{"id":"https://openalex.org/W4405846260","doi":"https://doi.org/10.1109/tse.2024.3523284","title":"<i>Do Chase Your Tail!</i> Missing Key Aspects Augmentation in Textual Vulnerability Descriptions of Long-Tail Software Through Feature Inference","display_name":"<i>Do Chase Your Tail!</i> Missing Key Aspects Augmentation in Textual Vulnerability Descriptions of Long-Tail Software Through Feature Inference","publication_year":2024,"publication_date":"2024-12-27","ids":{"openalex":"https://openalex.org/W4405846260","doi":"https://doi.org/10.1109/tse.2024.3523284"},"language":"en","primary_location":{"id":"doi:10.1109/tse.2024.3523284","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tse.2024.3523284","pdf_url":null,"source":{"id":"https://openalex.org/S8351582","display_name":"IEEE Transactions on Software Engineering","issn_l":"0098-5589","issn":["0098-5589","1939-3520","2326-3881"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Software Engineering","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5041328957","display_name":"Linyi Han","orcid":"https://orcid.org/0000-0002-9747-4426"},"institutions":[{"id":"https://openalex.org/I162868743","display_name":"Tianjin University","ror":"https://ror.org/012tb2g32","country_code":"CN","type":"education","lineage":["https://openalex.org/I162868743"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Linyi Han","raw_affiliation_strings":["College of Intelligence and Computing, Tianjin University, Tianjin, China"],"affiliations":[{"raw_affiliation_string":"College of Intelligence and Computing, Tianjin University, Tianjin, China","institution_ids":["https://openalex.org/I162868743"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101445136","display_name":"Shidong Pan","orcid":"https://orcid.org/0000-0003-4599-8292"},"institutions":[{"id":"https://openalex.org/I42894916","display_name":"Data61","ror":"https://ror.org/03q397159","country_code":"AU","type":"other","lineage":["https://openalex.org/I1292875679","https://openalex.org/I2801453606","https://openalex.org/I42894916","https://openalex.org/I4387156119"]},{"id":"https://openalex.org/I1292875679","display_name":"Commonwealth Scientific and Industrial Research Organisation","ror":"https://ror.org/03qn8fb07","country_code":"AU","type":"funder","lineage":["https://openalex.org/I1292875679","https://openalex.org/I2801453606","https://openalex.org/I4387156119"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Shidong Pan","raw_affiliation_strings":["CSIRO&#x2019;s Data61, Canberra, ACT, Australia","CSIRO&#x2019;s Data61, Canberra, Australia"],"affiliations":[{"raw_affiliation_string":"CSIRO&#x2019;s Data61, Canberra, ACT, Australia","institution_ids":["https://openalex.org/I42894916"]},{"raw_affiliation_string":"CSIRO&#x2019;s Data61, Canberra, Australia","institution_ids":["https://openalex.org/I42894916","https://openalex.org/I1292875679"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5028641941","display_name":"Zhenchang Xing","orcid":"https://orcid.org/0000-0001-7663-1421"},"institutions":[{"id":"https://openalex.org/I1292875679","display_name":"Commonwealth Scientific and Industrial Research Organisation","ror":"https://ror.org/03qn8fb07","country_code":"AU","type":"funder","lineage":["https://openalex.org/I1292875679","https://openalex.org/I2801453606","https://openalex.org/I4387156119"]},{"id":"https://openalex.org/I42894916","display_name":"Data61","ror":"https://ror.org/03q397159","country_code":"AU","type":"other","lineage":["https://openalex.org/I1292875679","https://openalex.org/I2801453606","https://openalex.org/I42894916","https://openalex.org/I4387156119"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Zhenchang Xing","raw_affiliation_strings":["CSIRO&#x2019;s Data61, Canberra, ACT, Australia","CSIRO&#x2019;s Data61, Canberra, Australia"],"affiliations":[{"raw_affiliation_string":"CSIRO&#x2019;s Data61, Canberra, ACT, Australia","institution_ids":["https://openalex.org/I42894916"]},{"raw_affiliation_string":"CSIRO&#x2019;s Data61, Canberra, Australia","institution_ids":["https://openalex.org/I42894916","https://openalex.org/I1292875679"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5010290885","display_name":"Jiamou Sun","orcid":"https://orcid.org/0000-0002-5212-7068"},"institutions":[{"id":"https://openalex.org/I1292875679","display_name":"Commonwealth