{"id":"https://openalex.org/W4319338822","doi":"https://doi.org/10.1109/tr.2023.3237849","title":"Detecting Cryptography Misuses With Machine Learning: Graph Embeddings, Transfer Learning and Data Augmentation in Source Code Related Tasks","display_name":"Detecting Cryptography Misuses With Machine Learning: Graph Embeddings, Transfer Learning and Data Augmentation in Source Code Related Tasks","publication_year":2023,"publication_date":"2023-02-07","ids":{"openalex":"https://openalex.org/W4319338822","doi":"https://doi.org/10.1109/tr.2023.3237849"},"language":"en","primary_location":{"id":"doi:10.1109/tr.2023.3237849","is_oa":false,"landing_page_url":"http://dx.doi.org/10.1109/tr.2023.3237849","pdf_url":null,"source":{"id":"https://openalex.org/S87725633","display_name":"IEEE Transactions on Reliability","issn_l":"0018-9529","issn":["0018-9529","1558-1721"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Reliability","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5018865170","display_name":"Gustavo Eloi de Paula Rodrigues","orcid":"https://orcid.org/0000-0002-6127-8917"},"institutions":[{"id":"https://openalex.org/I181391015","display_name":"Universidade Estadual de Campinas (UNICAMP)","ror":"https://ror.org/04wffgt70","country_code":"BR","type":"education","lineage":["https://openalex.org/I181391015"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"Gustavo Eloi de Paula Rodrigues","raw_affiliation_strings":["Institute of Computing, University of Campinas - Unicamp, Campinas, Brazil"],"raw_orcid":"https://orcid.org/0000-0002-6127-8917","affiliations":[{"raw_affiliation_string":"Institute of Computing, University of Campinas - Unicamp, Campinas, Brazil","institution_ids":["https://openalex.org/I181391015"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5029184440","display_name":"Alexandre Braga","orcid":"https://orcid.org/0000-0001-8969-4683"},"institutions":[{"id":"https://openalex.org/I4210090141","display_name":"Centre for Research and Development in Telecommunications (Brazil)","ror":"https://ror.org/00ej99c12","country_code":"BR","type":"company","lineage":["https://openalex.org/I4210090141"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"Alexandre M. Braga","raw_affiliation_strings":["CPQD Foundation, Telecommunications Research and Development Center, Campinas, Brazil"],"raw_orcid":"https://orcid.org/0000-0001-8969-4683","affiliations":[{"raw_affiliation_string":"CPQD Foundation, Telecommunications Research and Development Center, Campinas, Brazil","institution_ids":["https://openalex.org/I4210090141"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5077598713","display_name":"Ricardo Dahab","orcid":"https://orcid.org/0000-0002-7002-875X"},"institutions":[{"id":"https://openalex.org/I181391015","display_name":"Universidade Estadual de Campinas (UNICAMP)","ror":"https://ror.org/04wffgt70","country_code":"BR","type":"education","lineage":["https://openalex.org/I181391015"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"Ricardo Dahab","raw_affiliation_strings":["Institute of Computing, University of Campinas - Unicamp, Campinas, Brazil"],"raw_orcid":"https://orcid.org/0000-0002-7002-875X","affiliations":[{"raw_affiliation_string":"Institute of Computing, University of Campinas - Unicamp, Campinas, Brazil","institution_ids":["https://openalex.org/I181391015"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":3.0195,"has_fulltext":false,"cited_by_count":7,"citation_normalized_percentile":{"value":0.92129527,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":94,"max":98},"biblio":{"volume":"72","issue":"4","first_page":"1678","last_page":"1689"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12034","display_name":"Digital and Cyber Forensics","score":0.9857000112533569,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7711173295974731},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.702224850654602},{"id":"https://openalex.org/keywords/source-code","display_name":"Source code","score":0.6273269057273865},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.6215180158615112},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.6039183735847473},{"id":"https://openalex.org/keywords/obfuscation","display_name":"Obfuscation","score":0.522356390953064},{"id":"https://openalex.org/keywords/transfer-of-learning","display_name":"Transfer of learning","score":0.4753703474998474},{"id":"https://openalex.org/keywords/feature-engineering","display_name":"Feature engineering","score":0.46474689245224},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.45665183663368225},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.44335705041885376},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.4419926404953003},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.33375978469848633},{"id":"https://openalex.org/keywords/deep-learning","display_name":"Deep learning","score":0.32650691270828247},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.23023992776870728},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.22859901189804077}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7711173295974731},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.702224850654602},{"id":"https://openalex.org/C43126263","wikidata":"https://www.wikidata.org/wiki/Q128751","display_name":"Source