{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,7]],"date-time":"2026-07-07T04:02:35Z","timestamp":1783396955428,"version":"3.54.6"},"publisher-location":"New York, NY, USA","reference-count":55,"publisher":"ACM","license":[{"start":{"date-parts":[[2024,2,6]],"date-time":"2024-02-06T00:00:00Z","timestamp":1707177600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"DOI":"10.13039\/501100012166","name":"National Key Research and Development Program of China","doi-asserted-by":"publisher","award":["2022YFB3103904"],"award-info":[{"award-number":["2022YFB3103904"]}],"id":[{"id":"10.13039\/501100012166","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["62202462"],"award-info":[{"award-number":["62202462"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"name":"Chinese National Natural Science Foundation","award":["61931019"],"award-info":[{"award-number":["61931019"]}]},{"name":"Chinese Young Scientists Fund of the National Natural Science Foundation","award":["62002342"],"award-info":[{"award-number":["62002342"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2024,2,6]]},"DOI":"10.1145\/3597503.3623336","type":"proceedings-article","created":{"date-parts":[[2024,2,6]],"date-time":"2024-02-06T20:53:16Z","timestamp":1707252796000},"page":"1-12","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":11,"title":["LibvDiff: Library Version Difference Guided OSS Version Identification in Binaries"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0009-0000-4729-7778","authenticated-orcid":false,"given":"Chaopeng","family":"Dong","sequence":"first","affiliation":[{"name":"Institute of Information Engineering, Chinese Academy of Sciences, Beijing, China"},{"name":"School of Cyber Security, University of Chinese Academy of Sciences, Beijing, -Select-, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0004-4096-1209","authenticated-orcid":false,"given":"Siyuan","family":"Li","sequence":"additional","affiliation":[{"name":"Institute of Information Engineering, Chinese Academy of Sciences, Beijing, China"},{"name":"School of Cyber Security, University of Chinese Academy of Sciences, Beijing, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-4385-8261","authenticated-orcid":false,"given":"Shouguo","family":"Yang","sequence":"additional","affiliation":[{"name":"Institute of Information Engineering, Chinese Academy of Sciences, Beijing, China"},{"name":"School of Cyber Security, University of Chinese Academy of Sciences, Beijing, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0005-8009-2252","authenticated-orcid":false,"given":"Yang","family":"Xiao","sequence":"additional","affiliation":[{"name":"Institute of Information Engineering, Chinese Academy of Sciences, Beijing, China"},{"name":"School of Cyber Security, University of Chinese Academy of Sciences, Beijing, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0003-7909-2576","authenticated-orcid":false,"given":"Yongpan","family":"Wang","sequence":"additional","affiliation":[{"name":"Institute of Information Engineering, Chinese Academy of Sciences, Beijing, China"},{"name":"School of Cyber Security, University of Chinese Academy of Sciences, Beijing, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-1353-7838","authenticated-orcid":false,"given":"Hong","family":"Li","sequence":"additional","affiliation":[{"name":"Institute of Information Engineering, Chinese Academy of Sciences, Beijing, China"},{"name":"School of Cyber Security, University of Chinese Academy of Sciences, Beijing, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-7071-2976","authenticated-orcid":false,"given":"Zhi","family":"Li","sequence":"additional","affiliation":[{"name":"Institute of Information Engineering, Chinese Academy of Sciences, Beijing, China"},{"name":"School of Cyber Security, University of Chinese Academy of Sciences, Beijing, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2745-7521","authenticated-orcid":false,"given":"Limin","family":"Sun","sequence":"additional","affiliation":[{"name":"Institute of Information Engineering, Chinese Academy of Sciences, Beijing, China"},{"name":"School of Cyber Security, University of Chinese Academy of Sciences, Beijing, China"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2024,2,6]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"2014. CVE-2014-0160. https:\/\/nvd.nist.gov\/vuln\/detail\/cve-2014-0160."