{"id":"https://openalex.org/W2902983749","doi":"https://doi.org/10.1145/3229345.3229391","title":"Improvements to the Identification Process of Vulnerable Components","display_name":"Improvements to the Identification Process of Vulnerable Components","publication_year":2018,"publication_date":"2018-06-04","ids":{"openalex":"https://openalex.org/W2902983749","doi":"https://doi.org/10.1145/3229345.3229391","mag":"2902983749"},"language":"en","primary_location":{"id":"doi:10.1145/3229345.3229391","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3229345.3229391","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the XIV Brazilian Symposium on Information Systems","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5056546615","display_name":"Bruna Vuicik Mocelin","orcid":null},"institutions":[{"id":"https://openalex.org/I61722147","display_name":"Universidade do Vale do Rio dos Sinos","ror":"https://ror.org/05ctmmy43","country_code":"BR","type":"education","lineage":["https://openalex.org/I61722147"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"Bruna Vuicik Mocelin","raw_affiliation_strings":["Universidade do Vale do Rio dos Sinos, S\u00e3o Leopoldo, RS, Brasil"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Universidade do Vale do Rio dos Sinos, S\u00e3o Leopoldo, RS, Brasil","institution_ids":["https://openalex.org/I61722147"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5066736302","display_name":"Kleinner Farias","orcid":"https://orcid.org/0000-0003-1891-3580"},"institutions":[{"id":"https://openalex.org/I61722147","display_name":"Universidade do Vale do Rio dos Sinos","ror":"https://ror.org/05ctmmy43","country_code":"BR","type":"education","lineage":["https://openalex.org/I61722147"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"Kleinner Farias","raw_affiliation_strings":["Universidade do Vale do Rio dos Sinos, S\u00e3o Leopoldo, RS, Brasil"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Universidade do Vale do Rio dos Sinos, S\u00e3o Leopoldo, RS, Brasil","institution_ids":["https://openalex.org/I61722147"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5004988480","display_name":"Lucian Jos\u00e9 Gon\u00e7ales","orcid":"https://orcid.org/0000-0001-7367-9710"},"institutions":[{"id":"https://openalex.org/I61722147","display_name":"Universidade do Vale do Rio dos Sinos","ror":"https://ror.org/05ctmmy43","country_code":"BR","type":"education","lineage":["https://openalex.org/I61722147"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"Lucian Gon\u00e7ales","raw_affiliation_strings":["Universidade do Vale do Rio dos Sinos, S\u00e3o Leopoldo, RS, Brasil"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Universidade do Vale do Rio dos Sinos, S\u00e3o Leopoldo, RS, Brasil","institution_ids":["https://openalex.org/I61722147"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5059040836","display_name":"Vin\u00edcius Bischoff","orcid":"https://orcid.org/0000-0002-4003-1886"},"institutions":[{"id":"https://openalex.org/I61722147","display_name":"Universidade do Vale do Rio dos Sinos","ror":"https://ror.org/05ctmmy43","country_code":"BR","type":"education","lineage":["https://openalex.org/I61722147"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"Vinicius Bischoff","raw_affiliation_strings":["Universidade do Vale do Rio dos Sinos, S\u00e3o Leopoldo, RS, Brasil"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Universidade do Vale do Rio dos Sinos, S\u00e3o Leopoldo, RS, Brasil","institution_ids":["https://openalex.org/I61722147"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.14703774,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"8","issue":null,"first_page":"1","last_page":"8"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9980999827384949,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9976000189781189,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/code-refactoring","display_name":"Code refactoring","score":0.8320461511611938},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7791861295700073},{"id":"https://openalex.org/keywords/component","display_name":"Component (thermodynamics)","score":0.7755133509635925},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.6134982109069824},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.5973629355430603},{"id":"https://openalex.org/keywords/variety","display_name":"Variety (cybernetics)","score":0.5649462342262268},{"id":"https://openalex.org/keywords/secure-coding","display_name":"Secure coding","score":0.5548567771911621},{"id":"https://openalex.org/keywords/identification","display_name":"Identification (biology)","score":0.5426462292671204},{"id":"https://openalex.org/keywords/security-bug","display_name":"Security bug","score":0.47024765610694885},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.442682147026062},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.4132486581802368},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.4064549207687378},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3803471028804779},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.17487668991088867},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.13663989305496216},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.13337013125419617},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.12247928977012634},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.08838161826133728}],"concepts":[{"id":"https://openalex.org/C152752567","wikidata":"https://www.wikidata.org/wiki/Q116877","display_name":"Code