{"id":"https://openalex.org/W4402553615","doi":"https://doi.org/10.1145/3652620.3687791","title":"Modelling Tool Extension for Vulnerability Management","display_name":"Modelling Tool Extension for Vulnerability Management","publication_year":2024,"publication_date":"2024-09-22","ids":{"openalex":"https://openalex.org/W4402553615","doi":"https://doi.org/10.1145/3652620.3687791"},"language":"en","primary_location":{"id":"doi:10.1145/3652620.3687791","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3652620.3687791","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the ACM/IEEE 27th International Conference on Model Driven Engineering Languages and Systems","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1145/3652620.3687791","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5059251260","display_name":"Avi Shaked","orcid":"https://orcid.org/0000-0001-7976-1942"},"institutions":[{"id":"https://openalex.org/I40120149","display_name":"University of Oxford","ror":"https://ror.org/052gg0110","country_code":"GB","type":"education","lineage":["https://openalex.org/I40120149"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Avi Shaked","raw_affiliation_strings":["Department of Computer Science, University of Oxford, Oxford, United Kingdom","University of Oxford (Wellington Square, Oxford OX1 2JD - Royaume-Uni)"],"raw_orcid":"https://orcid.org/0000-0001-7976-1942","affiliations":[{"raw_affiliation_string":"Department of Computer Science, University of Oxford, Oxford, United Kingdom","institution_ids":["https://openalex.org/I40120149"]},{"raw_affiliation_string":"University of Oxford (Wellington Square, Oxford OX1 2JD - Royaume-Uni)","institution_ids":["https://openalex.org/I40120149"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5025878846","display_name":"Nan Messe","orcid":"https://orcid.org/0000-0002-3766-0710"},"institutions":[{"id":"https://openalex.org/I1294671590","display_name":"Centre National de la Recherche Scientifique","ror":"https://ror.org/02feahw73","country_code":"FR","type":"government","lineage":["https://openalex.org/I1294671590"]},{"id":"https://openalex.org/I134560555","display_name":"Universit\u00e9 Toulouse III - Paul Sabatier","ror":"https://ror.org/02v6kpv12","country_code":"FR","type":"education","lineage":["https://openalex.org/I134560555"]},{"id":"https://openalex.org/I3131550300","display_name":"Universit\u00e9 Toulouse-I-Capitole","ror":"https://ror.org/0443n9e75","country_code":"FR","type":"education","lineage":["https://openalex.org/I3131550300"]},{"id":"https://openalex.org/I4210119061","display_name":"Institut de Recherche en Informatique de Toulouse","ror":"https://ror.org/01rx4qw44","country_code":"FR","type":"facility","lineage":["https://openalex.org/I1294671590","https://openalex.org/I205747304","https://openalex.org/I205747304","https://openalex.org/I4210119061","https://openalex.org/I4210152422","https://openalex.org/I4387153255","https://openalex.org/I4405258862","https://openalex.org/I4405259414"]},{"id":"https://openalex.org/I4210152422","display_name":"Universit\u00e9 Toulouse - Jean Jaur\u00e8s","ror":"https://ror.org/04ezk3x31","country_code":"FR","type":"education","lineage":["https://openalex.org/I4210152422"]},{"id":"https://openalex.org/I4210160189","display_name":"Institut Polytechnique de Bordeaux","ror":"https://ror.org/054qv7y42","country_code":"FR","type":"education","lineage":["https://openalex.org/I4210160189"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Nan Messe","raw_affiliation_strings":["IRIT, CNRS, UT2, Toulouse, France","IRIT - Institut de recherche en informatique de Toulouse (118 Route de Narbonne, F-31062 Toulouse Cedex 9 - France)","UT2J - Universit\u00e9 Toulouse - Jean Jaur\u00e8s (5 all\u00e9es Antonio Machado - 31058 Toulouse Cedex 9  - France)","IRIT-SM@RT - Smart Modeling for softw@re Research and Technology (Institut de recherche en informatique de Toulouse - IRIT \r\nMaison de la Recherche / Universit\u00e9 Toulouse - Jean Jaur\u00e8s \r\n5 all\u00e9es Antonio Machado \r\n31058 TOULOUSE Cedex 9  - France)"],"raw_orcid":"https://orcid.org/0000-0002-3766-0710","affiliations":[{"raw_affiliation_string":"IRIT, CNRS, UT2, Toulouse, France","institution_ids":["https://openalex.org/I4210152422","https://openalex.org/I1294671590","https://openalex.org/I134560555","https://openalex.org/I4210119061","https://openalex.org/I3131550300","https://openalex.org/I4210160189"]},{"raw_affiliation_string":"IRIT - Institut de recherche en informatique de Toulouse (118 Route de Narbonne, F-31062 Toulouse Cedex 9 - France)","institution_ids":["https://openalex.org/I4210152422","https://openalex.org/I134560555","https://openalex.org/I4210119061","https://openalex.org/I3131550300","https://openalex.org/I4210160189"]},{"raw_affiliation_string":"UT2J - Universit\u00e9 Toulouse - Jean Jaur\u00e8s (5 all\u00e9es Antonio Machado - 31058 Toulouse Cedex 9  - France)","institution_ids":["https://openalex.org/I4210152422"]},{"raw_affiliation_string":"IRIT-SM@RT - Smart Modeling for softw@re Research and Technology (Institut de recherche en informatique de Toulouse - IRIT \r\nMaison de la Recherche / Universit\u00e9 Toulouse - Jean Jaur\u00e8s \r\n5 all\u00e9es Antonio Machado \r\n31058 TOULOUSE Cedex 9  - France)","institution_ids":["https://openalex.org/I4210152422","https://openalex.org/I134560555","https://openalex.org/I4210119061","https://openalex.org/I3131550300","https://openalex.org/I4210160189"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5015518667","display_name":"Tom Melham","orcid":null},"institutions":[{"id":"https://openalex.org/I40120149","display_name":"University of Oxford","ror":"https://ror.org/052gg0110","country_code":"GB","type":"education","lineage":["https://openalex.org/I40120149"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Tom Melham","raw_affiliation_strings":["Department of Computer Science, University of Oxford, Oxford, United Kingdom","University of Oxford (Wellington Square, Oxford OX1 2JD - Royaume-Uni)"],"raw_orcid":"https://orcid.org/0000-0002-2462-2782","affiliations":[{"raw_affiliation_string":"Department of Computer Science, University of Oxford, Oxford, United Kingdom","institution_ids":["https://openalex.org/I40120149"]},{"raw_affiliation_string":"University of Oxford (Wellington Square, Oxford OX1 2JD - Royaume-Uni)","institution_ids":["https://openalex.org/I40120149"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.6796,"has_fulltext":true,"cited_by_count":1,"citation_normalized_percentile":{"value":0.77166437,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":95},"biblio":{"volume":null,"issue":null,"first_page":"56","last_page":"60"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9983000159263611,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9983000159263611,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.996399998664856,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9952999949455261,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/extension","display_name":"Extension (predicate logic)","score":0.7143439650535583},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6540219187736511},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.5567370653152466},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.20501425862312317},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.15122905373573303}],"concepts":[{"id":"https://openalex.org/C2778029271","wikidata":"https://www.wikidata.org/wiki/Q5421931","display_name":"Extension (predicate logic)","level":2,"score":0.7143439650535583},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6540219187736511},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.5567370653152466},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.20501425862312317},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.15122905373573303}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1145/3652620.3687791","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3652620.3687791","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the ACM/IEEE 27th International Conference on Model Driven Engineering Languages and Systems","raw_type":"proceedings-article"},{"id":"pmh:oai:HAL:hal-04696251v1","is_oa":true,"landing_page_url":"https://ut3-toulouseinp.hal.science/hal-04696251","pdf_url":"https://ut3-toulouseinp.hal.science/hal-04696251/document","source":{"id":"https://openalex.org/S4306402512","display_name":"HAL (Le Centre pour la Communication Scientifique Directe)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1294671590","host_organization_name":"Centre National de la Recherche Scientifique","host_organization_lineage":["https://openalex.org/I1294671590"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"2024","raw_type":"Preprints, Working Papers, ..."