},{"key":"e_1_3_2_1_2_1","unstructured":"2015. CVE-2015-0235. https:\/\/nvd.nist.gov\/vuln\/detail\/cve-2015-0235."},{"key":"e_1_3_2_1_3_1","unstructured":"2020. Market Guide for Software Composition Analysis. https:\/\/www.gartner.com\/doc\/reprints?id=1-26OO2IJ6&ct=210630&st=sb."},{"key":"e_1_3_2_1_4_1","volume-title":"Q3","year":"2021","unstructured":"2021. The Forrester Wave: Software Composition Analysis, Q3 2021. https:\/\/reprints2.forrester.com\/assets\/2\/679\/RES176091\/report."},{"key":"e_1_3_2_1_5_1","unstructured":"2022. The best-of-breed binary code analysis tool an indispensable item in the toolbox of world-class software analysts reverse engineers malware analyst and cybersecurity professionals. https:\/\/hex-rays.com\/ida-pro\/."},{"key":"e_1_3_2_1_6_1","unstructured":"2022. Core c99 package for AWS SDK for C. Includes cross-platform primitives configuration data structures and error handling. https:\/\/github.com\/awslabs\/aws-c-common."},{"key":"e_1_3_2_1_7_1","unstructured":"2022. A fast easy to use tool for analyzing reverse engineering and extracting firmware images. https:\/\/github.com\/ReFirmLabs\/binwalk."},{"key":"e_1_3_2_1_8_1","unstructured":"2022. The official PNG reference library. http:\/\/www.libpng.org\/pub\/png\/libpng.html."},{"key":"e_1_3_2_1_9_1","unstructured":"2022. The open source decentralized and multi-platform package manager to create and share all your native binaries. https:\/\/conan.io\/."},{"key":"e_1_3_2_1_10_1","unstructured":"2022. A platform supports manage cybersecurity and cyber compliance across the entire lifecycle. https:\/\/tomato.groov.pl\/."},{"key":"e_1_3_2_1_11_1","unstructured":"2022. Python Framework to analyse Git repositories. https:\/\/github.com\/ishepard\/pydriller."},{"key":"e_1_3_2_1_12_1","unstructured":"2022. TLS\/SSL and crypto library. https:\/\/github.com\/openssl\/openssl."},{"key":"e_1_3_2_1_13_1","unstructured":"2023. A code hosting platform where over 100 million developers shape the future of software together. https:\/\/github.com\/."},{"key":"e_1_3_2_1_14_1","unstructured":"2023. The Fedora Project is an independent project[2] to coordinate the development of Fedora Linux. https:\/\/admin.fedoraproject.org\/mirrormanager\/."},{"key":"e_1_3_2_1_15_1","unstructured":"2023. A free replacement for Adobe's enscript program. https:\/\/gitlab.gnome.org\/GNOME\/libxml2."},{"key":"e_1_3_2_1_16_1","unstructured":"2023. A freely available software library to render fonts. https:\/\/gitlab.freedesktop.org\/freetype\/freetype."},{"key":"e_1_3_2_1_17_1","unstructured":"2023. Libraries.io monitors 6 373 004 open source packages across 32 different package managers so you don't have to. https:\/\/libraries.io\/."},{"key":"e_1_3_2_1_18_1","unstructured":"2023. Packages for Linux and Unix. https:\/\/pkgs.org\/."},{"key":"e_1_3_2_1_19_1","unstructured":"2023. A third party alternative firmware based on Asuswrt-Merlin project for different routers. https:\/\/xvtx.ru\/xwrt\/."},{"key":"e_1_3_2_1_20_1","unstructured":"2023. The U.S. government repository of standards based vulnerability management data represented using the Security Content Automation Protocol (SCAP). https:\/\/nvd.nist.gov\/."},{"key":"e_1_3_2_1_21_1","volume-title":"Too Quiet in the Library: An Empirical Study of Security Updates in Android Apps' Native Code. 2021 IEEE\/ACM 43rd International Conference on Software Engineering (ICSE)","author":"Almanee Sumaya","year":"2021","unstructured":"Sumaya Almanee, Arda \u00dcnal, Mathias Payer, and Joshua Garcia. 