{"id":"https://openalex.org/W3205684496","doi":"https://doi.org/10.23919/wac50355.2021.9559470","title":"Identifying characteristics of software vulnerabilities by their textual description using machine learning","display_name":"Identifying characteristics of software vulnerabilities by their textual description using machine learning","publication_year":2021,"publication_date":"2021-08-01","ids":{"openalex":"https://openalex.org/W3205684496","doi":"https://doi.org/10.23919/wac50355.2021.9559470","mag":"3205684496"},"language":"en","primary_location":{"id":"doi:10.23919/wac50355.2021.9559470","is_oa":false,"landing_page_url":"https://doi.org/10.23919/wac50355.2021.9559470","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 World Automation Congress (WAC)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5027968358","display_name":"Konstantin Izrailov","orcid":"https://orcid.org/0000-0002-9412-5693"},"institutions":[{"id":"https://openalex.org/I37355250","display_name":"Saint-Petersburg State University of Telecommunications","ror":"https://ror.org/00pcyc255","country_code":"RU","type":"education","lineage":["https://openalex.org/I37355250"]}],"countries":["RU"],"is_corresponding":true,"raw_author_name":"Konstantin Izrailov","raw_affiliation_strings":["The Bonch-Bruevich State University of Telecommunications, Saint-Petersburg, Russia"],"affiliations":[{"raw_affiliation_string":"The Bonch-Bruevich State University of Telecommunications, Saint-Petersburg, Russia","institution_ids":["https://openalex.org/I37355250"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5017249883","display_name":"Mikhail Buinevich","orcid":"https://orcid.org/0000-0001-8146-0022"},"institutions":[{"id":"https://openalex.org/I4210129079","display_name":"Academy of the State Fire Service EMERCOM of Russia","ror":"https://ror.org/03r9b8045","country_code":"RU","type":"education","lineage":["https://openalex.org/I4210129079"]}],"countries":["RU"],"is_corresponding":false,"raw_author_name":"Mikhail Buinevich","raw_affiliation_strings":["Saint-Petersburg University of State Fire Service of EMERCOM of Russia, Saint-Petersburg, Russia"],"affiliations":[{"raw_affiliation_string":"Saint-Petersburg University of State Fire Service of EMERCOM of Russia, Saint-Petersburg, Russia","institution_ids":["https://openalex.org/I4210129079"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5033986640","display_name":"Igor Kotenko","orcid":"https://orcid.org/0000-0001-6859-7120"},"institutions":[{"id":"https://openalex.org/I4210144352","display_name":"State Research Center of the Russian Federation","ror":"https://ror.org/04qpssw85","country_code":"RU","type":"facility","lineage":["https://openalex.org/I4210144352"]},{"id":"https://openalex.org/I1313323035","display_name":"Russian Academy of Sciences","ror":"https://ror.org/05qrfxd25","country_code":"RU","type":"funder","lineage":["https://openalex.org/I1313323035"]}],"countries":["RU"],"is_corresponding":false,"raw_author_name":"Igor Kotenko","raw_affiliation_strings":["St. Petersburg Federal Research Center of the Russian Academy of Sciences, Saint-Petersburg, Russia"],"affiliations":[{"raw_affiliation_string":"St. Petersburg Federal Research Center of the Russian Academy of Sciences, Saint-Petersburg, Russia","institution_ids":["https://openalex.org/I4210144352","https://openalex.org/I1313323035"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5103098105","display_name":"A. V. Yaroshenko","orcid":"https://orcid.org/0000-0002-4080-8122"},"institutions":[{"id":"https://openalex.org/I1333070841","display_name":"Ministry of Emergency Situations","ror":"https://ror.org/0590mw537","country_code":"RU","type":"government","lineage":["https://openalex.org/I1333070841"]}],"countries":["RU"],"is_corresponding":false,"raw_author_name":"Alexander Yaroshenko","raw_affiliation_strings":["Russian Emergencies Ministry, Moscow, Russia"],"affiliations":[{"raw_affiliation_string":"Russian Emergencies Ministry, Moscow, Russia","institution_ids":["https://openalex.org/I1333070841"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5027968358"],"corresponding_institution_ids":["https://openalex.org/I37355250"],"apc_list":null,"apc_paid":null,"fwci":0.8262,"has_fulltext":false,"cited_by_count":4,"citation_normalized_percentile":{"value":0.79341702,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"186","last_page":"192"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9876000285148621,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9876000285148621,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T14470","display_name":"Advanced