{"id":"https://openalex.org/W4389279158","doi":"https://doi.org/10.1145/3627106.3627188","title":"PAVUDI: Patch-based Vulnerability Discovery using Machine Learning","display_name":"PAVUDI: Patch-based Vulnerability Discovery using Machine Learning","publication_year":2023,"publication_date":"2023-12-02","ids":{"openalex":"https://openalex.org/W4389279158","doi":"https://doi.org/10.1145/3627106.3627188"},"language":"en","primary_location":{"id":"doi:10.1145/3627106.3627188","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3627106.3627188","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3627106.3627188","source":{"id":"https://openalex.org/S4306417673","display_name":"Annual Computer Security Applications Conference","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Annual Computer Security Applications Conference","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"hybrid","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3627106.3627188","any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5083594920","display_name":"Tom Ganz","orcid":"https://orcid.org/0000-0002-4337-4390"},"institutions":[{"id":"https://openalex.org/I4210132444","display_name":"Systems, Applications & Products in Data Processing (Germany)","ror":"https://ror.org/03dsc8d33","country_code":"DE","type":"company","lineage":["https://openalex.org/I4210132444"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Tom Ganz","raw_affiliation_strings":["SAP SE, Germany"],"raw_orcid":"https://orcid.org/0000-0002-4337-4390","affiliations":[{"raw_affiliation_string":"SAP SE, Germany","institution_ids":["https://openalex.org/I4210132444"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5092446289","display_name":"Erik Imgrund","orcid":"https://orcid.org/0009-0003-2854-6419"},"institutions":[{"id":"https://openalex.org/I4210132444","display_name":"Systems, Applications & Products in Data Processing (Germany)","ror":"https://ror.org/03dsc8d33","country_code":"DE","type":"company","lineage":["https://openalex.org/I4210132444"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Erik Imgrund","raw_affiliation_strings":["SAP SE, Germany"],"raw_orcid":"https://orcid.org/0009-0003-2854-6419","affiliations":[{"raw_affiliation_string":"SAP SE, Germany","institution_ids":["https://openalex.org/I4210132444"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5026679042","display_name":"Martin H\u00e4rterich","orcid":"https://orcid.org/0000-0002-8349-5912"},"institutions":[{"id":"https://openalex.org/I4210132444","display_name":"Systems, Applications & Products in Data Processing (Germany)","ror":"https://ror.org/03dsc8d33","country_code":"DE","type":"company","lineage":["https://openalex.org/I4210132444"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Martin H\u00e4rterich","raw_affiliation_strings":["SAP SE, Germany"],"raw_orcid":"https://orcid.org/0000-0002-8349-5912","affiliations":[{"raw_affiliation_string":"SAP SE, Germany","institution_ids":["https://openalex.org/I4210132444"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5066077721","display_name":"Konrad Rieck","orcid":"https://orcid.org/0000-0002-5054-8758"},"institutions":[{"id":"https://openalex.org/I4577782","display_name":"Technische Universit\u00e4t Berlin","ror":"https://ror.org/03v4gjf40","country_code":"DE","type":"education","lineage":["https://openalex.org/I4577782"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Konrad Rieck","raw_affiliation_strings":["Technische Universit\u00e4t Berlin, Germany"],"raw_orcid":"https://orcid.org/0000-0002-5054-8758","affiliations":[{"raw_affiliation_string":"Technische Universit\u00e4t Berlin, Germany","institution_ids":["https://openalex.org/I4577782"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":1.144,"has_fulltext":true,"cited_by_count":2,"citation_normalized_percentile":{"value":0.8097503,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":95},"biblio":{"volume":null,"issue":null,"first_page":"704","last_page":"717"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9988999962806702,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9979000091552734,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8402433395385742},{"id":"https://openalex.org/keywords/software-deployment","display_name":"Software deployment","score":0.6071125864982605},{"id":"https://openalex.org/keywords/context","display_name":"Context (archaeology)","score":0.5456108450889587},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.532141387462616},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.5274781584739685},{"id":"https://openalex.org/keywords/deep-learning","display_name":"Deep learning","score":0.5109871625900269},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.5100460648536682},{"id":"https://openalex.org/keywords/graph","display_name":"Graph","score":0.46264541149139404},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.43048563599586487},{"id":"https://openalex.org/keywords/feature-learning","display_name":"Feature learning","score":0.4299187660217285},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.2365858256816864},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.1910402774810791},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.16591012477874756},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.09690681099891663}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8402433395385742},{"id":"https://openalex.org/C105339364","wikidata":"https://www.wikidata.org/wiki/Q2297740","display_name":"Software deployment","level":2,"score":0.6071125864982605},{"id":"https://openalex.org/C2779343474","wikidata":"https://www.wikidata.org/wiki/Q3109175","display_name":"Context (archaeology)","level":2,"score":0.5456108450889587},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.532141387462616},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.5274781584739685},{"id":"https://openalex.org/C108583219","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep