{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,2,21]],"date-time":"2025-02-21T14:14:23Z","timestamp":1740147263167,"version":"3.37.3"},"reference-count":33,"publisher":"Springer Science and Business Media LLC","issue":"4","license":[{"start":{"date-parts":[[2019,11,21]],"date-time":"2019-11-21T00:00:00Z","timestamp":1574294400000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"},{"start":{"date-parts":[[2019,11,21]],"date-time":"2019-11-21T00:00:00Z","timestamp":1574294400000},"content-version":"vor","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["SOCA"],"published-print":{"date-parts":[[2019,12]]},"DOI":"10.1007\/s11761-019-00276-8","type":"journal-article","created":{"date-parts":[[2019,11,11]],"date-time":"2019-11-11T10:03:21Z","timestamp":1573466601000},"page":"333-339","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":5,"title":["Ontology-based services for software vulnerability detection: a survey"],"prefix":"10.1007","volume":"13","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-4492-6986","authenticated-orcid":false,"given":"Bingquan","family":"Wang","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6937-4068","authenticated-orcid":false,"given":"Baojiang","family":"Cui","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2019,11,21]]},"reference":[{"key":"276_CR1","doi-asserted-by":"crossref","unstructured":"Alnusair A, Tian Z (2010) Component search and reuse: an ontology-based approach. In: IEEE international conference on information reuse and integration","DOI":"10.1109\/IRI.2010.5558931"},{"key":"276_CR2","doi-asserted-by":"crossref","unstructured":"Alqahtani SS, Eghan EE, Rilling J (2017) Recovering semantic traceability links between apis and security vulnerabilities: an ontological modeling approach. In: IEEE international conference on software testing","DOI":"10.1109\/ICST.2017.15"},{"key":"276_CR3","doi-asserted-by":"publisher","first-page":"20","DOI":"10.1007\/978-3-319-68204-4_2","volume-title":"The semantic Web\u2013ISWC 2017","author":"M Atzeni","year":"2017","unstructured":"Atzeni M, Atzori M (2017) Codeontology: Rdf-ization of source code. In: d\u2019Amato C, Fernandez M, Tamma V, Lecue F, Cudr\u00e9-Mauroux P, Sequeda J, Lange C, Heflin J (eds) The semantic Web\u2013ISWC 2017. Springer, Cham, pp 20\u201328"},{"key":"276_CR4","doi-asserted-by":"crossref","unstructured":"Atzeni M, Atzori, M (2018) Translating natural language to code: an unsupervised ontology-based approach. In: 2018 IEEE first international conference on artificial intelligence and knowledge engineering (AIKE)","DOI":"10.1109\/AIKE.2018.00009"},{"key":"276_CR5","doi-asserted-by":"crossref","unstructured":"Ayewah N, Pugh W, Morgenthaler JD, Penix J, Zhou YQ (2007) Using findbugs on production software. In: Companion to the ACM Sigplan conference on object-oriented programming","DOI":"10.1145\/1297846.1297897"},{"key":"276_CR6","doi-asserted-by":"crossref","unstructured":"Bhatia MPS, Kumar A, Beniwal R (2016) Ontologies for software engineering: past, present and future. Indian J Sci Technol. http:\/\/www.indjst.org\/index.php\/indjst\/article\/view\/71384","DOI":"10.17485\/ijst\/2016\/v9i9\/71384"},{"key":"276_CR7","doi-asserted-by":"publisher","unstructured":"Binkley D (2007) Source code analysis: a road map. In: Future of software engineering (FOSE \u201907), pp 104\u2013119. https:\/\/doi.org\/10.1109\/FOSE.2007.27","DOI":"10.1109\/FOSE.2007.27"},{"key":"276_CR8","doi-asserted-by":"crossref","unstructured":"Blanco C, Lasheras J, Valencia-Garc R, Fernandez-Medina, E, Toval A., Piattini M (2008) A systematic review and comparison of security ontologies. In: International conference on availability","DOI":"10.1109\/ARES.2008.33"},{"key":"276_CR9","unstructured":"Bordes A, Usunier N, Garcia-Duran A, Weston J, Yakhnenko O (2013) Translating embeddings for modeling multi-relational data. In: Advances in neural information processing systems, pp 