{"id":"https://openalex.org/W2769686659","doi":"https://doi.org/10.1145/3143434.3143458","title":"Mining social networks of open source CVE coordination","display_name":"Mining social networks of open source CVE coordination","publication_year":2017,"publication_date":"2017-10-25","ids":{"openalex":"https://openalex.org/W2769686659","doi":"https://doi.org/10.1145/3143434.3143458","mag":"2769686659"},"language":"en","primary_location":{"id":"doi:10.1145/3143434.3143458","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3143434.3143458","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 27th International Workshop on Software Measurement and 12th International Conference on Software Process and Product Measurement","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5045061250","display_name":"Jukka Ruohonen","orcid":"https://orcid.org/0000-0001-5147-3084"},"institutions":[{"id":"https://openalex.org/I155660961","display_name":"University of Turku","ror":"https://ror.org/05vghhr25","country_code":"FI","type":"education","lineage":["https://openalex.org/I155660961"]}],"countries":["FI"],"is_corresponding":true,"raw_author_name":"Jukka Ruohonen","raw_affiliation_strings":["University of Turku, Turku, Finland"],"affiliations":[{"raw_affiliation_string":"University of Turku, Turku, Finland","institution_ids":["https://openalex.org/I155660961"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5006523717","display_name":"Sami Hyrynsalmi","orcid":"https://orcid.org/0000-0002-5073-3750"},"institutions":[{"id":"https://openalex.org/I4210133110","display_name":"Tampere University","ror":null,"country_code":"FI","type":null,"lineage":["https://openalex.org/I4210133110"]}],"countries":["FI"],"is_corresponding":false,"raw_author_name":"Sami Hyrynsalmi","raw_affiliation_strings":["Tampere University of Technology, Tampere, Finland"],"affiliations":[{"raw_affiliation_string":"Tampere University of Technology, Tampere, Finland","institution_ids":["https://openalex.org/I4210133110"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5023392536","display_name":"Sampsa Rauti","orcid":"https://orcid.org/0000-0002-1891-2353"},"institutions":[{"id":"https://openalex.org/I155660961","display_name":"University of Turku","ror":"https://ror.org/05vghhr25","country_code":"FI","type":"education","lineage":["https://openalex.org/I155660961"]}],"countries":["FI"],"is_corresponding":false,"raw_author_name":"Sampsa Rauti","raw_affiliation_strings":["University of Turku, Turku, Finland"],"affiliations":[{"raw_affiliation_string":"University of Turku, Turku, Finland","institution_ids":["https://openalex.org/I155660961"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5029023235","display_name":"Ville Lepp\u00e4nen","orcid":"https://orcid.org/0000-0001-5296-677X"},"institutions":[{"id":"https://openalex.org/I155660961","display_name":"University of Turku","ror":"https://ror.org/05vghhr25","country_code":"FI","type":"education","lineage":["https://openalex.org/I155660961"]}],"countries":["FI"],"is_corresponding":false,"raw_author_name":"Ville Lepp\u00e4nen","raw_affiliation_strings":["University of Turku, Turku, Finland"],"affiliations":[{"raw_affiliation_string":"University of Turku, Turku, Finland","institution_ids":["https://openalex.org/I155660961"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5045061250"],"corresponding_institution_ids":["https://openalex.org/I155660961"],"apc_list":null,"apc_paid":null,"fwci":3.0348,"has_fulltext":false,"cited_by_count":8,"citation_normalized_percentile":{"value":0.93260426,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"176","last_page":"188"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9984999895095825,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9984999895095825,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9979000091552734,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11675","display_name":"Open Source Software Innovations","score":0.9865000247955322,"subfield":{"id":"https://openalex.org/subfields/1706","display_name":"Computer Science