{"id":"https://openalex.org/W1970141412","doi":"https://doi.org/10.1109/msecp.2004.1264860","title":"Considering defense in depth for software applications","display_name":"Considering defense in depth for software applications","publication_year":2004,"publication_date":"2004-01-01","ids":{"openalex":"https://openalex.org/W1970141412","doi":"https://doi.org/10.1109/msecp.2004.1264860","mag":"1970141412"},"language":"en","primary_location":{"id":"doi:10.1109/msecp.2004.1264860","is_oa":false,"landing_page_url":"https://doi.org/10.1109/msecp.2004.1264860","pdf_url":null,"source":{"id":"https://openalex.org/S61906035","display_name":"IEEE Security & Privacy","issn_l":"1540-7993","issn":["1540-7993","1558-4046"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Security &amp; Privacy Magazine","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5034078652","display_name":"Martin R. Stytz","orcid":null},"institutions":[{"id":"https://openalex.org/I1280414376","display_name":"United States Air Force Research Laboratory","ror":"https://ror.org/02e2egq70","country_code":"US","type":"facility","lineage":["https://openalex.org/I1280414376","https://openalex.org/I1330347796","https://openalex.org/I4210102105","https://openalex.org/I4389425425"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"M.R. Stytz","raw_affiliation_strings":["US Air Force Research Laboratory","Air Force Res. Lab, Wright-Patterson AFB, OH, USA"],"affiliations":[{"raw_affiliation_string":"US Air Force Research Laboratory","institution_ids":["https://openalex.org/I1280414376"]},{"raw_affiliation_string":"Air Force Res. Lab, Wright-Patterson AFB, OH, USA","institution_ids":["https://openalex.org/I1280414376"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":["https://openalex.org/A5034078652"],"corresponding_institution_ids":["https://openalex.org/I1280414376"],"apc_list":null,"apc_paid":null,"fwci":3.2315,"has_fulltext":false,"cited_by_count":49,"citation_normalized_percentile":{"value":0.92733594,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":99},"biblio":{"volume":"2","issue":"1","first_page":"72","last_page":"75"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9800999760627747,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9800999760627747,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.972000002861023,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9362000226974487,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6855147480964661},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6475710272789001},{"id":"https://openalex.org/keywords/conceptualization","display_name":"Conceptualization","score":0.6417565941810608},{"id":"https://openalex.org/keywords/software-development","display_name":"Software development","score":0.5882593393325806},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.5869147777557373},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.5148200392723083},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.49045535922050476},{"id":"https://openalex.org/keywords/best-practice","display_name":"Best practice","score":0.4858545958995819},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.4245445728302002},{"id":"https://openalex.org/keywords/interlock","display_name":"Interlock","score":0.4145847260951996},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.37940287590026855},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.17870154976844788},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.15551593899726868},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.14768561720848083},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.10000109672546387},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.0991939902305603},{"id":"https://openalex.org/keywords/law","display_name":"Law","score":0.07930544018745422}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6855147480964661},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6475710272789001},{"id":"https://openalex.org/C90734943","wikidata":"https://www.wikidata.org/wiki/Q17008777","display_name":"Conceptualization","level":2,"score":0.6417565941810608},{"id":"https://openalex.org/C529173508","wikidata":"https://www.wikidata.org/wiki/Q638608","display_name":"Software development","level":3,"score":0.5882593393325806},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.5869147777557373},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.5148200392723083},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.49045535922050476},{"id":"https://openalex.org/C184356942","wikidata":"https://www.wikidata.org/wiki/Q830382","display_name":"Best practice","level":2,"score":0.4858545958995819},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.4245445728302002},{"id":"https://openalex.org/C99535591","wikidata":"https://www.wikidata.org/wiki/Q1817095","display_name":"Interlock","level":2,"score":0.4145847260951996},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.37940287590026855},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.17870154976844788},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.15551593899726868},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.14768561720848083},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.10000109672546387},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0991939902305603},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.07930544018745422},{"id":"https://openalex.org/C119599485","wikidata":"https://www.wikidata.org/wiki/Q43035","display_name":"Electrical engineering","level":1,"score":0.0},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/msecp.2004.1264860","is_oa":false,"landing_page_url":"https://doi.org/10.1109/msecp.2004.1264860","pdf_url":null,"source":{"id":"https://openalex.org/S61906035","display_name":"IEEE Security & Privacy","issn_l":"1540-7993","issn":["1540-7993","1558-4046"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Security &amp; Privacy Magazine","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/9","display_name":"Industry, innovation and infrastructure","score":0.4099999964237213}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W4362575170","https://openalex.org/W2984230149","https://openalex.org/W2531253623","https://openalex.org/W1532772865","https://openalex.org/W2006867289","https://openalex.org/W1188194610","https://openalex.org/W4200095465","https://openalex.org/W945978269","https://openalex.org/W561146171","https://openalex.org/W4225160120"],"abstract_inverted_index":{"Despite":[0],"efforts":[1],"to":[2,12,35,64,118],"develop":[3],"processes":[4],"and":[5,31,46,53,61,80,97,126],"technologies":[6],"that":[7,25,91],"enhance":[8],"software":[9,78,124,127],"application":[10,65,85],"security,":[11],"date,":[13],"no":[14],"one":[15],"has":[16],"found":[17],"a":[18,42,50,58,68,89],"\"silver-bullet\"":[19],"solution":[20],"or":[21],"set":[22],"of":[23,71,115],"solutions":[24],"solve":[26],"this":[27,104],"complex":[28],"problem":[29],"-":[30],"there":[32],"don't":[33],"appear":[34],"be":[36],"any":[37],"on":[38],"the":[39,100,112,116],"horizon.":[40],"As":[41],"result,":[43],"perhaps":[44],"researchers":[45],"developers":[47],"should":[48],"consider":[49],"defense-in-depth":[51,75],"strategy":[52,76],"determine":[54],"if":[55],"it":[56],"provides":[57],"more":[59],"resilient":[60],"cost-effective":[62],"approach":[63],"security":[66],"than":[67],"single":[69],"line":[70],"defense.":[72],"The":[73],"best":[74,120],"for":[77,106,122],"source":[79],"binary":[81],"code":[82],"would":[83],"intertwine":[84],"defenses":[86],"in":[87,129],"such":[88],"manner":[90],"each":[92],"defensive":[93],"technique":[94],"interlocks":[95],"with":[96],"supports":[98],"all":[99],"others.":[101],"Of":[102],"necessity,":[103],"conceptualization":[105],"interlocking":[107],"defense":[108],"Would":[109],"not":[110],"relieve":[111],"development":[113,125,128],"team":[114],"need":[117],"maintain":[119],"practices":[121],"secure":[123],"general.":[130]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":4},{"year":2024,"cited_by_count":2},{"year":2022,"cited_by_count":5},{"year":2021,"cited_by_count":2},{"year":2020,"cited_by_count":5},{"year":2019,"cited_by_count":4},{"year":2018,"cited_by_count":1},{"year":2017,"cited_by_count":2},{"year":2016,"cited_by_count":2},{"year":2015,"cited_by_count":6},{"year":2014,"cited_by_count":4},{"year":2013,"cited_by_count":1},{"year":2012,"cited_by_count":3}],"updated_date":"2026-04-18T07:56:08.524223","created_date":"2025-10-10T00:00:00"}