{"id":"https://openalex.org/W2226637837","doi":"https://doi.org/10.1145/2809563.2809612","title":"A vulnerability's lifetime","display_name":"A vulnerability's lifetime","publication_year":2015,"publication_date":"2015-10-21","ids":{"openalex":"https://openalex.org/W2226637837","doi":"https://doi.org/10.1145/2809563.2809612","mag":"2226637837"},"language":"en","primary_location":{"id":"doi:10.1145/2809563.2809612","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2809563.2809612","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 15th International Conference on Knowledge Technologies and Data-driven Business","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5060720829","display_name":"Leonid Glanz","orcid":null},"institutions":[{"id":"https://openalex.org/I31512782","display_name":"Technical University of Darmstadt","ror":"https://ror.org/05n911h24","country_code":"DE","type":"education","lineage":["https://openalex.org/I31512782"]}],"countries":["DE"],"is_corresponding":true,"raw_author_name":"Leonid Glanz","raw_affiliation_strings":["TU Darmstadt, Germany"],"affiliations":[{"raw_affiliation_string":"TU Darmstadt, Germany","institution_ids":["https://openalex.org/I31512782"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5045720797","display_name":"Sebastian Schmidt","orcid":"https://orcid.org/0000-0001-9028-8914"},"institutions":[{"id":"https://openalex.org/I31512782","display_name":"Technical University of Darmstadt","ror":"https://ror.org/05n911h24","country_code":"DE","type":"education","lineage":["https://openalex.org/I31512782"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Sebastian Schmidt","raw_affiliation_strings":["TU Darmstadt, Germany"],"affiliations":[{"raw_affiliation_string":"TU Darmstadt, Germany","institution_ids":["https://openalex.org/I31512782"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5091419648","display_name":"Sebastian Wollny","orcid":"https://orcid.org/0000-0003-2626-2001"},"institutions":[{"id":"https://openalex.org/I31512782","display_name":"Technical University of Darmstadt","ror":"https://ror.org/05n911h24","country_code":"DE","type":"education","lineage":["https://openalex.org/I31512782"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Sebastian Wollny","raw_affiliation_strings":["KOM, TU Darmstadt, Germany"],"affiliations":[{"raw_affiliation_string":"KOM, TU Darmstadt, Germany","institution_ids":["https://openalex.org/I31512782"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5027995789","display_name":"Ben Hermann","orcid":"https://orcid.org/0000-0001-9848-2017"},"institutions":[{"id":"https://openalex.org/I31512782","display_name":"Technical University of Darmstadt","ror":"https://ror.org/05n911h24","country_code":"DE","type":"education","lineage":["https://openalex.org/I31512782"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Ben Hermann","raw_affiliation_strings":["TU Darmstadt, Germany"],"affiliations":[{"raw_affiliation_string":"TU Darmstadt, Germany","institution_ids":["https://openalex.org/I31512782"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5060720829"],"corresponding_institution_ids":["https://openalex.org/I31512782"],"apc_list":null,"apc_paid":null,"fwci":0.7946,"has_fulltext":false,"cited_by_count":9,"citation_normalized_percentile":{"value":0.81958007,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"4"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9976999759674072,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9976999759674072,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9969000220298767,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9934999942779541,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7432975769042969},{"id":"https://openalex.org/keywords/vulnerability-management","display_name":"Vulnerability management","score":0.7301902770996094},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.7031044960021973},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.5805336236953735},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.5146456956863403},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.5000190734863281},{"id":"https://openalex.org/keywords/security-bug","display_name":"Security bug","score":0.48782017827033997},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4839613735675812},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.4619003236293793},{"id":"https://openalex.org/keywords/software-development","display_name":"Software development","score":0.44823122024536133},{"id":"https://openalex.org/keywords/vulnerability-assessment","display_name":"Vulnerability