{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T05:08:10Z","timestamp":1750223290219,"version":"3.28.0"},"reference-count":56,"publisher":"IEEE","license":[{"start":{"date-parts":[[2023,10,26]],"date-time":"2023-10-26T00:00:00Z","timestamp":1698278400000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2023,10,26]],"date-time":"2023-10-26T00:00:00Z","timestamp":1698278400000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2023,10,26]]},"DOI":"10.1109\/esem56168.2023.10304868","type":"proceedings-article","created":{"date-parts":[[2023,11,8]],"date-time":"2023-11-08T18:50:15Z","timestamp":1699469415000},"page":"1-12","source":"Crossref","is-referenced-by-count":5,"title":["Exploring Technical Debt in Security Questions on Stack Overflow"],"prefix":"10.1109","author":[{"given":"Joshua Aldrich","family":"Edbert","sequence":"first","affiliation":[{"name":"University of Saskatchewan,Department of Computer Science"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Sahrima Jannat","family":"Oishwee","sequence":"additional","affiliation":[{"name":"University of Saskatchewan,Department of Computer Science"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Shubhashis","family":"Karmakar","sequence":"additional","affiliation":[{"name":"University of Saskatchewan,Department of Computer Science"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Zadia","family":"Codabux","sequence":"additional","affiliation":[{"name":"University of Saskatchewan,Department of Computer Science"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Roberto","family":"Verdecchia","sequence":"additional","affiliation":[{"name":"University of Florence,Department of Information Engineering"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1016\/j.jss.2012.12.052"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1109\/MS.2012.130"},{"key":"ref56","doi-asserted-by":"publisher","DOI":"10.1007\/s10664-008-9102-8"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-95189-8_13"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1007\/s11623-012-0222-3"},{"key":"ref53","doi-asserted-by":"publisher","DOI":"10.11591\/ijins.v1i3.707"},{"key":"ref52","first-page":"650","article-title":"Prevention of cross-site scripting attacks (xss) on web applications in the client side","volume":"8","author":"shalini","year":"2011","journal-title":"International Journal of Computer Science issues (IJCSI)"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1016\/j.infsof.2015.10.008"},{"key":"ref55","doi-asserted-by":"publisher","DOI":"10.1016\/j.infsof.2017.10.009"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1109\/MS.2012.167"},{"key":"ref54","doi-asserted-by":"publisher","DOI":"10.1109\/IAdCC.2013.6514419"},{"key":"ref17","article-title":"An empirical evaluation of the relationship between technical debt and software security","volume":"2019","author":"siavvas","year":"0","journal-title":"9th International Conference on Information society and technology (ICIST)"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1016\/j.simpat.2019.101951"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1109\/MSR.2015.32"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2018.3011039"},{"key":"ref51","doi-asserted-by":"publisher","DOI":"10.1109\/ICSME52107.2021.00076"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1145\/3194707.3194713"},{"key":"ref46","article-title":"Can knowledge of technical debt help identify software vulnerabilities?","author":"nord","year":"0","journal-title":"CSET USENIX Security Symposium"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1109\/SANER.2017.7884629"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.1109\/APSEC51365.2020.00011"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1145\/3549035.3561182"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1145\/3180155.3180195"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1609\/icwsm.v8i1.14550"},{"key":"ref44","doi-asserted-by":"publisher","DOI":"10.1109\/MSR.2013.6624004"},{"key":"ref43","first-page":"1","article-title":"The coding manual for qualitative researchers","author":"salda\u00f1a","year":"2021","journal-title":"The Coding Manual for Qualitative Researchers"},{"key":"ref49","first-page":"354","article-title":"Common causes and effects of technical debt in serbian it: Insightd survey replication","author":"rama?","year":"0","journal-title":"2020 46th Euromicro Conference on Software Engineering and Advanced Applications (SEAA)"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2010.159"},{"journal-title":"The Security Development Lifecycle SDL A Process for Developing Demonstrably More Secure Software","year":"2006","author":"michael","key":"ref7"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1109\/MS.2008.19"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-35208-9_5"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1007\/s11390-016-1672-0"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1016\/S1361-3723(11)70083-5"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2022.3140181"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1007\/978-981-16-1249-7_14"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1145\/3503823.3503900"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1145\/3379597.3387472"},{"key":"ref37","article-title":"Roberta: A robustly optimized bert pretraining approach","author":"liu","year":"2019","journal-title":"ArXiv Preprint"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1177\/001316446002000104"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE-SEIS.2019.00012"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1007\/s10664-021-10054-w"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1016\/j.asej.2014.04.011"},{"key":"ref32","first-page":"528","article-title":"The goal question metric approach","author":"caldiera","year":"1994","journal-title":"Encyclopedia of Software Engineering"},{"key":"ref2","first-page":"281","article-title":"Security in the software development lifecycle","author":"assal","year":"0","journal-title":"SOUPS USENIX Security Symposium"},{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1145\/3339252.3340336"},{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2021.3128742"},{"key":"ref38","first-page":"3163","article-title":"Taming pretrained transformers for extreme multilabel text classification","author":"chang","year":"0","journal-title":"Proceedings of the 26th ACM SIGKDD International Conference on Knowledge Discovery &amp Data Mining"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1145\/3544902.3546245"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1007\/s10664-022-10269-5"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1007\/s10664-021-10026-0"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1007\/s10664-012-9231-y"},{"key":"ref20","doi-asserted-by":"crossref","first-page":"138","DOI":"10.1145\/3194164.3194167","article-title":"A Position Study to Investigate Technical Debt Associated with Security Weaknesses","author":"izurieta","year":"2018","journal-title":"Proceedings of the 2018 International Conference on Technical Debt - TechDebt '18"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1109\/CyberSecPODS.2019.8885100"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1080\/17517575.2020.1824017"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1145\/3382494.3410693"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1007\/s10664-015-9379-3"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1145\/3422392.3422429"}],"event":{"name":"2023 ACM\/IEEE International Symposium on Empirical Software Engineering and Measurement (ESEM)","start":{"date-parts":[[2023,10,26]]},"location":"New Orleans, LA, USA","end":{"date-parts":[[2023,10,27]]}},"container-title":["2023 ACM\/IEEE International Symposium on Empirical Software Engineering and Measurement (ESEM)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/10304838\/10304789\/10304868.pdf?arnumber=10304868","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,12,11]],"date-time":"2023-12-11T19:19:11Z","timestamp":1702322351000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10304868\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,10,26]]},"references-count":56,"URL":"https:\/\/doi.org\/10.1109\/esem56168.2023.10304868","relation":{},"subject":[],"published":{"date-parts":[[2023,10,26]]}}}