Scientific and Industrial Research Organisation","ror":"https://ror.org/03qn8fb07","country_code":"AU","type":"funder","lineage":["https://openalex.org/I1292875679","https://openalex.org/I2801453606","https://openalex.org/I4387156119"]},{"id":"https://openalex.org/I42894916","display_name":"Data61","ror":"https://ror.org/03q397159","country_code":"AU","type":"other","lineage":["https://openalex.org/I1292875679","https://openalex.org/I2801453606","https://openalex.org/I42894916","https://openalex.org/I4387156119"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Jiamou Sun","raw_affiliation_strings":["CSIRO&#x2019;s Data61, Canberra, ACT, Australia","CSIRO&#x2019;s Data61, Canberra, Australia"],"affiliations":[{"raw_affiliation_string":"CSIRO&#x2019;s Data61, Canberra, ACT, Australia","institution_ids":["https://openalex.org/I42894916"]},{"raw_affiliation_string":"CSIRO&#x2019;s Data61, Canberra, Australia","institution_ids":["https://openalex.org/I42894916","https://openalex.org/I1292875679"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5009280810","display_name":"Sofonias Yitagesu","orcid":"https://orcid.org/0000-0002-9247-7521"},"institutions":[{"id":"https://openalex.org/I162868743","display_name":"Tianjin University","ror":"https://ror.org/012tb2g32","country_code":"CN","type":"education","lineage":["https://openalex.org/I162868743"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Sofonias Yitagesu","raw_affiliation_strings":["College of Intelligence and Computing, Tianjin University, Tianjin, China"],"affiliations":[{"raw_affiliation_string":"College of Intelligence and Computing, Tianjin University, Tianjin, China","institution_ids":["https://openalex.org/I162868743"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5030524599","display_name":"Xiaowang Zhang","orcid":"https://orcid.org/0000-0002-3931-3886"},"institutions":[{"id":"https://openalex.org/I162868743","display_name":"Tianjin University","ror":"https://ror.org/012tb2g32","country_code":"CN","type":"education","lineage":["https://openalex.org/I162868743"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xiaowang Zhang","raw_affiliation_strings":["College of Intelligence and Computing, Tianjin University, Tianjin, China"],"affiliations":[{"raw_affiliation_string":"College of Intelligence and Computing, Tianjin University, Tianjin, China","institution_ids":["https://openalex.org/I162868743"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5100736532","display_name":"Zhiyong Feng","orcid":"https://orcid.org/0000-0001-8158-7453"},"institutions":[{"id":"https://openalex.org/I162868743","display_name":"Tianjin University","ror":"https://ror.org/012tb2g32","country_code":"CN","type":"education","lineage":["https://openalex.org/I162868743"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Zhiyong Feng","raw_affiliation_strings":["College of Intelligence and Computing, Tianjin University, Tianjin, China"],"affiliations":[{"raw_affiliation_string":"College of Intelligence and Computing, Tianjin University, Tianjin, China","institution_ids":["https://openalex.org/I162868743"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":7,"corresponding_author_ids":["https://openalex.org/A5041328957"],"corresponding_institution_ids":["https://openalex.org/I162868743"],"apc_list":null,"apc_paid":null,"fwci":2.0083,"has_fulltext":false,"cited_by_count":4,"citation_normalized_percentile":{"value":0.89749431,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":96,"max":99},"biblio":{"volume":"51","issue":"2","first_page":"466","last_page":"483"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9902999997138977,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9902999997138977,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9854999780654907,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9684000015258789,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8263765573501587},{"id":"https://openalex.org/keywords/feature","display_name":"Feature (linguistics)","score":0.6866419911384583},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.670566976070404},{"id":"https://openalex.org/keywords/inference","display_name":"Inference","score":0.6323391199111938},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.550423264503479},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.5393542647361755},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.40062639117240906},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.38847869634628296},{"id":"https://openalex.org/keywords/natural-language-processing","display_name":"Natural