{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,6]],"date-time":"2026-03-06T07:55:22Z","timestamp":1772783722634,"version":"3.50.1"},"publisher-location":"New York, NY, USA","reference-count":14,"publisher":"ACM","license":[{"start":{"date-parts":[[2008,5,17]],"date-time":"2008-05-17T00:00:00Z","timestamp":1210982400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2008,5,17]]},"DOI":"10.1145\/1370905.1370913","type":"proceedings-article","created":{"date-parts":[[2008,5,15]],"date-time":"2008-05-15T18:36:48Z","timestamp":1210876608000},"page":"57-64","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":54,"title":["Security metrics for source code structures"],"prefix":"10.1145","author":[{"given":"Istehad","family":"Chowdhury","sequence":"first","affiliation":[{"name":"Queen's University, Kingston, Ontario, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Brian","family":"Chan","sequence":"additional","affiliation":[{"name":"Queen's University, Kingston, Ontario, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mohammad","family":"Zulkernine","sequence":"additional","affiliation":[{"name":"Queen's University, Kingston, Ontario, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2008,5,17]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"Why Good Software Engineering Practices Often Do Not Produce Secure Software. Workshop on Cyber Infrastructure -- Emergence Preparedness Aspects","author":"Adams C.","year":"2005","unstructured":"Adams , C. and Jourdan , G.V . 2005 . Why Good Software Engineering Practices Often Do Not Produce Secure Software. Workshop on Cyber Infrastructure -- Emergence Preparedness Aspects ( Ottawa, Ontario, Canada , Apr. 2005 ). Adams, C. and Jourdan, G.V. 2005. Why Good Software Engineering Practices Often Do Not Produce Secure Software. Workshop on Cyber Infrastructure -- Emergence Preparedness Aspects (Ottawa, Ontario, Canada, Apr. 2005)."},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2006.10.002"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.5555\/2699840.2699848"},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1145\/206826.206829"},{"key":"e_1_3_2_1_5_1","volume-title":"Software Security: Building Security In","author":"McGraw G.","year":"2006","unstructured":"McGraw , G. 2006 . Software Security: Building Security In . Addison-Wesley . McGraw, G. 2006. Software Security: Building Security In. Addison-Wesley."},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"crossref","unstructured":"Manadhata P. K. and Wing J. M. 2005. An Attack Surface Metric. Technical Report. School of Computer Science Carnegie Mellon University (CMU). CMU-CS-05-155.  Manadhata P. K. and Wing J. M. 2005. An Attack Surface Metric. Technical Report. School of Computer Science Carnegie Mellon University (CMU). CMU-CS-05-155.","DOI":"10.21236\/ADA457096"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1109\/CMPASS.1996.507892"},{"key":"e_1_3_2_1_8_1","first-page":"1","article-title":"Software Design Metrics for Object-Oriented Software","volume":"6","author":"Aggarwal K.K.","year":"2006","unstructured":"Aggarwal , K.K. , Singh , Y. , Kaur , A. , and Malhotra , R. 2006 . Software Design Metrics for Object-Oriented Software . Journal of Object Technology 6 , 1 (Jan. 2006), 121--138. Aggarwal, K.K., Singh, Y., Kaur, A., and Malhotra, R. 2006. Software Design Metrics for Object-Oriented Software. Journal of Object Technology 6, 1 (Jan. 2006), 121--138.","journal-title":"Journal of Object Technology"},{"key":"e_1_3_2_1_9_1","unstructured":"Pfleeger C. and Pfleeger S. 2003. Security in Computing. Prentice-Hall Inc.   Pfleeger C. and Pfleeger S. 2003. Security in Computing. Prentice-Hall Inc."},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/32.295895"},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"crossref","unstructured":"Khaer M. A. Hashem M. M. A. and Masud M. R. 2007. An Empirical Analysis of Software Systems for Measurement of Design Quality Level Based on Design Patterns. In Proceedings of the 10th International Conference on Computer and Information Technology. (Dhaka Bangladesh Dec. 2007) In Press.  Khaer M. A. Hashem M. M. A. and Masud M. R. 2007. An Empirical Analysis of Software Systems for Measurement of Design Quality Level Based on Design Patterns. In Proceedings of the 10th International Conference on Computer and Information Technology. (Dhaka Bangladesh Dec. 2007) In Press.","DOI":"10.1109\/ICCITECHN.2007.4579432"},{"key":"e_1_3_2_1_12_1","unstructured":"Carnegie Mellon University's Computer Emergency Response Team (CERT) Advisories http:\/\/www.cert.org\/advisories.  Carnegie Mellon University's Computer Emergency Response Team (CERT) Advisories http:\/\/www.cert.org\/advisories."},{"key":"e_1_3_2_1_13_1","unstructured":"Microsoft Security Bulletins http:\/\/www.microsoft.com\/technet\/security\/current.asp  Microsoft Security Bulletins http:\/\/www.microsoft.com\/technet\/security\/current.asp"},{"key":"e_1_3_2_1_14_1","unstructured":"MITRE Common Vulnerabilities and Exposures (CVE) http:\/\/www.cve.mitre.org.  MITRE Common Vulnerabilities and Exposures (CVE) http:\/\/www.cve.mitre.org."}],"event":{"name":"ICSE '08: International Conference on Software Engineering","location":"Leipzig Germany","acronym":"ICSE '08","sponsor":["ACM Association for Computing Machinery","SIGSOFT ACM Special Interest Group on Software Engineering"]},"container-title":["Proceedings of the fourth international workshop on Software engineering for secure systems"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1370905.1370913","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/1370905.1370913","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T13:57:53Z","timestamp":1750255073000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1370905.1370913"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2008,5,17]]},"references-count":14,"alternative-id":["10.1145\/1370905.1370913","10.1145\/1370905"],"URL":"https:\/\/doi.org\/10.1145\/1370905.1370913","relation":{},"subject":[],"published":{"date-parts":[[2008,5,17]]},"assertion":[{"value":"2008-05-17","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}