Applications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6451037526130676},{"id":"https://openalex.org/keywords/relevance","display_name":"Relevance (law)","score":0.6430938243865967},{"id":"https://openalex.org/keywords/corporation","display_name":"Corporation","score":0.5607941746711731},{"id":"https://openalex.org/keywords/identifier","display_name":"Identifier","score":0.5542563199996948},{"id":"https://openalex.org/keywords/empirical-research","display_name":"Empirical research","score":0.523212194442749},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.4469633102416992},{"id":"https://openalex.org/keywords/secure-coding","display_name":"Secure coding","score":0.4315004348754883},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.33431923389434814},{"id":"https://openalex.org/keywords/data-science","display_name":"Data science","score":0.3285149335861206},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.24862396717071533},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.20058399438858032},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.17923420667648315},{"id":"https://openalex.org/keywords/political-science","display_name":"Political science","score":0.1486051082611084}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6451037526130676},{"id":"https://openalex.org/C158154518","wikidata":"https://www.wikidata.org/wiki/Q7310970","display_name":"Relevance (law)","level":2,"score":0.6430938243865967},{"id":"https://openalex.org/C2778348171","wikidata":"https://www.wikidata.org/wiki/Q167037","display_name":"Corporation","level":2,"score":0.5607941746711731},{"id":"https://openalex.org/C154504017","wikidata":"https://www.wikidata.org/wiki/Q853614","display_name":"Identifier","level":2,"score":0.5542563199996948},{"id":"https://openalex.org/C120936955","wikidata":"https://www.wikidata.org/wiki/Q2155640","display_name":"Empirical research","level":2,"score":0.523212194442749},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.4469633102416992},{"id":"https://openalex.org/C22680326","wikidata":"https://www.wikidata.org/wiki/Q7444867","display_name":"Secure coding","level":5,"score":0.4315004348754883},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.33431923389434814},{"id":"https://openalex.org/C2522767166","wikidata":"https://www.wikidata.org/wiki/Q2374463","display_name":"Data science","level":1,"score":0.3285149335861206},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.24862396717071533},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.20058399438858032},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.17923420667648315},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.1486051082611084},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.0},{"id":"https://openalex.org/C10138342","wikidata":"https://www.wikidata.org/wiki/Q43015","display_name":"Finance","level":1,"score":0.0},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0},{"id":"https://openalex.org/C111472728","wikidata":"https://www.wikidata.org/wiki/Q9471","display_name":"Epistemology","level":1,"score":0.0},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3143434.3143458","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3143434.3143458","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 27th International Workshop on Software Measurement and 12th International Conference on Software Process and Product Measurement","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Industry, innovation and infrastructure","id":"https://metadata.un.org/sdg/9","score":0.6399999856948853}],"awards":[{"id":"https://openalex.org/G8051322690","display_name":null,"funder_award_id":"3772/31/2014","funder_id":"https://openalex.org/F4320321855","funder_display_name":"Tekes"}],"funders":[{"id":"https://openalex.org/F4320321855","display_name":"Tekes","ror":"https://ror.org/02ag8cq23"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":49,"referenced_works":["https://openalex.org/W150078352","https://openalex.org/W384698140","https://openalex.org/W588954930","https://openalex.org/W620793000","https://openalex.org/W1453750839","https://openalex.org/W1506150625","https://openalex.org/W1547612978","https://openalex.org/W1581495