language processing","score":0.35742515325546265},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.32491302490234375},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.18504834175109863},{"id":"https://openalex.org/keywords/linguistics","display_name":"Linguistics","score":0.10065379738807678}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8263765573501587},{"id":"https://openalex.org/C2776401178","wikidata":"https://www.wikidata.org/wiki/Q12050496","display_name":"Feature (linguistics)","level":2,"score":0.6866419911384583},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.670566976070404},{"id":"https://openalex.org/C2776214188","wikidata":"https://www.wikidata.org/wiki/Q408386","display_name":"Inference","level":2,"score":0.6323391199111938},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.550423264503479},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.5393542647361755},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.40062639117240906},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.38847869634628296},{"id":"https://openalex.org/C204321447","wikidata":"https://www.wikidata.org/wiki/Q30642","display_name":"Natural language processing","level":1,"score":0.35742515325546265},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.32491302490234375},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.18504834175109863},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.10065379738807678},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/tse.2024.3523284","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tse.2024.3523284","pdf_url":null,"source":{"id":"https://openalex.org/S8351582","display_name":"IEEE Transactions on Software Engineering","issn_l":"0098-5589","issn":["0098-5589","1939-3520","2326-3881"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Software Engineering","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":74,"referenced_works":["https://openalex.org/W2054717882","https://openalex.org/W2073849744","https://openalex.org/W2122111042","https://openalex.org/W2136189984","https://openalex.org/W2139060038","https://openalex.org/W2368550879","https://openalex.org/W2620913545","https://openalex.org/W2767521898","https://openalex.org/W2798237655","https://openalex.org/W2910663633","https://openalex.org/W2982413960","https://openalex.org/W3005101160","https://openalex.org/W3007106047","https://openalex.org/W3014961314","https://openalex.org/W3034622092","https://openalex.org/W3089869718","https://openalex.org/W3098374216","https://openalex.org/W3109519143","https://openalex.org/W3122241445","https://openalex.org/W3176717822","https://openalex.org/W3200192855","https://openalex.org/W4206299091","https://openalex.org/W4210556785","https://openalex.org/W4281492582","https://openalex.org/W4285261698","https://openalex.org/W4286233477","https://openalex.org/W4287891464","https://openalex.org/W4294975745","https://openalex.org/W4309484938","https://openalex.org/W4311969068","https://openalex.org/W4312798241","https://openalex.org/W4313195722","https://openalex.org/W4321794010","https://openalex.org/W4376606904","https://openalex.org/W4381384746","https://openalex.org/W4382202983","https://openalex.org/W4384345689","https://openalex.org/W4385302156","https://openalex.org/W4385570290","https://openalex.org/W4385570343","https://openalex.org/W4385571259","https://openalex.org/W4386207909","https://openalex.org/W4387766320","https://openalex.org/W4388483502","https://openalex.org/W4388538015","https://openalex.org/W4389159862","https://openalex.org/W4390698838","https://openalex.org/W4391092698","https://openalex.org/W4391558516","https://openalex.org/W4391579642","https://openalex.org/W4402672041","https://openalex.org/W6678262379","https://openalex.org/W6682631176","https://openalex.org/W6743583902","https://openalex.org/W6743986046","https://openalex.org/W6761205521","https://openalex.org/W6765985745","https://openalex.org/W6766922533","https://openalex.org/W6774222543","https://openalex.org/W6794429972","https://openalex.org/W6809646742","https://