{"id":"https://openalex.org/W4398167159","doi":"https://doi.org/10.1145/3605098.3636103","title":"Secure Crowdsource-Based Open-Source Code Verification (SC)^2V","display_name":"Secure Crowdsource-Based Open-Source Code Verification (SC)^2V","publication_year":2024,"publication_date":"2024-04-08","ids":{"openalex":"https://openalex.org/W4398167159","doi":"https://doi.org/10.1145/3605098.3636103"},"language":"en","primary_location":{"id":"doi:10.1145/3605098.3636103","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3605098.3636103","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 39th ACM/SIGAPP Symposium on Applied Computing","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5094161421","display_name":"Mor Nahum","orcid":"https://orcid.org/0009-0007-1049-6053"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":true,"raw_author_name":"Mor Nahum","raw_affiliation_strings":["Dept. of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel"],"affiliations":[{"raw_affiliation_string":"Dept. of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5055199255","display_name":"Edita Grolman","orcid":"https://orcid.org/0000-0002-8502-2035"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":false,"raw_author_name":"Edita Grolman","raw_affiliation_strings":["Dept. of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel"],"affiliations":[{"raw_affiliation_string":"Dept. of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5094161422","display_name":"Inbar Maimon","orcid":"https://orcid.org/0009-0005-5027-8988"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":false,"raw_author_name":"Inbar Maimon","raw_affiliation_strings":["Dept. of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel"],"affiliations":[{"raw_affiliation_string":"Dept. of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5063793319","display_name":"Dudu Mimran","orcid":"https://orcid.org/0009-0004-9610-6156"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":false,"raw_author_name":"Dudu Mimran","raw_affiliation_strings":["Dept. of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel"],"affiliations":[{"raw_affiliation_string":"Dept. of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5052344590","display_name":"Oleg Brodt","orcid":"https://orcid.org/0000-0002-2909-8676"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":false,"raw_author_name":"Oleg Brodt","raw_affiliation_strings":["Dept. of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel"],"affiliations":[{"raw_affiliation_string":"Dept. of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5075299708","display_name":"Aviad Elyashar","orcid":"https://orcid.org/0000-0002-0918-0146"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":false,"raw_author_name":"Aviad Elyashar","raw_affiliation_strings":["Dept. of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel"],"affiliations":[{"raw_affiliation_string":"Dept. of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5072913672","display_name":"Yuval Elovici","orcid":"https://orcid.org/0000-0002-9641-128X"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":false,"raw_author_name":"Yuval Elovici","raw_affiliation_strings":["Dept. of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel"],"affiliations":[{"raw_affiliation_string":"Dept. of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5002391103","display_name":"Asaf Shabtai","orcid":"https://orcid.org/0000-0003-0630-4059"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":false,"raw_author_name":"Asaf Shabtai","raw_affiliation_strings":["Dept. of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel"],"affiliations":[{"raw_affiliation_string":"Dept. of Software and Information Systems Engineering, Ben-Gurion University of the Negev, Beer-Sheva, Israel","institution_ids":["https://openalex.org/I124227911"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":8,"corresponding_author_ids":["https://openalex.org/A5094161421"],"corresponding_institution_ids":["https://openalex.org/I124227911"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.05476461,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"1536","last_page":"1538"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T14351","display_name":"Statistical and Computational Modeling","score":0.9883999824523926,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T14351","display_name":"Statistical and Computational Modeling","score":0.9883999824523926,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9710999727249146,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9667999744415283,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7083727717399597},{"id":"https://openalex.org/keywords/open-source","display_name":"Open