{"id":"https://openalex.org/W2011698232","doi":"https://doi.org/10.1145/1595676.1595691","title":"The developer is the enemy","display_name":"The developer is the enemy","publication_year":2008,"publication_date":"2008-09-22","ids":{"openalex":"https://openalex.org/W2011698232","doi":"https://doi.org/10.1145/1595676.1595691","mag":"2011698232"},"language":"en","primary_location":{"id":"doi:10.1145/1595676.1595691","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1595676.1595691","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2008 New Security Paradigms Workshop","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5038853903","display_name":"Glenn Wurster","orcid":null},"institutions":[{"id":"https://openalex.org/I67031392","display_name":"Carleton University","ror":"https://ror.org/02qtvee93","country_code":"CA","type":"education","lineage":["https://openalex.org/I67031392"]}],"countries":["CA"],"is_corresponding":true,"raw_author_name":"Glenn Wurster","raw_affiliation_strings":["Carleton University, Canada"],"affiliations":[{"raw_affiliation_string":"Carleton University, Canada","institution_ids":["https://openalex.org/I67031392"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5011846293","display_name":"Paul C. van Oorschot","orcid":"https://orcid.org/0000-0002-5038-5370"},"institutions":[{"id":"https://openalex.org/I67031392","display_name":"Carleton University","ror":"https://ror.org/02qtvee93","country_code":"CA","type":"education","lineage":["https://openalex.org/I67031392"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"P. C. van Oorschot","raw_affiliation_strings":["Carleton University, Canada"],"affiliations":[{"raw_affiliation_string":"Carleton University, Canada","institution_ids":["https://openalex.org/I67031392"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5038853903"],"corresponding_institution_ids":["https://openalex.org/I67031392"],"apc_list":null,"apc_paid":null,"fwci":3.418,"has_fulltext":false,"cited_by_count":78,"citation_normalized_percentile":{"value":0.92193405,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"89","last_page":"97"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9991999864578247,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7614870071411133},{"id":"https://openalex.org/keywords/adversary","display_name":"Adversary","score":0.6995729804039001},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6216882467269897},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.577140212059021},{"id":"https://openalex.org/keywords/secure-coding","display_name":"Secure coding","score":0.5382373929023743},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.514717161655426},{"id":"https://openalex.org/keywords/security-bug","display_name":"Security bug","score":0.4429376721382141},{"id":"https://openalex.org/keywords/work","display_name":"Work (physics)","score":0.4388732612133026},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.43436992168426514},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.3588990569114685},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.2029840648174286},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.12636366486549377},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.11894115805625916},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.1038302481174469}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7614870071411133},{"id":"https://openalex.org/C41065033","wikidata":"https://www.wikidata.org/wiki/Q2825412","display_name":"Adversary","level":2,"score":0.6995729804039001},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6216882467269897},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.577140212059021},{"id":"https://openalex.org/C22680326","wikidata":"https://www.wikidata.org/wiki/Q7444867","display_name":"Secure coding","level":5,"score":0.5382373929023743},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.514717161655426},{"id":"https://openalex.org/C131275738","wikidata":"https://www.wikidata.org/wiki/Q7445023","display_name":"Security bug","level":5,"score":0.4429376721382141},{"id":"https://openalex.org/C18762648","wikidata":"https://www.wikidata.org/wiki/Q42213","display_name":"Work (physics)","level":2,"score":0.4388732612133026},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.43436992168426514},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.3588990569114685},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.2029840648174286},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.12636366486549377},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.11894115805625916},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.1038302481174469},{"id":"https://openalex.org/C78519656","wikidata":"https://www.wikidata.org/wiki/Q101333","display_name":"Mechanical