{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,6]],"date-time":"2026-03-06T07:26:46Z","timestamp":1772782006393,"version":"3.50.1"},"reference-count":14,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"6","license":[{"start":{"date-parts":[[2023,11,1]],"date-time":"2023-11-01T00:00:00Z","timestamp":1698796800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2023,11,1]],"date-time":"2023-11-01T00:00:00Z","timestamp":1698796800000},"content-version":"am","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2023,11,1]],"date-time":"2023-11-01T00:00:00Z","timestamp":1698796800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2023,11,1]],"date-time":"2023-11-01T00:00:00Z","timestamp":1698796800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"DOI":"10.13039\/100000001","name":"National Science Foundation","doi-asserted-by":"publisher","award":["CNS-2206865"],"award-info":[{"award-number":["CNS-2206865"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Secur. Privacy"],"published-print":{"date-parts":[[2023,11]]},"DOI":"10.1109\/msec.2023.3316569","type":"journal-article","created":{"date-parts":[[2023,11,13]],"date-time":"2023-11-13T19:42:58Z","timestamp":1699904578000},"page":"59-63","source":"Crossref","is-referenced-by-count":4,"title":["A Viewpoint on Human Factors in Software Supply Chain Security: A Research Agenda"],"prefix":"10.1109","volume":"21","author":[{"ORCID":"https:\/\/orcid.org\/0000-0003-4442-0085","authenticated-orcid":false,"given":"Marcel","family":"Fourn\u00e9","sequence":"first","affiliation":[{"name":"Research Engineer, Max Planck Institute for Security and Privacy, Bochum, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0008-2921-1254","authenticated-orcid":false,"given":"Dominik","family":"Wermke","sequence":"additional","affiliation":[{"name":"Department of Computer Science, North Carolina State University (NCSU), Raleigh, NC, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5644-3316","authenticated-orcid":false,"given":"Sascha","family":"Fahl","sequence":"additional","affiliation":[{"name":"Empirical Information Security, Leibniz University Hannover, Hannover, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-7167-7383","authenticated-orcid":false,"given":"Yasemin","family":"Acar","sequence":"additional","affiliation":[{"name":"Computer Science, Paderborn University, Paderborn, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref1","volume-title":"Securing the software supply chain: Recommended practices for developers","year":"2022"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1109\/sp46215.2023.10179304"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1145\/2663716.2663755"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.14722\/madweb.2022.23010"},{"key":"ref5","volume-title":"Highly evasive attacker leverages SolarWinds supply chain to compromise multiple global victims with SUNBURST backdoor","year":"2023"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/msec.2022.3142338"},{"key":"ref7","volume-title":"CircleCI incident report for January 4, 2023 security incident","year":"2023"},{"key":"ref8","volume-title":"Security incident update and recommended actions","year":"2023"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1109\/sp46214.2022.9833686"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1145\/358198.358210"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1109\/sp46215.2023.10179320"},{"key":"ref12","volume-title":"Bootstrappable Builds"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1109\/csac.2005.17"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1109\/sp46215.2023.10179378"}],"container-title":["IEEE Security &amp; Privacy"],"original-title":[],"link":[{"URL":"https:\/\/ieeexplore.ieee.org\/ielam\/8013\/10315765\/10315781-aam.pdf","content-type":"application\/pdf","content-version":"am","intended-application":"syndication"},{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/8013\/10315765\/10315781.pdf?arnumber=10315781","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,3,14]],"date-time":"2024-03-14T00:22:05Z","timestamp":1710375725000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10315781\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,11]]},"references-count":14,"journal-issue":{"issue":"6"},"URL":"https:\/\/doi.org\/10.1109\/msec.2023.3316569","relation":{},"ISSN":["1540-7993","1558-4046"],"issn-type":[{"value":"1540-7993","type":"print"},{"value":"1558-4046","type":"electronic"}],"subject":[],"published":{"date-parts":[[2023,11]]}}}