{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,30]],"date-time":"2026-01-30T21:31:47Z","timestamp":1769808707284,"version":"3.49.0"},"reference-count":14,"publisher":"IEEE","license":[{"start":{"date-parts":[[2025,11,16]],"date-time":"2025-11-16T00:00:00Z","timestamp":1763251200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2025,11,16]],"date-time":"2025-11-16T00:00:00Z","timestamp":1763251200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2025,11,16]]},"DOI":"10.1109\/ase63991.2025.00360","type":"proceedings-article","created":{"date-parts":[[2026,1,28]],"date-time":"2026-01-28T20:54:38Z","timestamp":1769633678000},"page":"4001-4004","source":"Crossref","is-referenced-by-count":0,"title":["FlowStrider: Low-Friction Continuous Threat Modeling"],"prefix":"10.1109","author":[{"given":"Bernd","family":"Gruner","sequence":"first","affiliation":[{"name":"German Aerospace Center,Institute of Data Science,Jena,Germany"}]},{"given":"Noah","family":"Erthel","sequence":"additional","affiliation":[{"name":"German Aerospace Center,Institute of Data Science,Jena,Germany"}]},{"given":"Clemens-Alexander","family":"Brust","sequence":"additional","affiliation":[{"name":"German Aerospace Center,Institute of Data Science,Jena,Germany"}]}],"member":"263","reference":[{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1109\/icse55347.2025.00184"},{"key":"ref2","article-title":"\u2019threat modeling is very formal, it\u2019s very technical, and also very hard to do correctly\u2019: Investigating threat modeling practices in open-source software projects","volume-title":"34th USENIX Security Symposium (USENIX Security\u201925)","author":"Kaur"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1109\/CyberSecPODS.2019.8885144"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1016\/j.jss.2018.06.073"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1109\/SecDev61143.2024.00010"},{"key":"ref6","volume-title":"Threat Modeling: Designing for Security","author":"Shostack","year":"2014"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1109\/SANER-C62648.2024.00024"},{"key":"ref8","article-title":"Microsoft threat modeling tool","year":"2025"},{"key":"ref9","article-title":"A pythonic framework for threat modeling","author":"Tarandach","year":"2025"},{"key":"ref10","article-title":"Cairis: Quick start","year":"2025"},{"key":"ref11","article-title":"Threats manager studio","year":"2025"},{"key":"ref12","article-title":"Automated threat analysis for security and privacy","volume-title":"PhD thesis","author":"Sion","year":"2020"},{"key":"ref13","article-title":"Agile threat modeling toolkit","year":"2025"},{"key":"ref14","article-title":"Threat modeling-as-a-code in a tick (tictaac)","author":"Rusakovich","year":"2025"}],"event":{"name":"2025 40th IEEE\/ACM International Conference on Automated Software Engineering (ASE)","location":"Seoul, Korea, Republic of","start":{"date-parts":[[2025,11,16]]},"end":{"date-parts":[[2025,11,20]]}},"container-title":["2025 40th IEEE\/ACM International Conference on Automated Software Engineering (ASE)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/11334056\/11334198\/11334490.pdf?arnumber=11334490","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,1,29]],"date-time":"2026-01-29T10:07:52Z","timestamp":1769681272000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/11334490\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,11,16]]},"references-count":14,"URL":"https:\/\/doi.org\/10.1109\/ase63991.2025.00360","relation":{},"subject":[],"published":{"date-parts":[[2025,11,16]]}}}