{"id":"https://openalex.org/W1976112015","doi":"https://doi.org/10.4018/ijsse.2014070102","title":"Design Churn as Predictor of Vulnerabilities?","display_name":"Design Churn as Predictor of Vulnerabilities?","publication_year":2014,"publication_date":"2014-07-01","ids":{"openalex":"https://openalex.org/W1976112015","doi":"https://doi.org/10.4018/ijsse.2014070102","mag":"1976112015"},"language":"en","primary_location":{"id":"doi:10.4018/ijsse.2014070102","is_oa":false,"landing_page_url":"https://doi.org/10.4018/ijsse.2014070102","pdf_url":null,"source":{"id":"https://openalex.org/S43656255","display_name":"International Journal of Secure Software Engineering","issn_l":"1947-3036","issn":["1947-3036","1947-3044"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320424","host_organization_name":"IGI Global","host_organization_lineage":["https://openalex.org/P4310320424"],"host_organization_lineage_names":["IGI Global"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"International Journal of Secure Software Engineering","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://lirias.kuleuven.be/handle/123456789/466116","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5009604833","display_name":"Aram Hovsepyan","orcid":null},"institutions":[{"id":"https://openalex.org/I39327780","display_name":"iMinds","ror":"https://ror.org/03baec336","country_code":"BE","type":"nonprofit","lineage":["https://openalex.org/I39327780"]},{"id":"https://openalex.org/I99464096","display_name":"KU Leuven","ror":"https://ror.org/05f950310","country_code":"BE","type":"education","lineage":["https://openalex.org/I99464096"]}],"countries":["BE"],"is_corresponding":false,"raw_author_name":"Aram Hovsepyan","raw_affiliation_strings":["iMinds-DistriNet, KU Leuven, Leuven, Belgium"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"iMinds-DistriNet, KU Leuven, Leuven, Belgium","institution_ids":["https://openalex.org/I39327780","https://openalex.org/I99464096"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5012313708","display_name":"Riccardo Scandariato","orcid":"https://orcid.org/0000-0003-3591-7671"},"institutions":[{"id":"https://openalex.org/I39327780","display_name":"iMinds","ror":"https://ror.org/03baec336","country_code":"BE","type":"nonprofit","lineage":["https://openalex.org/I39327780"]},{"id":"https://openalex.org/I99464096","display_name":"KU Leuven","ror":"https://ror.org/05f950310","country_code":"BE","type":"education","lineage":["https://openalex.org/I99464096"]}],"countries":["BE"],"is_corresponding":false,"raw_author_name":"Riccardo Scandariato","raw_affiliation_strings":["iMinds-DistriNet, KU Leuven, Leuven, Belgium"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"iMinds-DistriNet, KU Leuven, Leuven, Belgium","institution_ids":["https://openalex.org/I39327780","https://openalex.org/I99464096"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5024598895","display_name":"Maximilian Steff","orcid":null},"institutions":[{"id":"https://openalex.org/I171543936","display_name":"Free University of Bozen-Bolzano","ror":"https://ror.org/012ajp527","country_code":"IT","type":"education","lineage":["https://openalex.org/I171543936"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Maximilian Steff","raw_affiliation_strings":["Free University of Bozen, Bolzano, Italy"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Free University of Bozen, Bolzano, Italy","institution_ids":["https://openalex.org/I171543936"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5054031138","display_name":"Wouter Joosen","orcid":"https://orcid.org/0000-0002-7710-5092"},"institutions":[{"id":"https://openalex.org/I39327780","display_name":"iMinds","ror":"https://ror.org/03baec336","country_code":"BE","type":"nonprofit","lineage":["https://openalex.org/I39327780"]},{"id":"https://openalex.org/I99464096","display_name":"KU Leuven","ror":"https://ror.org/05f950310","country_code":"BE","type":"education","lineage":["https://openalex.org/I99464096"]}],"countries":["BE"],"is_corresponding":false,"raw_author_name":"Wouter Joosen","raw_affiliation_strings":["iMinds-DistriNet, KU Leuven, Leuven, Belgium"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"iMinds-DistriNet, KU