},{"id":"pmh:oai:ora.ox.ac.uk:uuid:abfb439b-b13d-4f18-a108-f50165183ab3","is_oa":false,"landing_page_url":"https://ora.ox.ac.uk/objects/uuid:abfb439b-b13d-4f18-a108-f50165183ab3","pdf_url":null,"source":{"id":"https://openalex.org/S4306402636","display_name":"Oxford University Research Archive (ORA) (University of Oxford)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I40120149","host_organization_name":"University of Oxford","host_organization_lineage":["https://openalex.org/I40120149"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Symplectic Elements","raw_type":"Conference item"}],"best_oa_location":{"id":"doi:10.1145/3652620.3687791","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3652620.3687791","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the ACM/IEEE 27th International Conference on Model Driven Engineering Languages and Systems","raw_type":"proceedings-article"},"sustainable_development_goals":[{"display_name":"Reduced inequalities","score":0.4099999964237213,"id":"https://metadata.un.org/sdg/10"}],"awards":[{"id":"https://openalex.org/G2875770267","display_name":"Soteria - Demonstrating the Security Capabilities of the Morello System in the e-commerce Vertical Industrial Segment","funder_award_id":"75243","funder_id":"https://openalex.org/F4320335087","funder_display_name":"Innovate UK"}],"funders":[{"id":"https://openalex.org/F4320335087","display_name":"Innovate UK","ror":"https://ror.org/05ar5fy68"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":8,"referenced_works":["https://openalex.org/W1993051533","https://openalex.org/W3035080891","https://openalex.org/W3199469813","https://openalex.org/W3210147837","https://openalex.org/W4306762697","https://openalex.org/W4364361036","https://openalex.org/W4387824443","https://openalex.org/W4394995601"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2899084033","https://openalex.org/W2748952813","https://openalex.org/W2075768550","https://openalex.org/W3022218857","https://openalex.org/W2369178846","https://openalex.org/W2390279801","https://openalex.org/W2370289839","https://openalex.org/W4391913857","https://openalex.org/W2358668433"],"abstract_inverted_index":{"Managing":[0],"vulnerabilities":[1],"with":[2],"respect":[3],"to":[4,11,26,104],"the":[5,31,63,69,72,109,125],"design":[6,46],"of":[7,33,42,111,128],"systems":[8,13,44,112,129],"is":[9],"essential":[10],"securing":[12],"and":[14,47,51,89,101,106],"establishing":[15,124],"their":[16],"trustworthiness.":[17],"Until":[18],"now,":[19],"there":[20],"has":[21],"been":[22],"no":[23],"modelling":[24],"tool":[25,74,116],"support":[27],"vulnerability":[28,58,87,126],"management":[29,59],"within":[30],"context":[32],"system":[34],"design.":[35],"We":[36],"present":[37],"a":[38,43,56],"new,":[39],"open-source":[40],"extension":[41,54],"security":[45,90,110],"assessment":[48],"tool.":[49],"First":[50],"foremost,":[52],"this":[53],"integrates":[55],"pertinent":[57],"domain":[60],"ontology":[61],"into":[62],"tool's":[64],"underlying":[65],"metamodel.":[66],"Based":[67],"on":[68],"extended":[70,115],"metamodel,":[71],"enriched":[73],"supports":[75],"importing":[76],"information":[77,88,93],"from":[78],"vulnerability-related":[79],"knowledge":[80],"bases":[81],"as":[82,84],"well":[83],"capturing":[85],"new":[86],"rules.":[91],"This":[92],"can":[94],"then":[95],"be":[96],"used":[97],"in":[98],"an":[99,119],"integrative":[100],"scalable":[102],"form":[103],"analyse":[105],"reason":[107],"about":[108],"designs.":[113,130],"The":[114],"now":[117],"includes":[118],"automated":[120],"reasoning":[121],"mechanism":[122],"for":[123],"posture":[127]},"counts_by_year":[{"year":2025,"cited_by_count":1}],"updated_date":"2026-06-22T08:00:12.763002","created_date":"2025-10-10T00:00:00"}