{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,5,27]],"date-time":"2025-05-27T15:40:02Z","timestamp":1748360402083,"version":"3.41.0"},"publisher-location":"Cham","reference-count":31,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319171265"},{"type":"electronic","value":"9783319171272"}],"license":[{"start":{"date-parts":[[2015,1,1]],"date-time":"2015-01-01T00:00:00Z","timestamp":1420070400000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2015,1,1]],"date-time":"2015-01-01T00:00:00Z","timestamp":1420070400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2015]]},"DOI":"10.1007\/978-3-319-17127-2_3","type":"book-chapter","created":{"date-parts":[[2015,4,27]],"date-time":"2015-04-27T02:12:01Z","timestamp":1430100721000},"page":"35-51","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":3,"title":["Automated Detection of Logical Errors in Programs"],"prefix":"10.1007","author":[{"given":"George","family":"Stergiopoulos","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Panagiotis","family":"Katsaros","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Dimitris","family":"Gritzalis","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2015,4,28]]},"reference":[{"key":"3_CR1","series-title":"In: Handbook of Software Quality Assurance","first-page":"217","volume-title":"Inspections as an Up-Front Quality Technique","author":"J Dobbins","year":"1998","unstructured":"Dobbins, J.: Inspections as an Up-Front Quality Technique. In: Handbook of Software Quality Assurance, pp. 217\u2013252. Prentice Hall, New York (1998)"},{"key":"3_CR2","series-title":"Architecture","volume-title":"Building Java Enterprise Applications","author":"B McLaughlin","year":"2002","unstructured":"McLaughlin, B.: Building Java Enterprise Applications. Architecture, vol. 1. O\u2019 Reilly, Sebastopol (2002)"},{"key":"3_CR3","unstructured":"Peng, W. Wallace, D.: Software Error Analysis. In: NIST Special Publication 500-209. NIST, Gaithersburg, pp. 7\u201310 (1993)"},{"issue":"4","key":"3_CR4","doi-asserted-by":"publisher","first-page":"256","DOI":"10.1016\/j.ijpvp.2006.02.003","volume":"83","author":"M Kimura","year":"2006","unstructured":"Kimura, M.: Software vulnerability, definition, modeling, and practical evaluation for e-mail transfer software. Int. J. Pressure Vessels Pip. 83(4), 256\u2013261 (2006)","journal-title":"Int. J. Pressure Vessels Pip."},{"key":"3_CR5","unstructured":"Felmetsger, V., Cavedon, L., Kruegel, C., Vigna, J.: Toward automated detection of logic vulnerabilities in web applications. In: Proceedings of the 19th USENIX Symposium, USA, p. 10 (2010)"},{"key":"3_CR6","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"135","DOI":"10.1007\/978-3-642-28166-2_13","volume-title":"Engineering Secure Software and Systems","author":"G Stergiopoulos","year":"2012","unstructured":"Stergiopoulos, G., Tsoumas, B., Gritzalis, D.: Hunting application-level logical errors. In: Barthe, G., Livshits, B., Scandariato, R. (eds.) ESSoS 2012. LNCS, vol. 7159, pp. 135\u2013142. Springer, Heidelberg (2012)"},{"key":"3_CR7","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"236","DOI":"10.1007\/978-3-642-38631-2_18","volume-title":"Network and System Security","author":"G Stergiopoulos","year":"2013","unstructured":"Stergiopoulos, G., Tsoumas, B., Gritzalis, D.: On business logic vulnerabilities hunting: the APP_LogGIC framework. In: Lopez, J., Huang, X., Sandhu, R. (eds.) NSS 2013. LNCS, vol. 7873, pp. 236\u2013249. Springer, Heidelberg (2013)"},{"key":"3_CR8","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"164","DOI":"10.1007\/978-3-540-24732-6_13","volume-title":"Model