{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T04:16:15Z","timestamp":1750306575521,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":31,"publisher":"ACM","license":[{"start":{"date-parts":[[2014,11,7]],"date-time":"2014-11-07T00:00:00Z","timestamp":1415318400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100000183","name":"Army Research Office","doi-asserted-by":"publisher","award":["W911NF-09-1-0273"],"award-info":[{"award-number":["W911NF-09-1-0273"]}],"id":[{"id":"10.13039\/100000183","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2014,11,7]]},"DOI":"10.1145\/2663887.2663905","type":"proceedings-article","created":{"date-parts":[[2014,11,11]],"date-time":"2014-11-11T13:40:05Z","timestamp":1415713205000},"page":"27-34","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":1,"title":["Comparative Evaluation of Architectural and Code-Level Approaches for Finding Security Vulnerabilities"],"prefix":"10.1145","author":[{"given":"Radu","family":"Vanciu","sequence":"first","affiliation":[{"name":"Wayne State University, Detroit, MI, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ebrahim","family":"Khalaj","sequence":"additional","affiliation":[{"name":"Wayne State University, Detroit, MI, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Marwan","family":"Abi-Antoun","sequence":"additional","affiliation":[{"name":"Wayne State University, Detroit, MI, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2014,11,7]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"ScoriaBench. www.cs.wayne.edu\/~mabianto\/sb 2014.  ScoriaBench. www.cs.wayne.edu\/~mabianto\/sb 2014."},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1145\/2594291.2594299"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1109\/CSMR.2013.37"},{"key":"e_1_3_2_1_4_1","unstructured":"Coverity. Static Application Security Testing 2013.  Coverity. Static Application Security Testing 2013."},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1145\/1985793.1985889"},{"volume-title":"OSDI","year":"2010","author":"Enck W.","key":"e_1_3_2_1_6_1"},{"volume-title":"USENIX Conference on Security","year":"2011","author":"Enck W.","key":"e_1_3_2_1_7_1"},{"volume-title":"Get Off of My Clipboard - On How Usability Trumps Security in Android Password Managers. In Financial Cryptography","year":"2013","author":"Fahl S.","key":"e_1_3_2_1_8_1"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-35632-2_11"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10207-009-0086-1"},{"key":"e_1_3_2_1_11_1","unstructured":"HP. Fortify Static Code Analyzer 2013.  HP. Fortify Static Code Analyzer 2013."},{"key":"e_1_3_2_1_12_1","unstructured":"IBM. AppScan Source 2013.  IBM. AppScan Source 2013."},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/2614628.2614633"},{"volume-title":"Cetus Users and Compiler Infrastructure Workshop","year":"2011","author":"Lam P.","key":"e_1_3_2_1_14_1"},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1109\/CSMR.2010.26"},{"key":"e_1_3_2_1_16_1","unstructured":"B. Livshits. Stanford SecuriBench Micro 2006.  B. Livshits. Stanford SecuriBench Micro 2006."},{"volume-title":"Finding Security Errors in Java Programs with Static Analysis. In Usenix Security Symposium","year":"2005","author":"Livshits B.","key":"e_1_3_2_1_17_1"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"crossref","unstructured":"B. Livshits M. Sridharan Y. Smaragdakis O. Lhot\u00e1k J. N. Amaral B.-Y. E. Chang S. Guyer U. Khedker A. M\u00f8ller and D. Vardoulakis. In Defense of Soundiness: a Manifesto. http:\/\/soundiness.org\/ 2014.  B. Livshits M. Sridharan Y. Smaragdakis O. Lhot\u00e1k J. N. Amaral B.-Y. E. Chang S. Guyer U. Khedker A. M\u00f8ller and D. Vardoulakis. In Defense of Soundiness: a Manifesto. http:\/\/soundiness.org\/ 2014.","DOI":"10.1145\/2644805"},{"volume-title":"Addison-Wesley","year":"2011","author":"Long F.","key":"e_1_3_2_1_19_1"},{"volume-title":"Addison-Wesley Professional","year":"2006","author":"McGraw G.","key":"e_1_3_2_1_20_1"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1145\/292540.292561"},{"key":"e_1_3_2_1_22_1","unstructured":"National Institute of Standards and Technology. NIST SAMATE Reference Dataset Project. http:\/\/samate.nist.gov\/SRD\/ 2013.  National Institute of Standards and Technology. NIST SAMATE Reference Dataset Project. http:\/\/samate.nist.gov\/SRD\/ 2013."},{"key":"e_1_3_2_1_23_1","unstructured":"OWASP. WebGoat Project 2013.  OWASP. WebGoat Project 2013."},{"volume-title":"InsecureBank","year":"2013","key":"e_1_3_2_1_24_1"},{"key":"e_1_3_2_1_25_1","unstructured":"The MITRE Corporation. Common Weakness Enumeration (CWE). https:\/\/cwe.mitre.org\/ 2013.  The MITRE Corporation. Common Weakness Enumeration (CWE). https:\/\/cwe.mitre.org\/ 2013."},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-37057-1_15"},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/1542476.1542486"},{"key":"e_1_3_2_1_28_1","unstructured":"University of Maryland. FindBugs: Find Bugs in Java Programs. http:\/\/findbugs.sourceforge.net 2007.  University of Maryland. FindBugs: Find Bugs in Java Programs. http:\/\/findbugs.sourceforge.net 2007."},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1109\/WCRE.2012.36"},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1109\/ASE.2013.6693092"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2012.16"}],"event":{"name":"CCS'14: 2014 ACM SIGSAC Conference on Computer and Communications Security","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"],"location":"Scottsdale Arizona USA","acronym":"CCS'14"},"container-title":["Proceedings of the 2014 ACM Workshop on Security Information Workers"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2663887.2663905","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2663887.2663905","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T06:13:34Z","timestamp":1750227214000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2663887.2663905"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2014,11,7]]},"references-count":31,"alternative-id":["10.1145\/2663887.2663905","10.1145\/2663887"],"URL":"https:\/\/doi.org\/10.1145\/2663887.2663905","relation":{},"subject":[],"published":{"date-parts":[[2014,11,7]]},"assertion":[{"value":"2014-11-07","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}