Data Processing Techniques","score":0.9455000162124634,"subfield":{"id":"https://openalex.org/subfields/2207","display_name":"Control and Systems Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9279000163078308,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8317626714706421},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.6620272397994995},{"id":"https://openalex.org/keywords/field","display_name":"Field (mathematics)","score":0.641990065574646},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.6028728485107422},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.5730980038642883},{"id":"https://openalex.org/keywords/scheme","display_name":"Scheme (mathematics)","score":0.5304811596870422},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.5189356803894043},{"id":"https://openalex.org/keywords/quality","display_name":"Quality (philosophy)","score":0.5038878321647644},{"id":"https://openalex.org/keywords/hazard","display_name":"Hazard","score":0.4997696876525879},{"id":"https://openalex.org/keywords/software-quality","display_name":"Software quality","score":0.48368555307388306},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.46152442693710327},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.4490606486797333},{"id":"https://openalex.org/keywords/support-vector-machine","display_name":"Support vector machine","score":0.42850804328918457},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.41123485565185547},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.3891919255256653},{"id":"https://openalex.org/keywords/software-development","display_name":"Software development","score":0.30210649967193604},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.2765890061855316},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.1942777931690216},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.09617498517036438}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8317626714706421},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.6620272397994995},{"id":"https://openalex.org/C9652623","wikidata":"https://www.wikidata.org/wiki/Q190109","display_name":"Field (mathematics)","level":2,"score":0.641990065574646},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.6028728485107422},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.5730980038642883},{"id":"https://openalex.org/C77618280","wikidata":"https://www.wikidata.org/wiki/Q1155772","display_name":"Scheme (mathematics)","level":2,"score":0.5304811596870422},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.5189356803894043},{"id":"https://openalex.org/C2779530757","wikidata":"https://www.wikidata.org/wiki/Q1207505","display_name":"Quality (philosophy)","level":2,"score":0.5038878321647644},{"id":"https://openalex.org/C49261128","wikidata":"https://www.wikidata.org/wiki/Q1132455","display_name":"Hazard","level":2,"score":0.4997696876525879},{"id":"https://openalex.org/C117447612","wikidata":"https://www.wikidata.org/wiki/Q1412670","display_name":"Software quality","level":4,"score":0.48368555307388306},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.46152442693710327},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.4490606486797333},{"id":"https://openalex.org/C12267149","wikidata":"https://www.wikidata.org/wiki/Q282453","display_name":"Support vector machine","level":2,"score":0.42850804328918457},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.41123485565185547},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.3891919255256653},{"id":"https://openalex.org/C529173508","wikidata":"https://www.wikidata.org/wiki/Q638608","display_name":"Software development","level":3,"score":0.30210649967193604},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.2765890061855316},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.1942777931690216},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.09617498517036438},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0},{"id":"https://openalex.org/C111472728","wikidata":"https://www.wikidata.org/wiki/Q9471","display_name":"Epistemology","level":1,"score":0.0},{"id":"https://openalex.org/C178790620","wikidata":"https://www.wikidata.org/wiki/Q11351","display_name":"Organic chemistry","level":1,"score":0.0},{"id":"https://openalex.org/C185592680","wikidata":"https://www.wikidata.org/wiki/Q2329","display_name":"Chemistry","level":0,"score":0.0},{"id":"https://openalex.org/C134306372","wikidata":"https://www.wikidata.org/wiki/Q7754","display_name":"Mathematical