learning","level":2,"score":0.5109871625900269},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.5100460648536682},{"id":"https://openalex.org/C132525143","wikidata":"https://www.wikidata.org/wiki/Q141488","display_name":"Graph","level":2,"score":0.46264541149139404},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.43048563599586487},{"id":"https://openalex.org/C59404180","wikidata":"https://www.wikidata.org/wiki/Q17013334","display_name":"Feature learning","level":2,"score":0.4299187660217285},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.2365858256816864},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.1910402774810791},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.16591012477874756},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.09690681099891663},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C151730666","wikidata":"https://www.wikidata.org/wiki/Q7205","display_name":"Paleontology","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3627106.3627188","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3627106.3627188","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3627106.3627188","source":{"id":"https://openalex.org/S4306417673","display_name":"Annual Computer Security Applications Conference","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Annual Computer Security Applications Conference","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/3627106.3627188","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3627106.3627188","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3627106.3627188","source":{"id":"https://openalex.org/S4306417673","display_name":"Annual Computer Security Applications Conference","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Annual Computer Security Applications Conference","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G3582019854","display_name":null,"funder_award_id":"16KIS1165K","funder_id":"https://openalex.org/F4320321114","funder_display_name":"Bundesministerium f\u00fcr Bildung und Forschung"}],"funders":[{"id":"https://openalex.org/F4320321114","display_name":"Bundesministerium f\u00fcr Bildung und Forschung","ror":"https://ror.org/04pz7b180"}],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4389279158.pdf","grobid_xml":"https://content.openalex.org/works/W4389279158.grobid-xml"},"referenced_works_count":34,"referenced_works":["https://openalex.org/W1491178396","https://openalex.org/W1553894716","https://openalex.org/W1555624314","https://openalex.org/W1992114977","https://openalex.org/W2091543666","https://openalex.org/W2098824882","https://openalex.org/W2102890180","https://openalex.org/W2138788987","https://openalex.org/W2151135920","https://openalex.org/W2297419069","https://openalex.org/W2560041978","https://openalex.org/W2634106992","https://openalex.org/W2766540688","https://openalex.org/W2890991187","https://openalex.org/W2900044545","https://openalex.org/W2962858109","https://openalex.org/W3096425977","https://openalex.org/W3111602563","https://openalex.org/W3137781054","https://openalex.org/W3152373127","https://openalex.org/W3161071537","https://openalex.org/W3162344723","https://openalex.org/W3174779340","https://openalex.org/W3180921142","https://openalex.org/W3191226037","https://openalex.org/W3209597191","https://openalex.org/W4225484397","https://openalex.org/W4285490489","https://openalex.org/W4287673430","https://openalex.org/W4289038676","https://openalex.org/W4290948450","https://openalex.org/W4312436517","https://openalex.org/W4366544887","https://openalex.org/W4385412135"],"related_works":["https://openalex.org/W2770234245","https://openalex.org/W96612179","https://openalex.org/W4229499248","https://openalex.org/W2566006169","https://openalex.org/W1567818861","https://openalex.org/W2987774938","https://openalex.org/W4256492088","https://openalex.org/W3048601286","https://openalex.org/W2965925734","https://openalex.org/W4285218279"],"abstract_inverted_index":{"Machine":[0],"learning":[1],"has":[2,115],"been":[3],"increasingly":[4],"adopted":[5],"for":[6,82,137],"automatic":[7],"security":[8,87],"vulnerability":[9,106],"discovery":[10,41,107],"in":[11,23,55],"research":[12],"and":[13,20,74,84,101,111,132],"industry.":[14],"The":[15],"ability":[16],"to":[17,27,30,53,78,96,99],"automatically":[18],"identify":[19],"prioritize":[21],"bugs":[22],"patches":[24,54,81,100],"is":[25,122,133],"crucial":[26],"organizations":[28],"seeking":[29],"defend":[31],"against":[32,126],"potential":[33,86],"threats.":[34],"Previous":[35],"works,":[36],"however":[37],"only":[38],"consider":[39],"bug":[40],"on":[42],"statement,":[43],"function":[44],"or":[45],"file":[46],"level.":[47],"How":[48],"one":[49],"would":[50],"apply":[51],"them":[52],"realistic":[56],"scenarios":[57],"remains":[58],"unclear.":[59],"This":[60],"paper":[61],"presents":[62],"a":[63,109,116,150],"novel":[64],"deep":[65],"learning-based":[66,93,113],"approach":[67],"leveraging":[68],"an":[69],"interprocedural":[70],"patch":[71,151],"graph":[72,75],"representation":[73],"neural":[76],"networks":[77],"analyze":[79],"software":[80],"identifying":[83],"locating":[85],"vulnerabilities.":[88],"We":[89],"modify":[90],"current":[91],"state-of-the-art":[92],"static":[94],"analyzers":[95],"be":[97],"applicable":[98],"show":[102],"that":[103],"our":[104],"patch-based":[105],"method,":[108],"context":[110],"flow-sensitive":[112],"model,":[114],"more":[117,153],"than":[118,154],"increased":[119],"detection":[120],"performance,":[121],"twice":[123],"as":[124],"robust":[125],"concept":[127],"drift":[128],"after":[129],"model":[130],"deployment":[131],"particularly":[134],"better":[135],"suited":[136],"analyzing":[138],"large":[139],"patches.":[140],"In":[141],"comparison,":[142],"other":[143],"methods":[144],"already":[145],"lose":[146],"their":[147],"efficiency":[148],"when":[149],"touches":[152],"five":[155],"methods.":[156]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}