2787\u20132795"},{"issue":"2","key":"276_CR10","doi-asserted-by":"publisher","first-page":"82","DOI":"10.1145\/2408776.2408795","volume":"56","author":"C Cadar","year":"2013","unstructured":"Cadar C, Sen K (2013) Symbolic execution for software testing: three decades later. Commun ACM 56(2):82\u201390","journal-title":"Commun ACM"},{"key":"276_CR11","doi-asserted-by":"publisher","first-page":"S01674048183006","DOI":"10.1016\/j.cose.2018.02.002","volume":"75","author":"C Chen","year":"2018","unstructured":"Chen C, Cui B, Ma J, Wu R, Guo J, Liu W (2018) A systematic review of fuzzing techniques. Comput Secur 75:S0167404818300658","journal-title":"Comput Secur"},{"key":"276_CR12","doi-asserted-by":"crossref","unstructured":"Devanbu P, Brachman RJ, Selfridge PG, Ballard BW (1991) Lassie: a knowledge-based software information system. In: International conference on software engineering","DOI":"10.1145\/103167.103172"},{"key":"276_CR13","doi-asserted-by":"publisher","first-page":"33","DOI":"10.1007\/978-3-319-91662-0_3","volume-title":"Web engineering","author":"D Du","year":"2018","unstructured":"Du D, Ren X, Wu Y, Chen J, Ye W, Sun J, Xi X, Gao Q, Zhang S (2018) Refining traceability links between vulnerability and software component in a vulnerability knowledge graph. In: Mikkonen T, Klamma R, Hern\u00e1ndez J (eds) Web engineering. Springer, Cham, pp 33\u201349"},{"key":"276_CR14","unstructured":"Ehrlinger L, W\u00f6\u00df W (2016) Towards a definition of knowledge graphs. In: SEMANTiCS (Posters, Demos, SuCCESS), Leipzig, Germany"},{"key":"276_CR15","doi-asserted-by":"crossref","unstructured":"Ekramifard A, Kahani M (2016) Providing a source code security analysis model using semantic web techniques. In: International congress on technology","DOI":"10.1109\/ICTCK.2015.7582643"},{"key":"276_CR16","doi-asserted-by":"publisher","unstructured":"Ganapathy G, Sagayaraj S (2011) To generate the ontology from java source code. Int J Adv Comput Sci Appl. https:\/\/doi.org\/10.14569\/IJACSA.2011.020218","DOI":"10.14569\/IJACSA.2011.020218"},{"issue":"5-6","key":"276_CR17","doi-asserted-by":"publisher","first-page":"907","DOI":"10.1006\/ijhc.1995.1081","volume":"43","author":"Thomas R. Gruber","year":"1995","unstructured":"Gruber TR (1995) Toward principles for the design of ontologies used for knowledge sharing? Int J Hum-Comput Stud 43(5\u20136):907\u2013928","journal-title":"International Journal of Human-Computer Studies"},{"key":"276_CR18","doi-asserted-by":"crossref","unstructured":"Haarslev V, M\u00f6ller R (2001) Racer system description. In: International joint conference on automated reasoning","DOI":"10.1007\/3-540-45744-5_59"},{"key":"276_CR19","unstructured":"Haider NA, Nixon P, Gaudin B (2010) An approach for modeling dynamic analysis using ontologies. In: Eighth international workshop on dynamic analysis"},{"key":"276_CR20","doi-asserted-by":"crossref","unstructured":"Han Z, Li X, Liu H, Xing Z, Feng Z (2018) Deepweak: reasoning common software weaknesses via knowledge graph embedding. In: IEEE international conference on software analysis","DOI":"10.1109\/SANER.2018.8330232"},{"key":"276_CR21","unstructured":"Hong Z, Feng C, Yang H (2008) Developing application specific ontology for program comprehension by combining domain ontology with code ontology. In: Eighth international conference on quality software"},{"key":"276_CR22","unstructured":"Ju AW, Guo M (2009) Ovm: an ontology for vulnerability management. In: Workshop on cyber security and information intelligence research: cyber security and information intelligence challenges and strategies"},{"key":"276_CR23","unstructured":"Kirasi\u0107 D, Basch D (2008) Ontology-based design pattern recognition. In: International conference on knowledge-based intelligent information & engineering systems"},{"key":"276_CR24","doi-asserted-by":"crossref","unstructured":"Lin Y, Liu Z, Sun M, Liu Y, Zhu X (2015) Learning entity and relation embeddings for knowledge graph completion. In: Proceedings of the twenty-ninth AAAI conference on artificial