{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,12,9]],"date-time":"2025-12-09T08:22:54Z","timestamp":1765268574602,"version":"3.28.0"},"reference-count":38,"publisher":"IEEE","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2018,9]]},"DOI":"10.1109\/is.2018.8710484","type":"proceedings-article","created":{"date-parts":[[2019,5,9]],"date-time":"2019-05-09T21:58:26Z","timestamp":1557439106000},"page":"692-697","source":"Crossref","is-referenced-by-count":8,"title":["Is Popularity an Indicator of Software Security?"],"prefix":"10.1109","author":[{"given":"Miltiadis","family":"Siavvas","sequence":"first","affiliation":[]},{"given":"Marija","family":"Jankovic","sequence":"additional","affiliation":[]},{"given":"Dionysios","family":"Kehagias","sequence":"additional","affiliation":[]},{"given":"Dimitrios","family":"Tzovaras","sequence":"additional","affiliation":[]}],"member":"263","reference":[{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.1016\/j.sysarc.2010.06.003"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1145\/1052883.1052895"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1109\/BIGCOMP.2016.7425809"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1145\/1456362.1456370"},{"journal-title":"The Security Development Lifecycle SDL A Process for Developing Demonstrably More Secure Software","year":"2006","author":"howard","key":"ref30"},{"journal-title":"Statistical Power Analysis for the Behavioral Sciences","year":"1988","author":"cohen","key":"ref37"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.2307\/1422689"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1145\/1831708.1831738"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1016\/j.infsof.2015.08.002"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2010.81"},{"key":"ref11","first-page":"545","article-title":"Security of open source web applications","author":"walden","year":"2009","journal-title":"Empirical Software Engineering and Measurement 2009 ESEM 2009 3rd International Symposium on"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1109\/ICSM.2015.7332492"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1109\/SANER.2015.7081868"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1109\/MS.2015.29"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2014.66"},{"key":"ref16","doi-asserted-by":"crossref","first-page":"5","DOI":"10.1016\/S1353-4858(18)30005-9","article-title":"Apache Struts 2: how technical and development gaps caused the Equifax Breach","volume":"2018","author":"luszcz","year":"0","journal-title":"Network Security"},{"key":"ref17","first-page":"18","article-title":"Finding Security Vulnerabilities in Java Applications with Static Analysis","author":"livshits","year":"2005","journal-title":"Architecture"},{"key":"ref18","first-page":"69","article-title":"The Vulnerability Dataset of a Large Software Ecosystem","author":"mitropoulos","year":"2016","journal-title":"Proceedings - 3rd International Workshop on Building Analysis Datasets and Gathering Experience Returns for Security BADGERS 2014"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1145\/1858996.1859089"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2004.111"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-95189-8_13"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2008.514"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2016.111"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2012.1"},{"journal-title":"Writing Secure Code","year":"2003","author":"howard","key":"ref29"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijinfomgt.2016.05.016"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1145\/1774088.1774504"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1145\/1456362.1456372"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1145\/1595676.1595691"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1109\/EDCC.2016.34"},{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1109\/ISSRE.2006.43"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1007\/s10664-016-9447-3"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1109\/SUITE.2009.5070010"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/ICSME.2014.45"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2006.10.002"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1016\/j.eswa.2017.05.060"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1145\/3094243.3094245"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2014.2340398"}],"event":{"name":"2018 International Conference on Intelligent Systems (IS)","start":{"date-parts":[[2018,9,25]]},"location":"Funchal - Madeira, Portugal","end":{"date-parts":[[2018,9,27]]}},"container-title":["2018 International Conference on Intelligent Systems (IS)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/8703185\/8710451\/08710484.pdf?arnumber=8710484","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,6,3]],"date-time":"2019-06-03T23:28:39Z","timestamp":1559604519000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/8710484\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018,9]]},"references-count":38,"URL":"https:\/\/doi.org\/10.1109\/is.2018.8710484","relation":{},"subject":[],"published":{"date-parts":[[2018,9]]}}}