{"id":"https://openalex.org/W3136506260","doi":"https://doi.org/10.1145/3442520.3442526","title":"VCPEC: Vulnerability Correlation Analysis Based on Privilege Escalation and Coritivity Theory","display_name":"VCPEC: Vulnerability Correlation Analysis Based on Privilege Escalation and Coritivity Theory","publication_year":2020,"publication_date":"2020-11-27","ids":{"openalex":"https://openalex.org/W3136506260","doi":"https://doi.org/10.1145/3442520.3442526","mag":"3136506260"},"language":"en","primary_location":{"id":"doi:10.1145/3442520.3442526","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3442520.3442526","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2020 the 10th International Conference on Communication and Network Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5100696141","display_name":"Xuefei Wang","orcid":"https://orcid.org/0000-0003-0907-3196"},"institutions":[{"id":"https://openalex.org/I125839683","display_name":"Beijing Institute of Technology","ror":"https://ror.org/01skt4w74","country_code":"CN","type":"education","lineage":["https://openalex.org/I125839683","https://openalex.org/I890469752"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Xuefei Wang","raw_affiliation_strings":["Beijing Institute of Technology, China"],"affiliations":[{"raw_affiliation_string":"Beijing Institute of Technology, China","institution_ids":["https://openalex.org/I125839683"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101823328","display_name":"Rui Ma","orcid":"https://orcid.org/0000-0003-1954-5775"},"institutions":[{"id":"https://openalex.org/I125839683","display_name":"Beijing Institute of Technology","ror":"https://ror.org/01skt4w74","country_code":"CN","type":"education","lineage":["https://openalex.org/I125839683","https://openalex.org/I890469752"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Rui Ma","raw_affiliation_strings":["Beijing Institute of Technology, China"],"affiliations":[{"raw_affiliation_string":"Beijing Institute of Technology, China","institution_ids":["https://openalex.org/I125839683"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5059751912","display_name":"Donghai Tian","orcid":"https://orcid.org/0000-0003-2217-4514"},"institutions":[{"id":"https://openalex.org/I125839683","display_name":"Beijing Institute of Technology","ror":"https://ror.org/01skt4w74","country_code":"CN","type":"education","lineage":["https://openalex.org/I125839683","https://openalex.org/I890469752"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Donghai Tian","raw_affiliation_strings":["Beijing Institute of Technology, China"],"affiliations":[{"raw_affiliation_string":"Beijing Institute of Technology, China","institution_ids":["https://openalex.org/I125839683"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5067372916","display_name":"Xiajing Wang","orcid":"https://orcid.org/0000-0002-9897-0579"},"institutions":[{"id":"https://openalex.org/I125839683","display_name":"Beijing Institute of Technology","ror":"https://ror.org/01skt4w74","country_code":"CN","type":"education","lineage":["https://openalex.org/I125839683","https://openalex.org/I890469752"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xiajing Wang","raw_affiliation_strings":["Beijing Institute of Technology, China"],"affiliations":[{"raw_affiliation_string":"Beijing Institute of Technology, China","institution_ids":["https://openalex.org/I125839683"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5100696141"],"corresponding_institution_ids":["https://openalex.org/I125839683"],"apc_list":null,"apc_paid":null,"fwci":0.3083,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.63728683,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":94},"biblio":{"volume":null,"issue":null,"first_page":"99","last_page":"108"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10994","display_name":"Terrorism, Counterterrorism, and Political Violence","score":0.9760000109672546,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5604128837585449},{"id":"https://openalex.org/keywords/privilege","display_name":"Privilege (computing)","score":0.5586059093475342},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.520474910736084},{"id":"https://openalex.org/keywords/correlation","display_name":"Correlation","score":0.41933560371398926},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3735302984714508},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.22576865553855896}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5604128837585449},{"id":"https://openalex.org/C2780138299","wikidata":"https://www.wikidata.org/wiki/Q3404265","display_name":"Privilege (computing)","level":2,"score":0.5586059093475342},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.520474910736084},{"id":"https://openalex.org/C117220453","wikidata":"https://www.wikidata.org/wiki/Q5172842","display_name":"Correlation","level":2,"score":0.41933560371398926},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3735302984714508},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.22576865553855896},{"id":"https://openalex.org/C2524010","wikidata":"https://www.wikidata.org/wiki/Q8087","display_name":"Geometry","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3442520.3442526","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3442520.3442526","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2020 the 10th International Conference on Communication and Network Security","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","score":0.5199999809265137,"display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":27,"referenced_works":["https://openalex.org/W136325890","https://openalex.org/W315844087","https://openalex.org/W1966279959","https://openalex.org/W1990091526","https://openalex.org/W2002368644","https://openalex.org/W2054127354","https://openalex.org/W2083658929","https://openalex.org/W2103361969","https://openalex.org/W2104588447","https://openalex.org/W2131875370","https://openalex.org/W2294760772","https://openalex.org/W2592742115","https://openalex.org/W2754851791","https://openalex.org/W2767794223","https://openalex.org/W2774546595","https://openalex.org/W2787410805","https://openalex.org/W2794988934","https://openalex.org/W2800109782","https://openalex.org/W2883450395","https://openalex.org/W2884720094","https://openalex.org/W2901762195","https://openalex.org/W2914093306","https://openalex.org/W2936291750","https://openalex.org/W2945624265","https://openalex.org/W2964682570","https://openalex.org/W2971572923","https://openalex.org/W2997353660"],"related_works":["https://openalex.org/W2748952813","https://openalex.org/W2374400535","https://openalex.org/W1603110617","https://openalex.org/W2108239983","https://openalex.org/W2892079901","https://openalex.org/W2940342784","https://openalex.org/W2390279801","https://openalex.org/W2134261832","https://openalex.org/W2358668433","https://openalex.org/W4385764548"],"abstract_inverted_index":{"Vulnerability":[0],"correlation":[1,58,84],"analysis":[2,59],"has":[3],"become":[4],"a":[5,56,72,82],"key":[6,77],"technique":[7],"in":[8,34,45,103,159],"the":[9,17,27,36,40,89,95,101,104,108,114,117,121,141,153,164],"field":[10],"of":[11,19,116,137,143,157],"vulnerability":[12,57,83,96],"analysis,":[13],"which":[14],"effectively":[15],"addresses":[16],"limitation":[18],"only":[20],"analyzing":[21],"an":[22],"isolated":[23],"vulnerability.":[24],"Even":[25],"though":[26],"existing":[28],"techniques":[29],"have":[30],"demonstrated":[31],"their":[32],"effectiveness":[33],"assessing":[35],"complex":[37],"relationship":[38],"between":[39],"vulnerabilities,":[41],"they":[42],"remain":[43],"limited":[44],"accurately":[46,170],"locating":[47],"critical":[48,65,122,131,172],"vulnerabilities.":[49,145,173],"To":[50],"overcome":[51],"this":[52],"issue,":[53],"we":[54],"design":[55,147],"method,":[60],"named":[61],"VCPEC,":[62],"to":[63,80,88,112,133,151],"discover":[64],"vulnerabilities":[66,123,132],"using":[67],"extended":[68,109],"coritivity":[69,110],"theory":[70,111],"towards":[71],"novel":[73],"privilege":[74,91,97],"model.":[75],"The":[76],"idea":[78],"is":[79],"construct":[81],"graph":[85],"(VCG)":[86],"according":[87],"system":[90],"grading":[92],"strategy":[93],"and":[94,148,155],"escalation":[98],"paths,":[99],"reducing":[100],"complexity":[102],"graph.":[105],"Then":[106],"use":[107],"calculate":[113],"core":[115],"VCG,":[118],"that":[119,167],"means":[120],"can":[124,169],"be":[125],"further":[126],"recognized.":[127],"Thus,":[128],"by":[129],"repairing":[130,144],"achieve":[134],"efficient":[135],"protection":[136],"target":[138],"system,":[139],"saving":[140],"cost":[142],"We":[146],"perform":[149],"experiments":[150],"verify":[152],"feasibility":[154],"efficiency":[156],"VCPEC":[158,168],"real-world":[160],"software":[161],"systems.":[162],"And":[163],"results":[165],"show":[166],"locate":[171]},"counts_by_year":[{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}