openalex.org/W6810271737","https://openalex.org/W6837989031","https://openalex.org/W6838865847","https://openalex.org/W6844011046","https://openalex.org/W6848738564","https://openalex.org/W6850556063","https://openalex.org/W6850612876","https://openalex.org/W6851775633","https://openalex.org/W6852183785","https://openalex.org/W6853165214","https://openalex.org/W6853859572","https://openalex.org/W6858665804","https://openalex.org/W6898505805"],"related_works":["https://openalex.org/W2055243143","https://openalex.org/W2095999892","https://openalex.org/W2018764758","https://openalex.org/W2383689843","https://openalex.org/W1550668881","https://openalex.org/W617913288","https://openalex.org/W2062873522","https://openalex.org/W2319323865","https://openalex.org/W2951745010","https://openalex.org/W1986418932"],"abstract_inverted_index":{"Augmenting":[0],"missing":[1,58,116,158,241],"key":[2,19,33,59,117,159,242],"aspects":[3,20,34,60,118,243],"in":[4,17,43,134,274],"Textual":[5],"Vulnerability":[6],"Descriptions":[7],"(TVDs)":[8],"is":[9],"crucial":[10],"for":[11,121,207,226,246],"effective":[12],"vulnerability":[13,42,64,96,136],"analysis.":[14],"For":[15,47],"instance,":[16],"TVDs,":[18],"include":[21],"<italic":[22,26],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[23,27],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">Attack":[24],"Vector</i>,":[25],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">Vulnerability":[28],"Type</i>,":[29],"among":[30],"others.":[31],"These":[32,210],"help":[35],"security":[36,68],"engineers":[37],"understand":[38],"and":[39,66,91,98,145,188,213],"address":[40],"the":[41,115,127,157,162,169,179,237,255],"a":[44,50,74,106,220,267],"timely":[45],"manner.":[46],"software":[48,67,71,86,99,108,131,248,259],"with":[49,73,142],"large":[51],"user":[52,76],"base":[53,77],"(non-long-tail":[54],"software),":[55],"augmenting":[56,240],"these":[57],"has":[61],"significantly":[62,235],"advanced":[63],"analysis":[65,97],"research.":[69],"However,":[70,161],"instances":[72],"limited":[75,89,163],"(long-tail":[78],"software)":[79],"often":[80],"get":[81],"overlooked":[82],"due":[83],"to":[84,113,155,184,223,251,264],"inconsistency":[85],"names,":[87],"TVD":[88,281],"avaliability,":[90],"domain-specific":[92],"jargon,":[93],"which":[94],"complicates":[95],"repairs.":[100],"In":[101],"this":[102,175],"paper,":[103],"we":[104,125,149,177,198,218],"introduce":[105],"novel":[107],"feature":[109],"inference":[110],"framework":[111],"designed":[112,206],"augment":[114],"of":[119,129,165,171,239,244,257],"TVDs":[120,167,187,245],"long-tail":[122,208],"software.":[123,209],"Firstly,":[124],"tackle":[126],"issue":[128],"non-standard":[130],"names":[132],"found":[133],"community-maintained":[135],"databases":[137,141],"by":[138],"cross-referencing":[139],"government":[140],"Common":[143,180],"Vulnerabilities":[144],"Exposures":[146],"(CVEs).":[147],"Next,":[148],"employ":[150],"Large":[151],"Language":[152,201],"Models":[153],"(LLMs)":[154],"generate":[156],"aspects.":[160],"availability":[164],"historical":[166],"restricts":[168],"variety":[170],"examples.":[172,194],"To":[173,195],"overcome":[174],"limitation,":[176],"utilize":[178],"Weakness":[181],"Enumeration":[182],"(CWE)":[183],"classify":[185],"all":[186],"select":[189],"cluster":[190],"centers":[191],"as":[192],"representative":[193],"ensure":[196],"accuracy,":[197],"present":[199],"Natural":[200],"Inference":[202],"(NLI)":[203],"models":[204,211],"specifically":[205],"identify":[212],"eliminate":[214],"incorrect":[215],"responses.":[216],"Additionally,":[217],"use":[219],"wiki":[221],"repository":[222],"provide":[224],"explanations":[225],"proprietary":[227],"terms.":[228],"Our":[229],"evaluations":[230],"demonstrate":[231],"that":[232,278],"our":[233,269],"approach":[234,270],"improves":[236],"accuracy":[238,256],"log-tail":[247],"from":[249,262],"0.27":[250],"0.56":[252],"(+107%).":[253],"Interestingly,":[254],"non-long-tail":[258],"also":[260],"increases":[261],"64%":[263],"71%.":[265],"As":[266],"result,":[268],"can":[271],"be":[272],"useful":[273],"various":[275],"downstream":[276],"tasks":[277],"require":[279],"complete":[280],"information.":[282]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":3}],"updated_date":"2026-03-13T16:22:10.518609","created_date":"2025-10-10T00:00:00"}