{"id":"https://openalex.org/W4408957896","doi":"https://doi.org/10.1504/ijaacs.2025.10070268","title":"Software Security Assurance with an Augmented Software Component Analysis Approach for Open Source Component Evaluation","display_name":"Software Security Assurance with an Augmented Software Component Analysis Approach for Open Source Component Evaluation","publication_year":2025,"publication_date":"2025-01-01","ids":{"openalex":"https://openalex.org/W4408957896","doi":"https://doi.org/10.1504/ijaacs.2025.10070268"},"language":"en","primary_location":{"id":"doi:10.1504/ijaacs.2025.10070268","is_oa":false,"landing_page_url":"https://doi.org/10.1504/ijaacs.2025.10070268","pdf_url":null,"source":{"id":"https://openalex.org/S191948775","display_name":"International Journal of Autonomous and Adaptive Communications Systems","issn_l":"1754-8632","issn":["1754-8632","1754-8640"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310317825","host_organization_name":"Inderscience Publishers","host_organization_lineage":["https://openalex.org/P4310317825"],"host_organization_lineage_names":["Inderscience Publishers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"International Journal of Autonomous and Adaptive Communications Systems","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":null,"display_name":"Xiwei Dai","orcid":null},"institutions":[{"id":"https://openalex.org/I150229711","display_name":"University of Electronic Science and Technology of China","ror":"https://ror.org/04qr3zq92","country_code":"CN","type":"education","lineage":["https://openalex.org/I150229711"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xiwei Dai","raw_affiliation_strings":["School of Information and Software Engineering, University of Electronic Science and Technology of China, Chengdu, 610054, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Information and Software Engineering, University of Electronic Science and Technology of China, Chengdu, 610054, China","institution_ids":["https://openalex.org/I150229711"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100713413","display_name":"Y. Yu","orcid":"https://orcid.org/0000-0003-4762-8201"},"institutions":[{"id":"https://openalex.org/I150229711","display_name":"University of Electronic Science and Technology of China","ror":"https://ror.org/04qr3zq92","country_code":"CN","type":"education","lineage":["https://openalex.org/I150229711"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yaodan Yu","raw_affiliation_strings":["School of Information and Software Engineering, University of Electronic Science and Technology of China, Chengdu, 610054, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Information and Software Engineering, University of Electronic Science and Technology of China, Chengdu, 610054, China","institution_ids":["https://openalex.org/I150229711"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5116841892","display_name":"Tao Chuan","orcid":null},"institutions":[{"id":"https://openalex.org/I74872605","display_name":"China Southern Power Grid (China)","ror":"https://ror.org/03hkh9419","country_code":"CN","type":"company","lineage":["https://openalex.org/I74872605"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Tao Chuan","raw_affiliation_strings":["Information Center of Yunnan Power Grid Co., Ltd., China Southern Power Grid Group, Kunming, 650217, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Information Center of Yunnan Power Grid Co., Ltd., China Southern Power Grid Group, Kunming, 650217, China","institution_ids":["https://openalex.org/I74872605"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100330268","display_name":"Hailin Wang","orcid":"https://orcid.org/0000-0001-7614-2003"},"institutions":[{"id":"https://openalex.org/I74872605","display_name":"China Southern Power Grid (China)","ror":"https://ror.org/03hkh9419","country_code":"CN","type":"company","lineage":["https://openalex.org/I74872605"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Hailin Wang","raw_affiliation_strings":["Information Center of Yunnan Power Grid Co., Ltd., China Southern Power Grid Group, Kunming, 650217, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Information Center of Yunnan Power Grid Co., Ltd., China Southern Power Grid Group, Kunming, 650217, China","institution_ids":["https://openalex.org/I74872605"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5116841893","display_name":"Linfei Li","orcid":null},"institutions":[{"id":"https://openalex.org/I150229711","display_name":"University of Electronic Science and Technology of