{"id":"https://openalex.org/W3088767213","doi":"https://doi.org/10.1155/2020/8883746","title":"A Pattern-Based Software Testing Framework for Exploitability Evaluation of Metadata Corruption Vulnerabilities","display_name":"A Pattern-Based Software Testing Framework for Exploitability Evaluation of Metadata Corruption Vulnerabilities","publication_year":2020,"publication_date":"2020-09-27","ids":{"openalex":"https://openalex.org/W3088767213","doi":"https://doi.org/10.1155/2020/8883746","mag":"3088767213"},"language":"en","primary_location":{"id":"doi:10.1155/2020/8883746","is_oa":true,"landing_page_url":"https://doi.org/10.1155/2020/8883746","pdf_url":"https://downloads.hindawi.com/journals/sp/2020/8883746.pdf","source":{"id":"https://openalex.org/S166774750","display_name":"Scientific Programming","issn_l":"1058-9244","issn":["1058-9244","1875-919X"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319869","host_organization_name":"Hindawi Publishing Corporation","host_organization_lineage":["https://openalex.org/P4310319869"],"host_organization_lineage_names":["Hindawi Publishing Corporation"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Scientific Programming","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"hybrid","oa_url":"https://downloads.hindawi.com/journals/sp/2020/8883746.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5041867782","display_name":"Fenglei Deng","orcid":null},"institutions":[{"id":"https://openalex.org/I170215575","display_name":"National University of Defense Technology","ror":"https://ror.org/05d2yfz11","country_code":"CN","type":"education","lineage":["https://openalex.org/I170215575"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Fenglei Deng","raw_affiliation_strings":["College of Electronic Science, National University of Defense Technology, Changsha 410073, China"],"affiliations":[{"raw_affiliation_string":"College of Electronic Science, National University of Defense Technology, Changsha 410073, China","institution_ids":["https://openalex.org/I170215575"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100370436","display_name":"Jian Wang","orcid":"https://orcid.org/0000-0002-3737-4175"},"institutions":[{"id":"https://openalex.org/I170215575","display_name":"National University of Defense Technology","ror":"https://ror.org/05d2yfz11","country_code":"CN","type":"education","lineage":["https://openalex.org/I170215575"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Jian Wang","raw_affiliation_strings":["College of Electronic Science, National University of Defense Technology, Changsha 410073, China"],"affiliations":[{"raw_affiliation_string":"College of Electronic Science, National University of Defense Technology, Changsha 410073, China","institution_ids":["https://openalex.org/I170215575"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100392823","display_name":"Bin Zhang","orcid":"https://orcid.org/0000-0002-2577-6257"},"institutions":[{"id":"https://openalex.org/I170215575","display_name":"National University of Defense Technology","ror":"https://ror.org/05d2yfz11","country_code":"CN","type":"education","lineage":["https://openalex.org/I170215575"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Bin Zhang","raw_affiliation_strings":["College of Electronic Science, National University of Defense Technology, Changsha 410073, China"],"affiliations":[{"raw_affiliation_string":"College of Electronic Science, National University of Defense Technology, Changsha 410073, China","institution_ids":["https://openalex.org/I170215575"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101726074","display_name":"Chao Feng","orcid":"https://orcid.org/0000-0003-0884-5457"},"institutions":[{"id":"https://openalex.org/I170215575","display_name":"National University of Defense Technology","ror":"https://ror.org/05d2yfz11","country_code":"CN","type":"education","lineage":["https://openalex.org/I170215575"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Chao Feng","raw_affiliation_strings":["College of Electronic Science, National University of Defense Technology, Changsha 410073, China"],"affiliations":[{"raw_affiliation_string":"College of Electronic Science, National University of Defense Technology, Changsha 410073, China","institution_ids":["https://openalex.org/I170215575"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5008150938","display_name":"Zhiyuan Jiang","orcid":"https://orcid.org/0000-0002-8522-5721"},"institutions":[{"id":"https://openalex.org/I170215575","display_name":"National University of Defense Technology","ror":"https://ror.org/05d2yfz11","country_code":"CN","type":"education","lineage":["https://openalex.org/I170215575"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Zhiyuan Jiang","raw_affiliation_strings":["College of Electronic Science, National University of Defense Technology, Changsha 410073, China"],"affiliations":[{"raw_affiliation_string":"College of Electronic Science, National University of Defense