{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,13]],"date-time":"2026-03-13T19:44:12Z","timestamp":1773431052032,"version":"3.50.1"},"reference-count":27,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","license":[{"start":{"date-parts":[[2022,1,1]],"date-time":"2022-01-01T00:00:00Z","timestamp":1640995200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/legalcode"}],"funder":[{"name":"Institute of Information and Communications Technology Planning and Evaluation"},{"DOI":"10.13039\/501100003621","name":"Korea Government","doi-asserted-by":"publisher","award":["2019-0-01697"],"award-info":[{"award-number":["2019-0-01697"]}],"id":[{"id":"10.13039\/501100003621","id-type":"DOI","asserted-by":"publisher"}]},{"name":"(Development of Software Bill of Materials","award":["2022-0-00277"],"award-info":[{"award-number":["2022-0-00277"]}]},{"name":"(Convergence Security Core Talent Training Business)","award":["2022-0-01198"],"award-info":[{"award-number":["2022-0-01198"]}]},{"name":"(ICT Creative Consilience Program)","award":["IITP-2022-2020-0-01819"],"award-info":[{"award-number":["IITP-2022-2020-0-01819"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Access"],"published-print":{"date-parts":[[2022]]},"DOI":"10.1109\/access.2022.3197786","type":"journal-article","created":{"date-parts":[[2022,8,10]],"date-time":"2022-08-10T19:29:53Z","timestamp":1660159793000},"page":"85050-85063","source":"Crossref","is-referenced-by-count":10,"title":["xVDB: A High-Coverage Approach for Constructing a Vulnerability Database"],"prefix":"10.1109","volume":"10","author":[{"ORCID":"https:\/\/orcid.org\/0000-0003-0600-606X","authenticated-orcid":false,"given":"Hyunji","family":"Hong","sequence":"first","affiliation":[{"name":"Department of Computer Science and Engineering, Korea University, Seoul, South Korea"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5455-0804","authenticated-orcid":false,"given":"Seunghoon","family":"Woo","sequence":"additional","affiliation":[{"name":"Department of Computer Science and Engineering, Korea University, Seoul, South Korea"}]},{"given":"Eunjin","family":"Choi","sequence":"additional","affiliation":[{"name":"Department of Computer Science and Engineering, Korea University, Seoul, South Korea"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3071-6726","authenticated-orcid":false,"given":"Jihyun","family":"Choi","sequence":"additional","affiliation":[{"name":"Department of Computer Science and Engineering, Korea University, Seoul, South Korea"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5831-0787","authenticated-orcid":false,"given":"Heejo","family":"Lee","sequence":"additional","affiliation":[{"name":"Department of Computer Science and Engineering, Korea University, Seoul, South Korea"}]}],"member":"263","reference":[{"key":"ref1","first-page":"2025","article-title":"Finding bugs using your own code: Detecting functionally-similar yet inconsistent code","volume-title":"Proc. 30th USENIX Secur. Symp. (USENIX Security)","author":"Ahmadi"},{"key":"ref2","volume-title":"Cairo Issue Tracker Site","author":"Bugzilla","year":"2022"},{"key":"ref3","volume-title":"Cairo Repository","year":"2022"},{"key":"ref4","volume-title":"CVE Details","year":"2022"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134048"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.31"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1145\/3485832.3488026"},{"key":"ref8","volume-title":"IoTcube","year":"2022"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2012.13"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.62"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134072"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1109\/SP40000.2020.00038"},{"key":"ref13","volume-title":"Mend Vulnerability DB","year":"2022"},{"key":"ref14","volume-title":"CVE MITRE","year":"2022"},{"key":"ref15","volume-title":"National Vulnerability Database","year":"2022"},{"key":"ref16","volume-title":"NVD Data Feed","year":"2022"},{"key":"ref17","volume-title":"Stack Overflow Developer Survey","year":"2021"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1145\/2810103.2813604"},{"key":"ref19","volume-title":"SNYK Vulnerability DB","year":"2022"},{"key":"ref20","volume-title":"State of the Software Supply Chain","year":"2021"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1145\/3460120.3484593"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1109\/DSN.2019.00056"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1109\/DSN48987.2021.00030"},{"key":"ref24","volume-title":"Wikipedia","year":"2022"},{"key":"ref25","first-page":"3041","article-title":"V0Finder: Discovering the correct origin of publicly reported software vulnerabilities","volume-title":"Proc. 30th USENIX Secur. Symp. (USENIX Security)","author":"Woo"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE43902.2021.00083"},{"key":"ref27","first-page":"1165","article-title":"MVP: Detecting vulnerabilities using patch-enhanced vulnerability signatures","volume-title":"Proc. 29th USENIX Secur. Symp. (USENIX Security)","author":"Xiao"}],"container-title":["IEEE Access"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/6287639\/9668973\/09853545.pdf?arnumber=9853545","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,3,2]],"date-time":"2024-03-02T04:48:50Z","timestamp":1709354930000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9853545\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022]]},"references-count":27,"URL":"https:\/\/doi.org\/10.1109\/access.2022.3197786","relation":{},"ISSN":["2169-3536"],"issn-type":[{"value":"2169-3536","type":"electronic"}],"subject":[],"published":{"date-parts":[[2022]]}}}