analysis","level":1,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C202444582","wikidata":"https://www.wikidata.org/wiki/Q837863","display_name":"Pure mathematics","level":1,"score":0.0},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.23919/wac50355.2021.9559470","is_oa":false,"landing_page_url":"https://doi.org/10.23919/wac50355.2021.9559470","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 World Automation Congress (WAC)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":50,"referenced_works":["https://openalex.org/W1991365392","https://openalex.org/W2011242591","https://openalex.org/W2077079228","https://openalex.org/W2132025520","https://openalex.org/W2145819755","https://openalex.org/W2188141585","https://openalex.org/W2512982496","https://openalex.org/W2560346231","https://openalex.org/W2584269677","https://openalex.org/W2585366456","https://openalex.org/W2592730791","https://openalex.org/W2729537186","https://openalex.org/W2744809428","https://openalex.org/W2787455993","https://openalex.org/W2795309629","https://openalex.org/W2893043239","https://openalex.org/W2898041880","https://openalex.org/W2912839799","https://openalex.org/W2913389484","https://openalex.org/W2979543333","https://openalex.org/W2980104820","https://openalex.org/W3004511036","https://openalex.org/W3016296402","https://openalex.org/W3021805415","https://openalex.org/W3022561777","https://openalex.org/W3043370102","https://openalex.org/W3085804837","https://openalex.org/W3107606501","https://openalex.org/W3117234306","https://openalex.org/W3124000956","https://openalex.org/W3135360534","https://openalex.org/W3155885971","https://openalex.org/W3159191682","https://openalex.org/W3159869984","https://openalex.org/W3162069242","https://openalex.org/W3163169074","https://openalex.org/W3165053742","https://openalex.org/W3174118939","https://openalex.org/W3176080258","https://openalex.org/W3182423715","https://openalex.org/W6687200611","https://openalex.org/W6732815197","https://openalex.org/W6733174511","https://openalex.org/W6754974096","https://openalex.org/W6786750327","https://openalex.org/W6790028145","https://openalex.org/W6791330303","https://openalex.org/W6795295012","https://openalex.org/W6795375175","https://openalex.org/W6798852122"],"related_works":["https://openalex.org/W3195168932","https://openalex.org/W1996541855","https://openalex.org/W2059074807","https://openalex.org/W1969663039","https://openalex.org/W4200107375","https://openalex.org/W2123249410","https://openalex.org/W2135328446","https://openalex.org/W2114329470","https://openalex.org/W2988912079","https://openalex.org/W4321354308"],"abstract_inverted_index":{"Significant":[0],"problems":[1],"in":[2,143],"the":[3,9,16,25,33,52,74,88,100,102,105,121,128,131,139,147,151,155],"development":[4],"of":[5,11,18,35,56,73,94,104,123,130,133,138,150],"secure":[6],"software":[7,13],"are":[8,158],"complexity":[10],"formalizing":[12],"vulnerabilities":[14,48],"and":[15,49,78,112,154],"lack":[17],"information":[19],"security":[20],"experts.":[21],"The":[22,39,60,125,136],"paper":[23,126],"tests":[24],"hypothesis":[26,132],"that":[27],"it":[28],"is":[29,58,141],"possible":[30],"to":[31,116],"automate":[32],"process":[34],"identifying":[36],"vulnerability":[37,63,75],"characteristics.":[38],"method":[40,61,89,106,140],"based":[41,68],"on":[42,69,120],"a":[43,70,82,108,113],"proprietary":[44],"scheme":[45,137],"for":[46,51],"classifying":[47],"specialized":[50],"Russia":[53],"Government":[54],"Database":[55],"Vulnerabilities":[57],"presented.":[59],"classifies":[62],"characteristics":[64],"(hazard":[65],"level":[66],"field)":[67,80],"human-centered":[71],"description":[72],"(name":[76],"field":[77],"details":[79],"using":[81,99],"multiclass":[83],"SVM":[84],"model.":[85],"Utility":[86],"implementing":[87],"was":[90],"developed.":[91],"A":[92],"number":[93],"experiments":[95],"were":[96],"carried":[97],"out":[98],"utility:":[101],"calculation":[103],"quality,":[107],"random":[109],"classification":[110],"mode,":[111],"multi-pass":[114],"approach":[115],"collect":[117],"statistical":[118],"data":[119],"quality":[122],"work.":[124],"substantiates":[127],"confirmation":[129],"scientific":[134],"research.":[135],"described":[142],"an":[144],"analytical":[145],"form,":[146],"main":[148],"algorithm":[149],"utility":[152],"operation":[153],"experiment":[156],"logs":[157],"given.":[159]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":2}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}