China","ror":"https://ror.org/04qr3zq92","country_code":"CN","type":"education","lineage":["https://openalex.org/I150229711"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Linfei Li","raw_affiliation_strings":["School of Information and Software Engineering, University of Electronic Science and Technology of China, Chengdu, 610054, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Information and Software Engineering, University of Electronic Science and Technology of China, Chengdu, 610054, China","institution_ids":["https://openalex.org/I150229711"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5036602165","display_name":"Hu Jian","orcid":"https://orcid.org/0000-0003-4549-8159"},"institutions":[{"id":"https://openalex.org/I74872605","display_name":"China Southern Power Grid (China)","ror":"https://ror.org/03hkh9419","country_code":"CN","type":"company","lineage":["https://openalex.org/I74872605"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Jian Hu","raw_affiliation_strings":["Information Center of Yunnan Power Grid Co., Ltd., China Southern Power Grid Group, Kunming, 650217, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Information Center of Yunnan Power Grid Co., Ltd., China Southern Power Grid Group, Kunming, 650217, China","institution_ids":["https://openalex.org/I74872605"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5100663414","display_name":"Jie Wang","orcid":"https://orcid.org/0000-0001-9588-0466"},"institutions":[{"id":"https://openalex.org/I75867142","display_name":"Xiamen University of Technology","ror":"https://ror.org/01285e189","country_code":"CN","type":"education","lineage":["https://openalex.org/I75867142"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Jie Wang","raw_affiliation_strings":["College of Computer and Information Engineering, Xiamen University of Technology, Xiamen, 361024, China; Shenzhen Kaiyuan Internet Security Technology Co., Ltd., Shenzhen, 518000, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"College of Computer and Information Engineering, Xiamen University of Technology, Xiamen, 361024, China; Shenzhen Kaiyuan Internet Security Technology Co., Ltd., Shenzhen, 518000, China","institution_ids":["https://openalex.org/I75867142"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":7,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.04959171,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"18","issue":"5","first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9810000061988831,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9810000061988831,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9592999815940857,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T13295","display_name":"Safety Systems Engineering in Autonomy","score":0.9302999973297119,"subfield":{"id":"https://openalex.org/subfields/2213","display_name":"Safety, Risk, Reliability and Quality"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8717257976531982},{"id":"https://openalex.org/keywords/component","display_name":"Component (thermodynamics)","score":0.7662100791931152},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.7024136185646057},{"id":"https://openalex.org/keywords/component-based-software-engineering","display_name":"Component-based software engineering","score":0.6415741443634033},{"id":"https://openalex.org/keywords/open-source","display_name":"Open source","score":0.5153288245201111},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.5115190744400024},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.47454795241355896},{"id":"https://openalex.org/keywords/open-source-software","display_name":"Open source software","score":0.46328750252723694},{"id":"https://openalex.org/keywords/backporting","display_name":"Backporting","score":0.42725762724876404},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.3917263150215149},{"id":"https://openalex.org/keywords/computer-architecture","display_name":"Computer architecture","score":0.3756181001663208},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.356899619102478},{"id":"https://openalex.org/keywords/software-system","display_name":"Software system","score":0.3128739595413208},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.2513584792613983},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.14898473024368286},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.11256909370422363}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8717257976531982},{"id":"https://openalex.org/C168167062","wikidata":"https://www.wikidata.org/wiki/Q1117970","display_name":"Component (thermodynamics)","level":2,"score":0.7662100791931152},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.7024136185646057},{"id":"https://openalex.org/C174683762","wikidata":"https://www.wikidata.org/wiki/Q609588","display_name":"Component-based software engineering","level":4,"score":0.6415741443634033},{"id":"https://openalex.org/C3018397939","wikidata":"https://www.wikidata.org/wiki/Q3644502","display_name":"Open source","level":3,"score":0.5153288245201111},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.5115190744400024},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.47454795241355896},{"id":"https://openalex.org/C2988343187","wikidata":"https://www.wikidata.org/wiki/Q1130645","display_name":"Open source software","level":3,"score":0.46328750252723694},{"id":"https://openalex.org/C21491501","wikidata":"https://www.wikidata.org/wiki/Q430253","display_name":"Backporting","level":5,"score":0.42725762724876404},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.3917263150215149},{"id":"https://openalex.org/C118524514","wikidata":"https://www.wikidata.org/wiki/Q173212","display_name":"Computer architecture","level":1,"score":0.3756181001663208},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.356899619102478},{"id":"https://openalex.org/C149091818","wikidata":"https://www.wikidata.org/wiki/Q2429814","display_name":"Software system","level":3,"score":0.3128739595413208},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.2513584792613983},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.14898473024368286},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.11256909370422363},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0},{"id":"https://openalex.org/C97355855","wikidata":"https://www.wikidata.org/wiki/Q11473","display_name":"Thermodynamics","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1504/ijaacs.2025.10070268","is_oa":false,"landing_page_url":"https://doi.org/10.1504/ijaacs.2025.10070268","pdf_url":null,"source":{"id":"https://openalex.org/S191948775","display_name":"International Journal of Autonomous and Adaptive Communications Systems","issn_l":"1754-8632","issn":["1754-8632","1754-8640"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310317825","host_organization_name":"Inderscience Publishers","host_organization_lineage":["https://openalex.org/P4310317825"],"host_organization_lineage_names":["Inderscience Publishers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"International Journal of Autonomous and Adaptive Communications Systems","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W2189364591","https://openalex.org/W1528342233","https://openalex.org/W2289079863","https://openalex.org/W60029630","https://openalex.org/W13749934","https://openalex.org/W2512656006","https://openalex.org/W1965299231","https://openalex.org/W2142425794","https://openalex.org/W1565120778","https://openalex.org/W2385997131"],"abstract_inverted_index":{"Open":[0],"source":[1,32,74,107,135],"components":[2,108],"are":[3],"the":[4,50,93,111],"foundation":[5],"of":[6,87,92],"modern":[7],"software":[8,12,22,58,61,115,145,151],"development,":[9],"thereby":[10],"making":[11],"component":[13,63,75,136],"analysis":[14,38,76],"(SCA)":[15],"as":[16,140],"an":[17,78],"essential":[18],"method":[19],"to":[20,114],"ensuring":[21],"security.":[23],"However,":[24],"existing":[25],"SCA":[26,80],"methods":[27],"concentrate":[28],"on":[29,119],"identifying":[30],"open":[31,73,106,134],"component's":[33],"security":[34,142,152],"issues,":[35],"ignoring":[36],"comprehensive":[37,129],"with":[39],"components'":[40],"maintenance":[41],"and":[42,54,62,66,109,121],"support":[43],"posture.":[44],"In":[45],"this":[46],"paper,":[47],"we":[48,70],"investigated":[49],"literature":[51],"from":[52],"industry":[53],"academia":[55],"about":[56],"secure":[57],"development":[59,116,146],"process,":[60],"evaluation":[64,67,112],"models,":[65],"methodologies.":[68],"Then,":[69],"proposed":[71],"advanced":[72],"(AOSCA),":[77],"augmented":[79],"approach":[81],"by":[82],"additionally":[83],"quantifying":[84],"a":[85,128,141],"set":[86],"attributes":[88],"for":[89,133,150],"evaluation,":[90],"despite":[91],"conventional":[94],"detected":[95],"issues.":[96],"The":[97],"experimental":[98],"results":[99],"demonstrate":[100],"that":[101],"AOSCA":[102,126,139],"can":[103],"effectively":[104],"assessing":[105],"provide":[110],"result":[113],"organisation":[117],"based":[118],"requirements":[120],"preference.":[122],"To":[123],"sum":[124],"up,":[125],"provides":[127],"but":[130],"effective":[131],"mechanism":[132],"evaluation.":[137],"Applying":[138],"practice":[143],"during":[144],"process":[147],"is":[148],"vital":[149],"assurance.":[153]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}