{"id":"https://openalex.org/W2562680154","doi":"https://doi.org/10.1109/ladc.2016.32","title":"Experimenting Machine Learning Techniques to Predict Vulnerabilities","display_name":"Experimenting Machine Learning Techniques to Predict Vulnerabilities","publication_year":2016,"publication_date":"2016-10-01","ids":{"openalex":"https://openalex.org/W2562680154","doi":"https://doi.org/10.1109/ladc.2016.32","mag":"2562680154"},"language":"en","primary_location":{"id":"doi:10.1109/ladc.2016.32","is_oa":false,"landing_page_url":"https://doi.org/10.1109/ladc.2016.32","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2016 Seventh Latin-American Symposium on Dependable Computing (LADC)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5048235576","display_name":"Henrique Alves","orcid":null},"institutions":[{"id":"https://openalex.org/I79889768","display_name":"Universidade Federal de Alagoas","ror":"https://ror.org/00dna7t83","country_code":"BR","type":"education","lineage":["https://openalex.org/I79889768"]}],"countries":["BR"],"is_corresponding":true,"raw_author_name":"Henrique Alves","raw_affiliation_strings":["Instituto de Computa\u00e7\u00e3o, Universidade Federal de Alagoas, Macei\u00f3, AL, Brazil"],"affiliations":[{"raw_affiliation_string":"Instituto de Computa\u00e7\u00e3o, Universidade Federal de Alagoas, Macei\u00f3, AL, Brazil","institution_ids":["https://openalex.org/I79889768"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5090231856","display_name":"Baldo\u00edno Fonseca","orcid":"https://orcid.org/0000-0002-0730-0319"},"institutions":[{"id":"https://openalex.org/I79889768","display_name":"Universidade Federal de Alagoas","ror":"https://ror.org/00dna7t83","country_code":"BR","type":"education","lineage":["https://openalex.org/I79889768"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"Baldoino Fonseca","raw_affiliation_strings":["Instituto de Computa\u00e7\u00e3o, Universidade Federal de Alagoas, Macei\u00f3, AL, Brazil"],"affiliations":[{"raw_affiliation_string":"Instituto de Computa\u00e7\u00e3o, Universidade Federal de Alagoas, Macei\u00f3, AL, Brazil","institution_ids":["https://openalex.org/I79889768"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5030619096","display_name":"Nuno Antunes","orcid":"https://orcid.org/0000-0002-6044-4012"},"institutions":[{"id":"https://openalex.org/I76903346","display_name":"University of Coimbra","ror":"https://ror.org/04z8k9a98","country_code":"PT","type":"education","lineage":["https://openalex.org/I76903346"]}],"countries":["PT"],"is_corresponding":false,"raw_author_name":"Nuno Antunes","raw_affiliation_strings":["CISUC, University of Coimbra, Coimbra, Portugal"],"affiliations":[{"raw_affiliation_string":"CISUC, University of Coimbra, Coimbra, Portugal","institution_ids":["https://openalex.org/I76903346"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5048235576"],"corresponding_institution_ids":["https://openalex.org/I79889768"],"apc_list":null,"apc_paid":null,"fwci":5.3078,"has_fulltext":false,"cited_by_count":37,"citation_normalized_percentile":{"value":0.95868606,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"151","last_page":"156"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9807000160217285,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8333227634429932},{"id":"https://openalex.org/keywords/source-code","display_name":"Source code","score":0.6072156429290771},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.565396249294281},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.5579518675804138},{"id":"https://openalex.org/keywords/representativeness-heuristic","display_name":"Representativeness heuristic","score":0.537047803401947},{"id":"https://openalex.org/keywords/precision-and-recall","display_name":"Precision and recall","score":0.5161455869674683},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.4940112233161926},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.4910576343536377},{"id":"https://openalex.org/keywords/software-bug","display_name":"Software bug","score":0.4527062773704529},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.4369068741798401},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.4321097433567047},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.10794156789779663},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.08463653922080994}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8333227634429932},{"id":"https://openalex.org/C43126263","wikidata":"https://www.wikidata.org/wiki/Q128751","display_name":"Source code","level":2,"score":0.6072156429290771},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.565396249294281},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.5579518675804138},{"id":"https://openalex.org/C37381756","wikidata":"https://www.wikidata.org/wiki/Q20203288","display_name":"Representativeness