Checking Software","author":"CS P\u0103s\u0103reanu","year":"2004","unstructured":"P\u0103s\u0103reanu, C.S., Visser, W.: Verification of Java programs using symbolic execution and invariant generation. In: Graf, S., Mounier, L. (eds.) SPIN 2004. LNCS, vol. 2989, pp. 164\u2013181. Springer, Heidelberg (2004)"},{"key":"3_CR9","unstructured":"The Java PathFinder tool, NASA Ames Research Center, US. http:\/\/babelfish.arc.nasa.gov\/trac\/jpf\/"},{"key":"3_CR10","doi-asserted-by":"crossref","unstructured":"Doupe, A., Boe, B., Vigna, G.: Fear the EAR: discovering and mitigating execution after redirect vulnerabilities. In: Proceedings of the 18th ACM Conference on Computer and Communications Security, pp. 251\u2013262. ACM (2011)","DOI":"10.1145\/2046707.2046736"},{"key":"3_CR11","doi-asserted-by":"crossref","unstructured":"Balzarotti, D., Cova, M., Felmetsger, V., Vigna, G.: Multi-module vulnerability analysis of web-based applications. In: Proceedings of the 14th ACM Conference on Computer and Communications Security, pp. 25\u201335. ACM (2007)","DOI":"10.1145\/1315245.1315250"},{"key":"3_CR12","doi-asserted-by":"publisher","first-page":"35","DOI":"10.1016\/j.scico.2007.01.015","volume":"69","author":"M Ernst","year":"2007","unstructured":"Ernst, M., Perkins, J., Guo, P., McCamant, S., Pacheco, C., Tschantz, M., Xiao, C.: The Daikon system for dynamic detection of likely invariants. Sci. Comput. Program. 69, 35\u201345 (2007)","journal-title":"Sci. Comput. Program."},{"key":"3_CR13","unstructured":"The Daikon Invariant Detector Manual. http:\/\/groups.csail.mit.edu\/pag\/daikon\/"},{"key":"3_CR14","doi-asserted-by":"crossref","unstructured":"Brumley, D., Newsome, J., Song, D., Wang, H., Jha, S.: Towards automatic generation of vulnerability-based signatures. In: IEEE Symposium on Security and Privacy (2006)","DOI":"10.21236\/ADA462599"},{"issue":"1","key":"3_CR15","doi-asserted-by":"publisher","first-page":"80","DOI":"10.1109\/TSE.2011.124","volume":"39","author":"R Natella","year":"2013","unstructured":"Natella, R., Cotronneo, D., Duraes, J., Madeira, H.: On fault representativeness of software fault injection. IEEE Trans. Softw. Eng. 39(1), 80\u201396 (2013)","journal-title":"IEEE Trans. Softw. Eng."},{"key":"3_CR16","unstructured":"Foundations of Fuzzy Logic, Fuzzy Operators, Mathworks. http:\/\/www.mathworks.com\/help\/toolbox\/fuzzy\/bp78l6_-1.html"},{"key":"3_CR17","unstructured":"Systems Engineering Fundamentals: Supplementary text prepared by the Defense Acquisition University Press, Defense Acquisition University, USA (2001)"},{"key":"3_CR18","unstructured":"JSCH SSH framework, JCraft. http:\/\/www.jcraft.com\/jsch\/"},{"key":"3_CR19","doi-asserted-by":"crossref","unstructured":"Cingolani, P., Alcala-Fdez, J.: jFuzzyLogic: a robust and flexible fuzzy-logic inference system language implementation. In: Proceedings of the IEEE International Conference on Fuzzy Systems, pp. 1\u20138. IEEE (2012)","DOI":"10.1109\/FUZZ-IEEE.2012.6251215"},{"issue":"2","key":"3_CR20","doi-asserted-by":"publisher","first-page":"159","DOI":"10.1016\/S0165-0114(97)00337-0","volume":"108","author":"W Leekwijck","year":"1999","unstructured":"Leekwijck, W., Kerre, E.: Defuzzification: criteria and classification. Fuzzy Sets Syst. 108(2), 159\u2013178 (1999)","journal-title":"Fuzzy Sets Syst."