engineering","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/1595676.1595691","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1595676.1595691","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2008 New Security Paradigms Workshop","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.5799999833106995}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":45,"referenced_works":["https://openalex.org/W4358824","https://openalex.org/W1222699389","https://openalex.org/W1499241274","https://openalex.org/W1511560695","https://openalex.org/W1517021406","https://openalex.org/W1531530153","https://openalex.org/W1545927878","https://openalex.org/W1583455789","https://openalex.org/W1587981097","https://openalex.org/W1854809412","https://openalex.org/W1983424002","https://openalex.org/W1990693033","https://openalex.org/W1994326726","https://openalex.org/W1995421397","https://openalex.org/W2004158097","https://openalex.org/W2006419855","https://openalex.org/W2010608681","https://openalex.org/W2034120733","https://openalex.org/W2037202491","https://openalex.org/W2042720915","https://openalex.org/W2044330352","https://openalex.org/W2063471328","https://openalex.org/W2079029390","https://openalex.org/W2085925880","https://openalex.org/W2096658343","https://openalex.org/W2104773223","https://openalex.org/W2107956195","https://openalex.org/W2109266092","https://openalex.org/W2110001365","https://openalex.org/W2113350481","https://openalex.org/W2114525843","https://openalex.org/W2125265338","https://openalex.org/W2126050324","https://openalex.org/W2142249740","https://openalex.org/W2149140239","https://openalex.org/W2152505375","https://openalex.org/W2156221105","https://openalex.org/W2164725724","https://openalex.org/W2752455916","https://openalex.org/W2753385853","https://openalex.org/W4245410964","https://openalex.org/W4249212548","https://openalex.org/W6600185375","https://openalex.org/W6631051240","https://openalex.org/W6743778567"],"related_works":["https://openalex.org/W1978034799","https://openalex.org/W4384518368","https://openalex.org/W2141388993","https://openalex.org/W2155353733","https://openalex.org/W2504659933","https://openalex.org/W2039943835","https://openalex.org/W2293245356","https://openalex.org/W2560421591","https://openalex.org/W1566131087","https://openalex.org/W2062583373"],"abstract_inverted_index":{"We":[0,64,93,112,153],"argue":[1,37],"that":[2,38],"application":[3,127],"developers,":[4],"while":[5],"often":[6,30],"viewed":[7],"as":[8],"allies":[9],"in":[10,105,150],"the":[11,54,95,122,135,141],"effort":[12],"to":[13,44,46,49,60,109,158],"create":[14],"software":[15,58],"with":[16],"fewer":[17],"security":[18,62,120],"vulnerabilities,":[19],"are":[20,156],"not":[21,32],"reliable":[22],"allies.":[23],"They":[24],"have":[25],"varying":[26],"skill":[27],"sets":[28],"which":[29,100,118],"do":[31],"include":[33],"security.":[34,111],"Moreover,":[35],"we":[36],"it":[39],"is":[40],"inefficient":[41],"and":[42,68,131],"unrealistic":[43],"expect":[45],"be":[47,61,102],"able":[48],"successfully":[50],"teach":[51],"all":[52],"of":[53,57,97,125,146],"world's":[55],"population":[56],"developers":[59,74,82,160],"experts.":[63],"suggest":[65],"more":[66],"efficient":[67],"effective":[69],"alternatives,":[70],"focusing":[71],"on":[72],"those":[73,84],"who":[75,85],"produce":[76],"core":[77],"functionality":[78],"used":[79,104],"by":[80],"other":[81],"(e.g.":[83],"develop":[86],"popular":[87],"APIs":[88,99],"--":[89],"Application":[90],"Programming":[91],"Interfaces).":[92],"discuss":[94],"benefits":[96,157],"designing":[98],"can":[101],"easily":[103],"a":[106],"secure":[107,151],"fashion":[108],"encourage":[110],"also":[113],"introduce":[114],"two":[115],"straw-man":[116],"proposals":[117],"integrate":[119],"into":[121,161],"work-":[123],"ow":[124],"an":[126],"developer.":[128],"Data":[129],"tagging":[130],"unsuppressible":[132],"warnings":[133],"provide":[134],"basis":[136],"for":[137],"further":[138],"work":[139],"where":[140],"most":[142],"natural":[143],"use":[144],"(path":[145],"least":[147],"resistance)":[148],"results":[149],"code.":[152],"believe":[154],"there":[155],"co-opting":[159],"programming":[162],"securely.":[163]},"counts_by_year":[{"year":2025,"cited_by_count":4},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":4},{"year":2022,"cited_by_count":2},{"year":2021,"cited_by_count":8},{"year":2020,"cited_by_count":11},{"year":2019,"cited_by_count":9},{"year":2018,"cited_by_count":9},{"year":2017,"cited_by_count":5},{"year":2016,"cited_by_count":5},{"year":2015,"cited_by_count":3},{"year":2014,"cited_by_count":1},{"year":2013,"cited_by_count":5},{"year":2012,"cited_by_count":1}],"updated_date":"2026-04-04T16:13:02.066488","created_date":"2025-10-10T00:00:00"}