{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,11]],"date-time":"2026-02-11T17:21:45Z","timestamp":1770830505583,"version":"3.50.1"},"reference-count":49,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"9","license":[{"start":{"date-parts":[[2019,9,1]],"date-time":"2019-09-01T00:00:00Z","timestamp":1567296000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2019,9,1]],"date-time":"2019-09-01T00:00:00Z","timestamp":1567296000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2019,9,1]],"date-time":"2019-09-01T00:00:00Z","timestamp":1567296000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"DOI":"10.13039\/501100000038","name":"Natural Sciences and Engineering Research Council of Canada","doi-asserted-by":"publisher","award":["N01035"],"award-info":[{"award-number":["N01035"]}],"id":[{"id":"10.13039\/501100000038","id-type":"DOI","asserted-by":"publisher"}]},{"name":"Vanier Canada Graduate Scholarship"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Trans.Inform.Forensic Secur."],"published-print":{"date-parts":[[2019,9]]},"DOI":"10.1109\/tifs.2019.2895963","type":"journal-article","created":{"date-parts":[[2019,1,29]],"date-time":"2019-01-29T20:01:31Z","timestamp":1548792091000},"page":"2315-2330","source":"Crossref","is-referenced-by-count":30,"title":["Large-Scale Empirical Study of Important Features Indicative of Discovered Vulnerabilities to Assess Application Security"],"prefix":"10.1109","volume":"14","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-7457-5198","authenticated-orcid":false,"given":"Mengyuan","family":"Zhang","sequence":"first","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2664-3963","authenticated-orcid":false,"given":"Xavier","family":"de Carne de Carnavalet","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0002-7441-7541","authenticated-orcid":false,"given":"Lingyu","family":"Wang","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0002-0075-203X","authenticated-orcid":false,"given":"Ahmed","family":"Ragab","sequence":"additional","affiliation":[]}],"member":"263","reference":[{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1145\/2851613.2851777"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.1016\/j.sysarc.2010.06.003"},{"key":"ref33","author":"podjarny","year":"2017","journal-title":"Securing Open Source Libraries"},{"key":"ref32","year":"2017","journal-title":"Vulnerability Database Catalog"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1145\/1529282.1529731"},{"key":"ref30","author":"van der maaten","year":"2008","journal-title":"User&#x2019;s Guide for t-SNE Software"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1109\/Metrisec.2011.18"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1145\/1852786.1852798"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1109\/ICST.2010.32"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1145\/1414004.1414065"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1109\/T-C.1969.222678"},{"key":"ref27","year":"2017","journal-title":"Divide Data for Optimal Neural Network Training"},{"key":"ref29","first-page":"857","article-title":"Stochastic neighbor embedding","author":"hinton","year":"2003","journal-title":"Proc Adv Neural Inf Process Syst"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1007\/s10664-011-9190-8"},{"key":"ref1","first-page":"353","article-title":"An example of software system debugging","volume":"71","author":"akiyama","year":"1971","journal-title":"Proc IFIP Congr"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1109\/72.298224"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1007\/BF00116837"},{"key":"ref21","first-page":"129","article-title":"The feature selection problem: Traditional methods and a new algorithm","volume":"2","author":"kira","year":"1992","journal-title":"Proc Nat Conf Artif Intell"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1080\/01621459.1955.10501294"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1023\/A:1010933404324"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1214\/09-SS054"},{"key":"ref25","author":"vercellis","year":"2011","journal-title":"Business Intelligence Data Mining and Optimization for Decision Making"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1109\/TR.2013.2257052"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1002\/wics.101"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2010.81"},{"key":"ref12","first-page":"2579","article-title":"Visualizing data using t-SNE","volume":"9","author":"van der maaten","year":"2008","journal-title":"J Mach Learn Res"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.4236\/jsea.2009.23020"},{"key":"ref14","author":"danial","year":"2017","journal-title":"CLOC Count Lines of Code"},{"key":"ref15","author":"wheeler","year":"2017","journal-title":"Flawfinder"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2010.60"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1016\/j.csl.2013.11.004"},{"key":"ref18","first-page":"1371","article-title":"Overfitting in making comparisons between variable selection methods","volume":"3","author":"reunanen","year":"2003","journal-title":"J Mach Learn Res"},{"key":"ref19","article-title":"Correlation-based feature selection for machine learning","author":"hall","year":"1999"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2009.5070510"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1145\/1456362.1456372"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1145\/2810103.2813604"},{"key":"ref5","first-page":"1842e","article-title":"The relationship between evolutionary coupling and defects in large industrial software","volume":"29","author":"kirbas","year":"2017","journal-title":"Journal of Software: Evolution and Process"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2005.17"},{"key":"ref7","first-page":"230","article-title":"A logarithmic poisson execution time model for software reliability measurement","author":"musa","year":"1984","journal-title":"Proc Int Conf Softw Eng (ICSE)"},{"key":"ref49","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2016.08.004"},{"key":"ref9","year":"2017","journal-title":"National Vulnerability Database"},{"key":"ref46","first-page":"86","article-title":"Prediction capabilities of vulnerability discovery models","author":"alhazmi","year":"2006","journal-title":"Proceedings of Annual Reliability and Maintainability Symposium (RAMS)"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2018.23158"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2014.2354037"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2010.10.007"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1109\/TR.2016.2630503"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1145\/2857705.2857750"},{"key":"ref44","doi-asserted-by":"publisher","DOI":"10.1109\/ICSSA.2017.27"},{"key":"ref43","doi-asserted-by":"publisher","DOI":"10.1109\/ISSRE.2014.32"}],"container-title":["IEEE Transactions on Information Forensics and Security"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/10206\/8721625\/08629314.pdf?arnumber=8629314","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,7,13]],"date-time":"2022-07-13T21:16:22Z","timestamp":1657746982000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/8629314\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,9]]},"references-count":49,"journal-issue":{"issue":"9"},"URL":"https:\/\/doi.org\/10.1109\/tifs.2019.2895963","relation":{},"ISSN":["1556-6013","1556-6021"],"issn-type":[{"value":"1556-6013","type":"print"},{"value":"1556-6021","type":"electronic"}],"subject":[],"published":{"date-parts":[[2019,9]]}}}