code","level":2,"score":0.6273269057273865},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.6215180158615112},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.6039183735847473},{"id":"https://openalex.org/C40305131","wikidata":"https://www.wikidata.org/wiki/Q2616305","display_name":"Obfuscation","level":2,"score":0.522356390953064},{"id":"https://openalex.org/C150899416","wikidata":"https://www.wikidata.org/wiki/Q1820378","display_name":"Transfer of learning","level":2,"score":0.4753703474998474},{"id":"https://openalex.org/C2778827112","wikidata":"https://www.wikidata.org/wiki/Q22245680","display_name":"Feature engineering","level":3,"score":0.46474689245224},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.45665183663368225},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.44335705041885376},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.4419926404953003},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.33375978469848633},{"id":"https://openalex.org/C108583219","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep learning","level":2,"score":0.32650691270828247},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.23023992776870728},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.22859901189804077},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/tr.2023.3237849","is_oa":false,"landing_page_url":"http://dx.doi.org/10.1109/tr.2023.3237849","pdf_url":null,"source":{"id":"https://openalex.org/S87725633","display_name":"IEEE Transactions on Reliability","issn_l":"0018-9529","issn":["0018-9529","1558-1721"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Reliability","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G5370077735","display_name":null,"funder_award_id":"88887.335984/2019-00","funder_id":"https://openalex.org/F4320321091","funder_display_name":"Coordena\u00e7\u00e3o de Aperfei\u00e7oamento de Pessoal de N\u00edvel Superior"}],"funders":[{"id":"https://openalex.org/F4320321091","display_name":"Coordena\u00e7\u00e3o de Aperfei\u00e7oamento de Pessoal de N\u00edvel Superior","ror":"https://ror.org/00x0ma614"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":33,"referenced_works":["https://openalex.org/W2279161046","https://openalex.org/W2286776870","https://openalex.org/W2357927175","https://openalex.org/W2406241532","https://openalex.org/W2521898510","https://openalex.org/W2754759618","https://openalex.org/W2767943400","https://openalex.org/W2770623724","https://openalex.org/W2793157084","https://openalex.org/W2806718802","https://openalex.org/W2886968501","https://openalex.org/W2894923858","https://openalex.org/W2901941771","https://openalex.org/W2919115771","https://openalex.org/W2954996726","https://openalex.org/W2955230520","https://openalex.org/W2962756421","https://openalex.org/W2964150020","https://openalex.org/W2979528578","https://openalex.org/W3014817913","https://openalex.org/W3097867666","https://openalex.org/W3130630582","https://openalex.org/W4200634422","https://openalex.org/W4205733352","https://openalex.org/W4211233231","https://openalex.org/W4220771946","https://openalex.org/W4240869246","https://openalex.org/W4241366606","https://openalex.org/W4288080275","https://openalex.org/W4300630742","https://openalex.org/W6695872158","https://openalex.org/W6749470980","https://openalex.org/W6766499734"],"related_works":["https://openalex.org/W4224216661","https://openalex.org/W3210347767","https://openalex.org/W2066014542","https://openalex.org/W67940504","https://openalex.org/W2024170198","https://openalex.org/W2152144666","https://openalex.org/W1819617256","https://openalex.org/W4308699695","https://openalex.org/W2596984206","https://openalex.org/W2810872891"],"abstract_inverted_index":{"Cryptography":[0],"is":[1],"a":[2,64,131],"ubiquitous":[3],"tool":[4],"in":[5,9,15,42,59,96,112,155],"secure":[6],"software":[7,18],"development":[8],"order":[10],"to":[11,55,79,93,107,146,149],"guarantee":[12],"security":[13],"requirements":[14],"general.":[16],"However,":[17],"developers":[19],"have":[20],"scarce":[21],"knowledge":[22],"about":[23],"cryptography":[24,57,136],"and":[25,139],"rely":[26],"on":[27],"limited":[28],"support":[29],"tools":[30],"that":[31,82,122],"cannot":[32],"properly":[33],"detect":[34,56],"bad":[35],"uses":[36],"of":[37,52,66,99],"cryptography,":[38],"thus":[39],"generating":[40],"vulnerabilities":[41],"software.":[43],"In":[44,87],"this":[45,91],"work,":[46],"we":[47,89,103,120],"extend":[48],"the":[49,67],"scarcely":[50],"use":[51],"machine":[53,84,113,151],"learning":[54,70,78,85,114,125,152],"misuse":[58,137],"source":[60,115,156],"code":[61,105,116,141,157],"by":[62],"using":[63],"state":[65],"art":[68],"deep":[69],"model":[71],"(i.e.,":[72],"<italic":[73,126],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[74,127],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">code2vec</i>)":[75],"through":[76,123],"transfer":[77,124],"generate":[80,147],"features":[81],"feed":[83],"models.":[86,101],"addition,":[88],"compare":[90],"approach":[92],"previous":[94],"ones":[95],"different":[97],"types":[98],"binary":[100],"Also,":[102],"adapt":[104],"obfuscation":[106,142],"serve":[108],"as":[109],"data":[110,148],"augmentation":[111],"related":[117,158],"tasks.":[118,159],"Finally,":[119],"show":[121],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">code2vec</i>":[128],"can":[129,143],"be":[130,144],"competitive":[132],"feature":[133],"generator":[134],"for":[135],"detection":[138],"simple":[140],"used":[145],"enhance":[150],"models":[153],"training":[154]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":2},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":2}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}