},{"key":"3_CR21","doi-asserted-by":"crossref","unstructured":"Stoneburner G., Goguen, A.: SP 800-30. Risk management guide for information technology systems. Technical report. NIST, USA (2002)","DOI":"10.6028\/NIST.SP.800-30"},{"key":"3_CR22","unstructured":"Burns, A., Burns, R.: Basic Marketing Research. Pearson Education, p. 245 (2008)"},{"key":"3_CR23","volume-title":"Software Metrics: A Rigorous and Practical Approach","author":"N Fenton","year":"1998","unstructured":"Fenton, N., Pfleeger, S.: Software Metrics: A Rigorous and Practical Approach. PWS, Boston (1998)"},{"key":"3_CR24","doi-asserted-by":"crossref","unstructured":"Giannakopoulou, D., Pasareanu, C., Cobleigh, J.: Assume-guarantee verification of source code with design-level assumptions. In: Proceedings of the 26th International Conference on Software Engineering, pp. 211\u2013220. IEEE (2004)","DOI":"10.1109\/ICSE.2004.1317443"},{"key":"3_CR25","unstructured":"The OWASP Risk Rating Methodology, www.owasp.org\/index.php\/OWASP_Risk_Rating_Methodology"},{"issue":"2\/3","key":"3_CR26","doi-asserted-by":"publisher","first-page":"128","DOI":"10.1504\/IJRAM.2011.042113","volume":"15","author":"M Theoharidou","year":"2011","unstructured":"Theoharidou, M., Kotzanikolaou, P., Gritzalis, D.: Risk assessment methodology for interdependent critical infrastructures. Int. J. Risk Assess. Manage. 15(2\/3), 128\u2013148 (2011)","journal-title":"Int. J. Risk Assess. Manage."},{"key":"3_CR27","doi-asserted-by":"crossref","unstructured":"Kandias M., Mitrou L., Stavrou V., Gritzalis, D.: Which side are you on? A new Panopticon vs. privacy. In: Proceedings of 10th International Conference on Security and Cryptography, pp. 98\u2013110. SciTePress (2013)","DOI":"10.5220\/0004516500980110"},{"key":"3_CR28","doi-asserted-by":"crossref","first-page":"331","DOI":"10.1177\/147078539703900202","volume":"39","author":"G Albaum","year":"1997","unstructured":"Albaum, G.: The Likert scale revisited. J. Market res. soc. 39, 331\u2013348 (1997)","journal-title":"J. Market Res. Soc."},{"key":"3_CR29","doi-asserted-by":"crossref","unstructured":"Mylonas A., Dritsas, S., Tsoumas V., Gritzalis, D.: Smartphone security evaluation - the malware attack case. In: Proceedings of the 8th International Conference on Security and Cryptography, pp. 25\u201336. SciTepress, (2011)","DOI":"10.5220\/0003446800250036"},{"key":"3_CR30","series-title":"IFIP Advances in Information and Communication Technology","doi-asserted-by":"publisher","first-page":"443","DOI":"10.1007\/978-3-642-30436-1_36","volume-title":"Information Security and Privacy Research","author":"M Theoharidou","year":"2012","unstructured":"Theoharidou, M., Mylonas, A., Gritzalis, D.: A risk assessment method for smartphones. In: Gritzalis, D., Furnell, S., Theoharidou, M. (eds.) SEC 2012. IFIP AICT, vol. 376, pp. 443\u2013456. Springer, Heidelberg (2012)"},{"key":"3_CR31","doi-asserted-by":"crossref","unstructured":"Chatzieleftheriou, G., Katsaros, P.: Test driving static analysis tools in search of C code vulnerabilities. In: Proceedings of the 35th IEEE Computer Software and Applications Conference on Workshops (COMPSACW), Munich, Germany, pp. 96\u2013103. IEEE Computer Society (2011)","DOI":"10.1109\/COMPSACW.2011.26"}],"container-title":["Lecture Notes in Computer Science","Risks and Security of Internet and Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-17127-2_3","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,5,27]],"date-time":"2025-05-27T15:16:49Z","timestamp":1748359009000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-319-17127-2_3"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2015]]},"ISBN":["9783319171265","9783319171272"],"references-count":31,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-17127-2_3","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2015]]},"assertion":[{"value":"28 April 2015","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}}]}}