assessment","score":0.41744333505630493},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.36496299505233765},{"id":"https://openalex.org/keywords/database","display_name":"Database","score":0.3375032842159271},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.23353338241577148},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.19741541147232056}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7432975769042969},{"id":"https://openalex.org/C172776598","wikidata":"https://www.wikidata.org/wiki/Q7943570","display_name":"Vulnerability management","level":4,"score":0.7301902770996094},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.7031044960021973},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.5805336236953735},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.5146456956863403},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.5000190734863281},{"id":"https://openalex.org/C131275738","wikidata":"https://www.wikidata.org/wiki/Q7445023","display_name":"Security bug","level":5,"score":0.48782017827033997},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4839613735675812},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.4619003236293793},{"id":"https://openalex.org/C529173508","wikidata":"https://www.wikidata.org/wiki/Q638608","display_name":"Software development","level":3,"score":0.44823122024536133},{"id":"https://openalex.org/C167063184","wikidata":"https://www.wikidata.org/wiki/Q1400839","display_name":"Vulnerability assessment","level":3,"score":0.41744333505630493},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.36496299505233765},{"id":"https://openalex.org/C77088390","wikidata":"https://www.wikidata.org/wiki/Q8513","display_name":"Database","level":1,"score":0.3375032842159271},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.23353338241577148},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.19741541147232056},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.0},{"id":"https://openalex.org/C542102704","wikidata":"https://www.wikidata.org/wiki/Q183257","display_name":"Psychotherapist","level":1,"score":0.0},{"id":"https://openalex.org/C15744967","wikidata":"https://www.wikidata.org/wiki/Q9418","display_name":"Psychology","level":0,"score":0.0},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C137176749","wikidata":"https://www.wikidata.org/wiki/Q4105337","display_name":"Psychological resilience","level":2,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/2809563.2809612","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2809563.2809612","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 15th International Conference on Knowledge Technologies and Data-driven Business","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[{"id":"https://openalex.org/F4320321114","display_name":"Bundesministerium f\u00fcr Bildung und Forschung","ror":"https://ror.org/04pz7b180"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":6,"referenced_works":["https://openalex.org/W46452414","https://openalex.org/W2027216454","https://openalex.org/W2042229489","https://openalex.org/W2050764671","https://openalex.org/W2077937403","https://openalex.org/W4292002318"],"related_works":["https://openalex.org/W2560421591","https://openalex.org/W3043810321","https://openalex.org/W2537414278","https://openalex.org/W3189065608","https://openalex.org/W1516875481","https://openalex.org/W2143311288","https://openalex.org/W4206646452","https://openalex.org/W2048899404","https://openalex.org/W4364360692","https://openalex.org/W2052712785"],"abstract_inverted_index":{"The":[0],"National":[1],"Vulnerability":[2],"Database":[3],"(NVD)":[4],"is":[5,26,54,88],"a":[6,74],"rich":[7],"source":[8],"of":[9],"information":[10,25,46,53,71,80,87],"for":[11,37,105],"system":[12],"administrators,":[13],"software":[14,22,39,49,91],"engineers,":[15],"IT":[16],"security":[17,40,103],"consultants,":[18],"and":[19,32,51,72],"researchers":[20],"in":[21,28,58,90,102],"security.":[23],"Relevant":[24],"provided":[27],"machine":[29],"readable":[30],"form":[31],"hence":[33],"can":[34],"be":[35],"used":[36],"automated":[38],"management.":[41],"However,":[42],"we":[43],"discovered":[44],"that":[45],"on":[47],"affected":[48],"versions":[50],"fix":[52],"not":[55],"always":[56],"available":[57],"structured":[59],"form.":[60],"We":[61],"therefore":[62],"propose":[63],"to":[64,77,93],"enrich":[65],"the":[66,82],"NVD":[67],"database":[68],"with":[69],"this":[70,79],"use":[73],"rule-based":[75],"approach":[76],"extract":[78],"from":[81],"informal":[83],"vulnerability":[84],"description.":[85],"Such":[86],"useful":[89],"development":[92],"exchange":[94],"or":[95],"avoid":[96],"vulnerable":[97],"components":[98],"as":[99,101],"well":[100],"research":[104],"directed":[106],"cause":[107],"analysis.":[108]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":1},{"year":2020,"cited_by_count":3},{"year":2019,"cited_by_count":2},{"year":2018,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}