source","score":0.5730791091918945},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.4673747420310974},{"id":"https://openalex.org/keywords/source-code","display_name":"Source code","score":0.41747742891311646},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.2716328501701355},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.17613357305526733},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.12117409706115723}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7083727717399597},{"id":"https://openalex.org/C3018397939","wikidata":"https://www.wikidata.org/wiki/Q3644502","display_name":"Open source","level":3,"score":0.5730791091918945},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.4673747420310974},{"id":"https://openalex.org/C43126263","wikidata":"https://www.wikidata.org/wiki/Q128751","display_name":"Source code","level":2,"score":0.41747742891311646},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.2716328501701355},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.17613357305526733},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.12117409706115723}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3605098.3636103","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3605098.3636103","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 39th ACM/SIGAPP Symposium on Applied Computing","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Partnerships for the goals","id":"https://metadata.un.org/sdg/17","score":0.4099999964237213}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":10,"referenced_works":["https://openalex.org/W2953558274","https://openalex.org/W3046453918","https://openalex.org/W3111185088","https://openalex.org/W3161491624","https://openalex.org/W3196277935","https://openalex.org/W4223897634","https://openalex.org/W4226416841","https://openalex.org/W4233279977","https://openalex.org/W4300165808","https://openalex.org/W4308562523"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2748952813","https://openalex.org/W2113128227","https://openalex.org/W632256878","https://openalex.org/W2491403535","https://openalex.org/W3081644756","https://openalex.org/W2479811461","https://openalex.org/W2104915799","https://openalex.org/W4311938462","https://openalex.org/W2355429491"],"abstract_inverted_index":{"Open-source":[0],"software":[1,151],"(OSS)":[2],"libraries":[3,177],"have":[4,43],"become":[5],"popular":[6],"among":[7],"developers":[8],"due":[9],"to":[10,13,105,119,122,157,193],"their":[11],"ability":[12],"reduce":[14],"development":[15],"time":[16],"and":[17,49,81,85,165],"costs.":[18],"However,":[19],"OSS":[20,29,68,101,144,176],"can":[21],"be":[22],"exploited":[23],"as":[24],"a":[25,76,111,134,168],"means":[26],"of":[27,55,114,143,189],"conducting":[28],"supply":[30,69,160],"chain":[31,70,161],"attacks":[32,71,94],"where":[33,182],"malicious":[34],"code":[35,141],"is":[36,147],"injected":[37],"into":[38,149],"those":[39],"libraries.":[40],"Previous":[41],"studies":[42],"proposed":[44],"various":[45,198],"methods":[46],"for":[47,110,138,197],"preventing":[48],"detecting":[50],"such":[51],"attacks,":[52,162],"however":[53],"most":[54],"them":[56],"focused":[57],"on":[58,66,174],"untargeted":[59],"attacks.":[60],"In":[61,127],"contrast,":[62],"this":[63,128],"paper":[64],"focuses":[65],"targeted":[67,159],"which":[72,146],"are":[73],"crafted":[74],"towards":[75],"specific":[77],"target":[78],"(e.g.,":[79],"developer)":[80],"performed":[82],"by":[83],"skilled":[84],"persistent":[86],"attackers":[87],"with":[88],"strong":[89],"technical":[90],"aptitude.":[91],"Since":[92],"these":[93],"do":[95],"not":[96],"appear":[97],"in":[98,167,178],"the":[99,108,150],"general":[100],"repositories,":[102],"they":[103],"tend":[104],"go":[106],"under":[107],"radar":[109],"long":[112],"period":[113],"time,":[115],"allowing":[116],"an":[117,187,195],"attacker":[118],"gain":[120],"access":[121],"sensitive":[123],"data":[124],"or":[125],"systems.":[126],"paper,":[129],"we":[130],"propose":[131],"(SC)2V":[132,155,171],"-":[133],"novel,":[135],"distributed":[136],"framework":[137,186],"secure":[139],"crowdsource-based":[140],"verification":[142],"libraries,":[145],"integrated":[148],"production":[152],"build":[153],"phase.":[154],"aims":[156],"prevent":[158],"involving":[163],"users":[164],"verifiers":[166],"collaborative":[169],"effort.":[170],"was":[172],"evaluated":[173],"900":[175],"different":[179],"attack":[180],"scenarios":[181],"it":[183],"took":[184],"our":[185],"average":[188],"just":[190],"26":[191],"seconds":[192],"issue":[194],"alert":[196],"threats.":[199]},"counts_by_year":[],"updated_date":"2026-03-27T05:58:40.876381","created_date":"2025-10-10T00:00:00"}