Leuven, Leuven, Belgium","institution_ids":["https://openalex.org/I39327780","https://openalex.org/I99464096"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":1.6408,"has_fulltext":false,"cited_by_count":3,"citation_normalized_percentile":{"value":0.87674631,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":96},"biblio":{"volume":"5","issue":"3","first_page":"16","last_page":"31"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9986000061035156,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8832024931907654},{"id":"https://openalex.org/keywords/java","display_name":"Java","score":0.6982446312904358},{"id":"https://openalex.org/keywords/android","display_name":"Android (operating system)","score":0.623679518699646},{"id":"https://openalex.org/keywords/metric","display_name":"Metric (unit)","score":0.5457654595375061},{"id":"https://openalex.org/keywords/suite","display_name":"Suite","score":0.5202233195304871},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.4591405391693115},{"id":"https://openalex.org/keywords/analogy","display_name":"Analogy","score":0.4297715127468109},{"id":"https://openalex.org/keywords/precision-and-recall","display_name":"Precision and recall","score":0.4200677275657654},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.3906499743461609},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.3877159357070923},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.1959657371044159},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.13210463523864746},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.08016499876976013}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8832024931907654},{"id":"https://openalex.org/C548217200","wikidata":"https://www.wikidata.org/wiki/Q251","display_name":"Java","level":2,"score":0.6982446312904358},{"id":"https://openalex.org/C557433098","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android (operating system)","level":2,"score":0.623679518699646},{"id":"https://openalex.org/C176217482","wikidata":"https://www.wikidata.org/wiki/Q860554","display_name":"Metric (unit)","level":2,"score":0.5457654595375061},{"id":"https://openalex.org/C79581498","wikidata":"https://www.wikidata.org/wiki/Q1367530","display_name":"Suite","level":2,"score":0.5202233195304871},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.4591405391693115},{"id":"https://openalex.org/C521332185","wikidata":"https://www.wikidata.org/wiki/Q185816","display_name":"Analogy","level":2,"score":0.4297715127468109},{"id":"https://openalex.org/C81669768","wikidata":"https://www.wikidata.org/wiki/Q2359161","display_name":"Precision and recall","level":2,"score":0.4200677275657654},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.3906499743461609},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.3877159357070923},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.1959657371044159},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.13210463523864746},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.08016499876976013},{"id":"https://openalex.org/C95457728","wikidata":"https://www.wikidata.org/wiki/Q309","display_name":"History","level":0,"score":0.0},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0},{"id":"https://openalex.org/C21547014","wikidata":"https://www.wikidata.org/wiki/Q1423657","display_name":"Operations management","level":1,"score":0.0},{"id":"https://openalex.org/C166957645","wikidata":"https://www.wikidata.org/wiki/Q23498","display_name":"Archaeology","level":1,"score":0.0},{"id":"https://openalex.org/C162324750","wikidata":"https://www.wikidata.org/wiki/Q8134","display_name":"Economics","level":0,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.4018/ijsse.2014070102","is_oa":false,"landing_page_url":"https://doi.org/10.4018/ijsse.2014070102","pdf_url":null,"source":{"id":"https://openalex.org/S43656255","display_name":"International Journal of Secure Software Engineering","issn_l":"1947-3036","issn":["1947-3036","1947-3044"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320424","host_organization_name":"IGI Global","host_organization_lineage":["https://openalex.org/P4310320424"],"host_organization_lineage_names":["IGI Global"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"International Journal of Secure Software