Technology, Changsha 410073, China","institution_ids":["https://openalex.org/I170215575"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5091742715","display_name":"Yunfei Su","orcid":"https://orcid.org/0000-0002-3698-9389"},"institutions":[{"id":"https://openalex.org/I170215575","display_name":"National University of Defense Technology","ror":"https://ror.org/05d2yfz11","country_code":"CN","type":"education","lineage":["https://openalex.org/I170215575"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Yunfei Su","raw_affiliation_strings":["College of Electronic Science, National University of Defense Technology, Changsha 410073, China"],"affiliations":[{"raw_affiliation_string":"College of Electronic Science, National University of Defense Technology, Changsha 410073, China","institution_ids":["https://openalex.org/I170215575"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5091742715","https://openalex.org/A5100370436"],"corresponding_institution_ids":["https://openalex.org/I170215575"],"apc_list":{"value":1800,"currency":"USD","value_usd":1800},"apc_paid":{"value":1800,"currency":"USD","value_usd":1800},"fwci":0.4565,"has_fulltext":true,"cited_by_count":5,"citation_normalized_percentile":{"value":0.61986971,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":96},"biblio":{"volume":"2020","issue":null,"first_page":"1","last_page":"21"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.994700014591217,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.9205827116966248},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8575392961502075},{"id":"https://openalex.org/keywords/metadata","display_name":"Metadata","score":0.7579597234725952},{"id":"https://openalex.org/keywords/heap","display_name":"Heap (data structure)","score":0.7180620431900024},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.5009102821350098},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.46710529923439026},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.36301949620246887},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3358076214790344},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.1778978705406189},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.15816518664360046},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.1557016670703888}],"concepts":[{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.9205827116966248},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8575392961502075},{"id":"https://openalex.org/C93518851","wikidata":"https://www.wikidata.org/wiki/Q180160","display_name":"Metadata","level":2,"score":0.7579597234725952},{"id":"https://openalex.org/C134757568","wikidata":"https://www.wikidata.org/wiki/Q274089","display_name":"Heap (data structure)","level":2,"score":0.7180620431900024},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.5009102821350098},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.46710529923439026},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.36301949620246887},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3358076214790344},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.1778978705406189},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.15816518664360046},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.1557016670703888},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1155/2020/8883746","is_oa":true,"landing_page_url":"https://doi.org/10.1155/2020/8883746","pdf_url":"https://downloads.hindawi.com/journals/sp/2020/8883746.pdf","source":{"id":"https://openalex.org/S166774750","display_name":"Scientific Programming","issn_l":"1058-9244","issn":["1058-9244","1875-919X"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319869","host_organization_name":"Hindawi Publishing Corporation","host_organization_lineage":["https://openalex.org/P4310319869"],"host_organization_lineage_names":["Hindawi Publishing Corporation"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Scientific Programming","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:a95fa6dc7f734d368b5dc8a2e358bbbf","is_oa":true,"landing_page_url":"https://doaj.org/article/a95fa6dc7f734d368b5dc8a2e358bbbf","pdf_url":null,"source":{"id":"https://openalex.org/S112646816","display_name":"SHILAP Revista de lepidopterolog\u00eda","issn_l":"0300-5267","issn":["0300-5267","2340-4078"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Scientific Programming, Vol 2020 (2020)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.1155/2020/8883746","is_oa":true,"landing_page_url":"https://doi.org/10.1155/2020/8883746","pdf_url":"https://downloads.hindawi.com/journals/sp/2020/8883746.pdf","source":{"id":"https://openalex.org/S166774750","display_name":"Scientific Programming","issn_l":"1058-9244","issn":["1058-9244","1875-919X"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319869","host_organization_name":"Hindawi Publishing Corporation","host_organization_lineage":["https://openalex.org/P4310319869"],"host_organization_lineage_names":["Hindawi