834","https://openalex.org/W1647671624","https://openalex.org/W1971025144","https://openalex.org/W1974902862","https://openalex.org/W1978165112","https://openalex.org/W1979273257","https://openalex.org/W1979820341","https://openalex.org/W1981589225","https://openalex.org/W1988320117","https://openalex.org/W2000573164","https://openalex.org/W2006624349","https://openalex.org/W2007946302","https://openalex.org/W2009423697","https://openalex.org/W2014692739","https://openalex.org/W2017082499","https://openalex.org/W2020464352","https://openalex.org/W2022203852","https://openalex.org/W2022318086","https://openalex.org/W2022913925","https://openalex.org/W2029926553","https://openalex.org/W2037027324","https://openalex.org/W2038767206","https://openalex.org/W2045884494","https://openalex.org/W2059536318","https://openalex.org/W2060771918","https://openalex.org/W2070209387","https://openalex.org/W2077937403","https://openalex.org/W2093986982","https://openalex.org/W2099021783","https://openalex.org/W2110915013","https://openalex.org/W2121712502","https://openalex.org/W2138003773","https://openalex.org/W2162094297","https://openalex.org/W2476303777","https://openalex.org/W2513861733","https://openalex.org/W2516920790","https://openalex.org/W2592072912","https://openalex.org/W2625060989","https://openalex.org/W3124584635","https://openalex.org/W4236952540","https://openalex.org/W4242744113","https://openalex.org/W6654253065"],"related_works":["https://openalex.org/W4378651134","https://openalex.org/W2347674884","https://openalex.org/W4252684102","https://openalex.org/W1995891224","https://openalex.org/W2352307597","https://openalex.org/W1979633005","https://openalex.org/W2163724607","https://openalex.org/W3135403405","https://openalex.org/W2023227762","https://openalex.org/W1601219286"],"abstract_inverted_index":{"Coordination":[0],"is":[1,17,63],"one":[2],"central":[3,39],"tenet":[4],"of":[5,13,126,145],"software":[6,14,67],"engineering":[7,70],"practices":[8,72],"and":[9,28,34,68,151,168],"processes.":[10],"In":[11],"terms":[12],"vulnerabilities,":[15],"coordination":[16,71,86],"particularly":[18],"evident":[19],"in":[20,56,157],"the":[21,38,45,90,106,121,129,136,143,152,172],"processes":[22],"used":[23],"for":[24,32,53,65,164,171],"obtaining":[25],"Common":[26],"Vulnerabilities":[27],"Exposures":[29],"(CVEs)":[30],"identifiers":[31],"discovered":[33],"disclosed":[35],"vulnerabilities.":[36],"As":[37],"CVE":[40,57,85,174],"tracking":[41],"infrastructure":[42],"maintained":[43],"by":[44,124],"non-profit":[46],"MITRE":[47],"Corporation":[48],"has":[49],"recently":[50],"been":[51],"criticized":[52],"time":[54],"delays":[55],"assignment,":[58],"almost":[59],"an":[60],"ideal":[61],"case":[62,153],"available":[64],"studying":[66],"security":[69],"with":[73,100,113],"practical":[74,114,169],"relevance.":[75,115],"Given":[76],"this":[77,80,158],"pragmatic":[78],"motivation,":[79],"paper":[81,107,130],"examines":[82],"open":[83],"source":[84],"that":[87],"occurs":[88],"on":[89],"public":[91],"oss-security":[92],"mailing":[93],"list.":[94],"By":[95,116],"combining":[96],"social":[97],"network":[98],"analysis":[99],"a":[101],"data-driven,":[102],"exploratory":[103],"research":[104],"approach,":[105],"asks":[108],"six":[109],"data":[110],"mining":[111],"questions":[112,122],"contemplating":[117],"about":[118],"answers":[119],"to":[120,135,142],"asked":[123],"means":[125],"descriptive":[127],"statistics,":[128],"consequently":[131],"contributes":[132],"not":[133],"only":[134],"contemporary":[137,173],"industry":[138],"debates,":[139],"but":[140],"also":[141],"tradition":[144],"empirical":[146,166],"vulnerability":[147],"research.":[148],"The":[149],"perspective":[150],"are":[154],"both":[155],"novel":[156],"tradition,":[159],"thus":[160],"opening":[161],"new":[162],"avenues":[163],"further":[165],"inquiries":[167],"improvements":[170],"coordination.":[175]},"counts_by_year":[{"year":2024,"cited_by_count":1},{"year":2022,"cited_by_count":1},{"year":2020,"cited_by_count":3},{"year":2018,"cited_by_count":3}],"updated_date":"2026-04-05T17:49:38.594831","created_date":"2025-10-10T00:00:00"}