Engineering","raw_type":"journal-article"},{"id":"pmh:oai:RePEc:igg:jsse00:v:5:y:2014:i:3:p:16-31","is_oa":false,"landing_page_url":"http://services.igi-global.com/resolvedoi/resolve.aspx?doi=10.4018/ijsse.2014070102","pdf_url":null,"source":{"id":"https://openalex.org/S4306401271","display_name":"RePEc: Research Papers in Economics","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I77793887","host_organization_name":"Federal Reserve Bank of St. Louis","host_organization_lineage":["https://openalex.org/I77793887"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"article"},{"id":"pmh:oai:lirias2repo.kuleuven.be:123456789/466116","is_oa":true,"landing_page_url":"https://lirias.kuleuven.be/handle/123456789/466116","pdf_url":null,"source":{"id":"https://openalex.org/S4306401954","display_name":"Lirias (KU Leuven)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I99464096","host_organization_name":"KU Leuven","host_organization_lineage":["https://openalex.org/I99464096"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"International Journal of Secure Software Engineering, vol. 5 (3), Art.No. 3, (16-31)","raw_type":"info:eu-repo/semantics/publishedVersion"}],"best_oa_location":{"id":"pmh:oai:lirias2repo.kuleuven.be:123456789/466116","is_oa":true,"landing_page_url":"https://lirias.kuleuven.be/handle/123456789/466116","pdf_url":null,"source":{"id":"https://openalex.org/S4306401954","display_name":"Lirias (KU Leuven)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I99464096","host_organization_name":"KU Leuven","host_organization_lineage":["https://openalex.org/I99464096"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"International Journal of Secure Software Engineering, vol. 5 (3), Art.No. 3, (16-31)","raw_type":"info:eu-repo/semantics/publishedVersion"},"sustainable_development_goals":[{"display_name":"Reduced inequalities","id":"https://metadata.un.org/sdg/10","score":0.46000000834465027}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":29,"referenced_works":["https://openalex.org/W1501506223","https://openalex.org/W1505299987","https://openalex.org/W1997236144","https://openalex.org/W2004758929","https://openalex.org/W2011458734","https://openalex.org/W2015004885","https://openalex.org/W2017439596","https://openalex.org/W2019863035","https://openalex.org/W2022695357","https://openalex.org/W2028486686","https://openalex.org/W2043837581","https://openalex.org/W2082314767","https://openalex.org/W2099658949","https://openalex.org/W2106578314","https://openalex.org/W2119871945","https://openalex.org/W2121866145","https://openalex.org/W2127387902","https://openalex.org/W2128666163","https://openalex.org/W2131169221","https://openalex.org/W2135198476","https://openalex.org/W2151554678","https://openalex.org/W2154398797","https://openalex.org/W2160958420","https://openalex.org/W2161470369","https://openalex.org/W2166336492","https://openalex.org/W2169866700","https://openalex.org/W2345506238","https://openalex.org/W3014903559","https://openalex.org/W3141989311"],"related_works":["https://openalex.org/W2392206215","https://openalex.org/W2365201483","https://openalex.org/W2355561779","https://openalex.org/W2352407775","https://openalex.org/W2186567693","https://openalex.org/W108701362","https://openalex.org/W2121696621","https://openalex.org/W2109693630","https://openalex.org/W3212610863","https://openalex.org/W2493947570"],"abstract_inverted_index":{"This":[0],"paper":[1],"evaluates":[2],"a":[3,39,63],"metric":[4],"suite":[5],"to":[6,26,61],"predict":[7],"vulnerable":[8],"Java":[9],"classes":[10],"based":[11],"on":[12,38,41],"how":[13],"much":[14],"the":[15,66],"design":[16,30,49],"of":[17,72,78],"an":[18,69,75],"application":[19],"has":[20],"changed":[21],"over":[22],"time.":[23],"It":[24],"refers":[25],"this":[27],"concept":[28],"as":[29],"churn":[31,50],"in":[32,53],"analogy":[33],"with":[34,57],"code":[35],"churn.":[36],"Based":[37],"validation":[40],"10":[42],"Android":[43],"applications,":[44],"it":[45],"shows":[46],"that":[47],"several":[48],"metrics":[51,67],"are":[52],"fact":[54],"significantly":[55],"associated":[56],"vulnerabilities.":[58],"When":[59],"used":[60],"build":[62],"prediction":[64],"model,":[65],"yield":[68],"average":[70,76],"precision":[71],"0.71":[73],"and":[74],"recall":[77],"0.27.":[79]},"counts_by_year":[{"year":2019,"cited_by_count":1},{"year":2017,"cited_by_count":2}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}