heuristic","level":2,"score":0.537047803401947},{"id":"https://openalex.org/C81669768","wikidata":"https://www.wikidata.org/wiki/Q2359161","display_name":"Precision and recall","level":2,"score":0.5161455869674683},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.4940112233161926},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.4910576343536377},{"id":"https://openalex.org/C1009929","wikidata":"https://www.wikidata.org/wiki/Q179550","display_name":"Software bug","level":3,"score":0.4527062773704529},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.4369068741798401},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.4321097433567047},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.10794156789779663},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.08463653922080994},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C15744967","wikidata":"https://www.wikidata.org/wiki/Q9418","display_name":"Psychology","level":0,"score":0.0},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C77805123","wikidata":"https://www.wikidata.org/wiki/Q161272","display_name":"Social psychology","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/ladc.2016.32","is_oa":false,"landing_page_url":"https://doi.org/10.1109/ladc.2016.32","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2016 Seventh Latin-American Symposium on Dependable Computing (LADC)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.41999998688697815,"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":21,"referenced_works":["https://openalex.org/W46659105","https://openalex.org/W649920412","https://openalex.org/W1511682410","https://openalex.org/W1558012247","https://openalex.org/W1968572451","https://openalex.org/W1997236144","https://openalex.org/W2004758929","https://openalex.org/W2015729052","https://openalex.org/W2043837581","https://openalex.org/W2047314534","https://openalex.org/W2055765785","https://openalex.org/W2067148378","https://openalex.org/W2137789775","https://openalex.org/W2159610968","https://openalex.org/W2160958420","https://openalex.org/W2565690877","https://openalex.org/W2603519869","https://openalex.org/W3141989311","https://openalex.org/W6602002561","https://openalex.org/W6621439833","https://openalex.org/W6735806904"],"related_works":["https://openalex.org/W3159631231","https://openalex.org/W4306248409","https://openalex.org/W4211213551","https://openalex.org/W2332151799","https://openalex.org/W2062728131","https://openalex.org/W1824075546","https://openalex.org/W2103926897","https://openalex.org/W2101250918","https://openalex.org/W4376143407","https://openalex.org/W2945475639"],"abstract_inverted_index":{"Software":[0],"metrics":[1,15],"can":[2,45,114,133],"be":[3,115],"used":[4,18,105,116],"as":[5],"a":[6,78],"indicator":[7],"of":[8,11,40,87,99,130,137,163],"the":[9,37,41,43,88,112,121,131,138,142,156,161],"presence":[10],"software":[12],"vulnerabilities.":[13,29],"These":[14],"have":[16],"been":[17],"with":[19,97,145],"machine":[20],"learning":[21],"to":[22,27,35,83,117,159],"predict":[23,134],"source":[24,107],"code":[25],"prone":[26],"contain":[28],"Although":[30],"it":[31],"is":[32,125],"not":[33,155],"possible":[34],"find":[36],"exact":[38],"location":[39],"flaws,":[42],"models":[44],"show":[46,110],"which":[47,64,119],"components":[48],"require":[49],"more":[50],"attention":[51],"during":[52],"inspections":[53],"and":[54,70,80,152],"testing.":[55],"Each":[56],"new":[57],"technique":[58],"uses":[59],"his":[60],"own":[61],"evaluation":[62],"dataset,":[63,143],"many":[65],"times":[66],"has":[67],"limited":[68],"size":[69],"representativeness.":[71],"In":[72],"this":[73,164],"experience":[74],"report,":[75],"we":[76],"use":[77],"large":[79],"representative":[81],"dataset":[82,94,113],"evaluate":[84],"several":[85],"state":[86],"art":[89],"vulnerability":[90],"prediction":[91],"techniques.":[92,123],"This":[93],"was":[95],"built":[96],"information":[98],"2186":[100],"vulnerabilities":[101,139],"from":[102],"five":[103],"widely":[104],"open":[106],"projects.":[108],"Results":[109],"that":[111,128],"distinguish":[118],"are":[120,154],"best":[122],"It":[124],"also":[126],"shown":[127],"some":[129],"techniques":[132],"nearly":[135],"all":[136],"present":[140],"in":[141],"although":[144],"very":[146],"low":[147],"precisions.":[148],"Finally,":[149],"accuracy,":[150],"precision":[151],"recall":[153],"most":[157],"effective":[158],"characterize":[160],"effectiveness":[162],"tools.":[165]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":7},{"year":2021,"cited_by_count":8},{"year":2020,"cited_by_count":8},{"year":2019,"cited_by_count":5},{"year":2018,"cited_by_count":2},{"year":2017,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}