intelligence, AAAI\u201915, pp 2181\u20132187. AAAI Press. http:\/\/dl.acm.org\/citation.cfm?id=2886521.2886624","DOI":"10.1609\/aaai.v29i1.9491"},{"key":"276_CR25","doi-asserted-by":"crossref","unstructured":"Paydar S, Kahani M (2012) A semantic web based approach for design pattern detection from source code. In: International econference on computer & knowledge engineering","DOI":"10.1109\/ICCKE.2012.6395394"},{"key":"276_CR26","doi-asserted-by":"crossref","unstructured":"Schwartz EJ, Avgerinos T, Brumley D (2010) All you ever wanted to know about dynamic taint analysis and forward symbolic execution (but might have been afraid to ask). In: Security and privacy","DOI":"10.1109\/SP.2010.26"},{"key":"276_CR27","doi-asserted-by":"crossref","unstructured":"Souag A, Salinesi C, Comyn-Wattiau I (2012) Ontologies for security requirements: a literature survey and classification","DOI":"10.1007\/978-3-642-31069-0_5"},{"key":"276_CR28","doi-asserted-by":"crossref","unstructured":"Xie R, Liu Z, Jia J, Luan H, Sun M (2016) Representation learning of knowledge graphs with entity descriptions. https:\/\/aaai.org\/ocs\/index.php\/AAAI\/AAAI16\/paper\/view\/12216","DOI":"10.1609\/aaai.v30i1.10329"},{"key":"276_CR29","unstructured":"Yang H, Cui Z, O\u2019Brien P (1999) Extracting ontologies from legacy systems for understanding and re-engineering. In: International computer software & applications conference"},{"key":"276_CR30","unstructured":"Yang H, Liu X, Zedan H (1998) Tackling the abstraction problem for reverse engineering in a system re-engineering approach. In: International conference on software maintenance"},{"key":"276_CR31","doi-asserted-by":"crossref","unstructured":"Yu L, Zhou J, Yi Y, Li P, Wang Q (2008) Ontology model-based static analysis on java programs. In: 32nd Annual IEEE international computer software and applications conference, pp 92\u201399","DOI":"10.1109\/COMPSAC.2008.73"},{"key":"276_CR32","doi-asserted-by":"publisher","first-page":"330","DOI":"10.1007\/978-3-642-25243-3_27","volume-title":"Information and Communications Security","author":"Lian Yu","year":"2011","unstructured":"Yu L, Wu SZ, Guo T, Dong GW, Wan CC, Jing YH (2011) Ontology model-based static analysis of security vulnerabilities. In: Proceedings of the 13th international conference on information and communications security, ICICS\u201911. Springer, Berlin, Heidelberg, pp 330\u2013344"},{"key":"276_CR33","doi-asserted-by":"crossref","unstructured":"Zhang Y, Rilling J, Haarslev V (2006) An ontology-based approach to software comprehension\u2014reasoning about security concerns. In: International computer software and applications conference","DOI":"10.1109\/COMPSAC.2006.27"}],"container-title":["Service Oriented Computing and Applications"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s11761-019-00276-8.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/article\/10.1007\/s11761-019-00276-8\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s11761-019-00276-8.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,10,4]],"date-time":"2022-10-04T08:29:24Z","timestamp":1664872164000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/s11761-019-00276-8"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,11,21]]},"references-count":33,"journal-issue":{"issue":"4","published-print":{"date-parts":[[2019,12]]}},"alternative-id":["276"],"URL":"https:\/\/doi.org\/10.1007\/s11761-019-00276-8","relation":{},"ISSN":["1863-2386","1863-2394"],"issn-type":[{"type":"print","value":"1863-2386"},{"type":"electronic","value":"1863-2394"}],"subject":[],"published":{"date-parts":[[2019,11,21]]},"assertion":[{"value":"19 April 2019","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"23 July 2019","order":2,"name":"revised","label":"Revised","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"29 July 2019","order":3,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"21 November 2019","order":4,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}}]}}