refactoring","level":3,"score":0.8320461511611938},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7791861295700073},{"id":"https://openalex.org/C168167062","wikidata":"https://www.wikidata.org/wiki/Q1117970","display_name":"Component (thermodynamics)","level":2,"score":0.7755133509635925},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.6134982109069824},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.5973629355430603},{"id":"https://openalex.org/C136197465","wikidata":"https://www.wikidata.org/wiki/Q1729295","display_name":"Variety (cybernetics)","level":2,"score":0.5649462342262268},{"id":"https://openalex.org/C22680326","wikidata":"https://www.wikidata.org/wiki/Q7444867","display_name":"Secure coding","level":5,"score":0.5548567771911621},{"id":"https://openalex.org/C116834253","wikidata":"https://www.wikidata.org/wiki/Q2039217","display_name":"Identification (biology)","level":2,"score":0.5426462292671204},{"id":"https://openalex.org/C131275738","wikidata":"https://www.wikidata.org/wiki/Q7445023","display_name":"Security bug","level":5,"score":0.47024765610694885},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.442682147026062},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.4132486581802368},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.4064549207687378},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3803471028804779},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.17487668991088867},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.13663989305496216},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.13337013125419617},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.12247928977012634},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.08838161826133728},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.0},{"id":"https://openalex.org/C59822182","wikidata":"https://www.wikidata.org/wiki/Q441","display_name":"Botany","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C97355855","wikidata":"https://www.wikidata.org/wiki/Q11473","display_name":"Thermodynamics","level":1,"score":0.0},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.0},{"id":"https://openalex.org/C71924100","wikidata":"https://www.wikidata.org/wiki/Q11190","display_name":"Medicine","level":0,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3229345.3229391","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3229345.3229391","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the XIV Brazilian Symposium on Information Systems","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":10,"referenced_works":["https://openalex.org/W2009929744","https://openalex.org/W2011698232","https://openalex.org/W2060337373","https://openalex.org/W2112736324","https://openalex.org/W2257787605","https://openalex.org/W2289443514","https://openalex.org/W2322050798","https://openalex.org/W2623492889","https://openalex.org/W2964080672","https://openalex.org/W4205192141"],"related_works":["https://openalex.org/W2560421591","https://openalex.org/W2499489413","https://openalex.org/W2360920691","https://openalex.org/W4206646452","https://openalex.org/W4375854125","https://openalex.org/W2974974307","https://openalex.org/W1861216818","https://openalex.org/W1967824749","https://openalex.org/W1966682079","https://openalex.org/W2123016006"],"abstract_inverted_index":{"Applications":[0],"1":[1],"may":[2,50],"contain":[3],"vulnerabilities":[4,27,60,85,135],"for":[5],"a":[6,38,48,105],"variety":[7],"of":[8,11,16,20,74,76,86,93,96,127,145,168],"reasons,":[9],"one":[10],"which":[12],"is":[13,32],"the":[14,21,26,35,44,62,70,77,87,94,97,111,117,122,125,134,138,141,146,156,166],"use":[15],"vulnerable":[17,113,142,170],"components.":[18,98,171],"One":[19],"solutions":[22],"adopted":[23],"to":[24,33,37,109,132,137,161],"eliminate":[25],"inserted":[28],"by":[29,116],"such":[30,128],"components":[31,56,114],"update":[34,167],"component":[36,49],"more":[39],"recent":[40],"version":[41],"that":[42,68,107,155],"corrects":[43],"vulnerability.":[45],"However,":[46],"updating":[47,54,126],"require":[51],"code":[52],"refactoring,":[53],"other":[55],"and":[57,72,91,119],"inserting":[58],"new":[59,88],"in":[61,121,130,163],"application.":[63],"There":[64],"are":[65],"several":[66],"tools":[67,81],"perform":[69],"analysis":[71],"management":[73],"dependencies":[75,95],"projects,":[78],"but":[79],"few":[80],"present":[82],"information":[83],"about":[84],"versions,":[89],"incompatibilities":[90],"updates":[92],"This":[99],"article,":[100],"therefore,":[101],"presents":[102],"dep|ct":[103],"(depict),":[104],"tool":[106,157],"aims":[108],"identify":[110],"known":[112,169],"used":[115,160],"applications":[118],"help":[120],"decision":[123],"on":[124,151,165],"components,":[129],"order":[131],"mitigate":[133],"added":[136],"projects":[139,153],"through":[140],"dependencies.":[143],"Results":[144],"empirical":[147],"evaluation":[148],"carried":[149],"out":[150],"two":[152],"show":[154],"can":[158],"be":[159],"assist":[162],"deciding":[164]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}