Publishing Corporation"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Scientific Programming","raw_type":"journal-article"},"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","score":0.8199999928474426,"id":"https://metadata.un.org/sdg/16"}],"awards":[{"id":"https://openalex.org/G1110414251","display_name":null,"funder_award_id":"61702540","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G2060432329","display_name":null,"funder_award_id":"2018JJ3615","funder_id":"https://openalex.org/F4320322843","funder_display_name":"Natural Science Foundation of\u00a0Hunan Province"},{"id":"https://openalex.org/G2087396116","display_name":null,"funder_award_id":"China","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G2096039675","display_name":null,"funder_award_id":"2018JJ3615","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G2702356746","display_name":null,"funder_award_id":"61702","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G3317480652","display_name":null,"funder_award_id":"Science","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G398838554","display_name":null,"funder_award_id":"61702540","funder_id":"https://openalex.org/F4320322843","funder_display_name":"Natural Science Foundation of\u00a0Hunan Province"},{"id":"https://openalex.org/G5994120800","display_name":null,"funder_award_id":"Natural","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"}],"funders":[{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"},{"id":"https://openalex.org/F4320322843","display_name":"Natural Science Foundation of\u00a0Hunan Province","ror":null}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W3088767213.pdf","grobid_xml":"https://content.openalex.org/works/W3088767213.grobid-xml"},"referenced_works_count":9,"referenced_works":["https://openalex.org/W1981237417","https://openalex.org/W2107147876","https://openalex.org/W2131877193","https://openalex.org/W2316974788","https://openalex.org/W2508317201","https://openalex.org/W2777430404","https://openalex.org/W2794631344","https://openalex.org/W2910778426","https://openalex.org/W3098577220"],"related_works":["https://openalex.org/W17155033","https://openalex.org/W3207760230","https://openalex.org/W1496222301","https://openalex.org/W4312814274","https://openalex.org/W1590307681","https://openalex.org/W2536018345","https://openalex.org/W4285370786","https://openalex.org/W2296488620","https://openalex.org/W2358353312","https://openalex.org/W2353836703"],"abstract_inverted_index":{"In":[0,43],"recent":[1],"years,":[2],"increased":[3],"attention":[4],"is":[5],"being":[6],"given":[7],"to":[8,28,48,63,84,103,136,142,167,186],"software":[9,24,71,81],"quality":[10],"assurance":[11],"and":[12,17,21,56,69,110,150,161,194],"protection.":[13],"With":[14,122],"considerable":[15],"verification":[16],"protection":[18],"schemes":[19],"proposed":[20],"deployed,":[22],"today\u2019s":[23],"unfortunately":[25],"still":[26],"fails":[27],"be":[29,54,158],"protected":[30],"from":[31,107],"cyberattacks,":[32],"especially":[33],"in":[34,60],"the":[35,65,93,98,123,132,143,147,152,184,188],"presence":[36],"of":[37,40,67,118,131,190],"insecure":[38],"organization":[39],"heap":[41,51,99,124],"metadata.":[42],"this":[44,74],"paper,":[45],"we":[46,76,178],"aim":[47],"explore":[49],"whether":[50],"metadata":[52,90,191],"could":[53],"corrupted":[55],"exploited":[57],"by":[58],"cyberattackers,":[59],"an":[61],"attempt":[62],"assess":[64],"exploitability":[66,172,189],"vulnerabilities":[68,193],"ensure":[70],"quality.":[72],"To":[73],"end,":[75],"propose":[77],"RELAY":[78,96,128,156,182],",":[79],"a":[80,116,138],"testing":[82],"framework":[83],"simulate":[85],"human":[86,108,165],"exploitation":[87],"behavior":[88],"for":[89,171],"corruption":[91,192],"at":[92],"machine":[94],"level.":[95],"employs":[97],"layout":[100,125,139],"serialization":[101],"method":[102],"construct":[104],"exploit":[105,144],"patterns":[106],"expertise":[109],"decomposes":[111],"complex":[112],"exploit-solving":[113],"problems":[114],"into":[115],"series":[117],"intermediate":[119,148],"state-solving":[120],"subproblems.":[121],"procedural":[126],"method,":[127],"makes":[129],"use":[130],"fewer":[133],"resources":[134],"consumed":[135],"solve":[137],"problem":[140],"according":[141],"pattern,":[145],"activates":[146],"state,":[149],"generates":[151],"final":[153],"exploit.":[154],"Additionally,":[155],"can":[157,162],"easily":[159],"extended":[160],"continuously":[163],"assimilate":[164],"knowledge":[166],"enhance":[168],"its":[169],"ability":[170,185],"evaluation.":[173],"Using":[174],"20":[175],"CTF&amp;RHG":[176],"programs,":[177],"then":[179],"demonstrate":[180],"that":[181],"has":[183],"evaluate":[187],"works":[195],"more":[196],"efficiently":[197],"compared":[198],"with":[199],"other":[200],"state-of-the-art":[201],"automated":[202],"tools.":[203]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":2}],"updated_date":"2026-04-13T07:58:08.660418","created_date":"2025-10-10T00:00:00"}