examples":[81],"in":[82],"this":[83],"are":[85],"JAVA":[86],"specific,":[87],"but":[88],"implemented":[93],"use":[95],"other":[96],"authentication":[97],"frameworks.":[100]},"counts_by_year":[{"year":2021,"cited_by_count":1},{"year":2019,"cited_by_count":1},{"year":2018,"cited_by_count":1},{"year":2017,"cited_by_count":2},{"year":2016,"cited_by_count":2},{"year":2015,"cited_by_count":2},{"year":2014,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}