2021. Too Quiet in the Library: An Empirical Study of Security Updates in Android Apps' Native Code. 2021 IEEE\/ACM 43rd International Conference on Software Engineering (ICSE) (2021), 1347--1359."},{"key":"e_1_3_2_1_22_1","volume-title":"Detecting Self-mutating Malware Using Control-Flow Graph Matching. In International Conference on Detection of intrusions and malware, and vulnerability assessment.","author":"Bruschi Danilo","year":"2006","unstructured":"Danilo Bruschi, Lorenzo Martignoni, and Mattia Monga. 2006. Detecting Self-mutating Malware Using Control-Flow Graph Matching. In International Conference on Detection of intrusions and malware, and vulnerability assessment."},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2013.40"},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1145\/2950290.2950350"},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1145\/2420950.2420997"},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1145\/3062341.3062387"},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/3173162.3177157"},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1145\/2594291.2594343"},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"crossref","unstructured":"Ruian Duan Ashish Bijlani Meng Xu Taesoo Kim and Wenke Lee. 2017. Identifying Open-Source License Violation and 1-Day Security Risk at Large Scale. In CCS. 2169--2185.","DOI":"10.1145\/3133956.3134048"},{"key":"e_1_3_2_1_30_1","unstructured":"Thomas Dullien. 2005. Graph-based comparison of Executable Objects."},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"crossref","unstructured":"Sebastian Eschweiler Khaled Yakdan and Elmar Gerhards-Padilla. 2016. discovRE: Efficient Cross-Architecture Identification of Bugs in Binary Code. In NDSS.","DOI":"10.14722\/ndss.2016.23185"},{"key":"e_1_3_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978370"},{"key":"e_1_3_2_1_33_1","volume-title":"BinHunt: Automatically Finding Semantic Differences in Binary Programs. In International Conference on Information, Communications and Signal Processing.","author":"Gao Debin","year":"2008","unstructured":"Debin Gao, Michael K. Reiter, and Dawn Xiaodong Song. 2008. BinHunt: Automatically Finding Semantic Differences in Binary Programs. In International Conference on Information, Communications and Signal Processing."},{"key":"e_1_3_2_1_34_1","doi-asserted-by":"crossref","unstructured":"Jian Gao Xin Yang Ying Fu Yu Jiang and Jiaguang Sun. 2018. VulSeeker: A Semantic Learning Based Vulnerability Seeker for Cross-Platform Binary. In ASE. 896--899.","DOI":"10.1145\/3238147.3240480"},{"key":"e_1_3_2_1_35_1","volume-title":"VES: A Component Version Extracting System for Large-Scale IoT Firmwares. In WASA","author":"Hu Xulun","year":"2020","unstructured":"Xulun Hu, Weidong Zhang, Hong Li, Yan Hu, Zhaoteng Yan, Xiyue Wang, and Limin Sun. 2020. VES: A Component Version Extracting System for Large-Scale IoT Firmwares. In WASA, Dongxiao Yu, Falko Dressler, and Jiguo Yu (Eds.), Vol. 12385. 39--48."},{"key":"e_1_3_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1145\/3052973.3052974"},{"key":"e_1_3_2_1_37_1","volume-title":"Polymorphic Worm Detection Using Structural Information of Executables. In International Symposium on Recent Advances in Intrusion Detection.","author":"Kr\u00fcgel Christopher","year":"2005","unstructured":"Christopher Kr\u00fcgel, Engin Kirda, Darren Mutz, William K. Robertson, and Giovanni Vigna. 2005. Polymorphic Worm Detection Using Structural Information of Executables. In International Symposium on Recent Advances in Intrusion Detection."},{"key":"e_1_3_2_1_38_1","unstructured":"Tencent Security Keen Lab. 2022. BinaryAI. https:\/\/www.binaryai.cn\/."},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1145\/1572272.1572287"},{"key":"e_1_3_2_1_40_1","volume-title":"Automatic Reverse Engineering of Malware Emulators. 2009 30th IEEE Symposium on Security and Privacy","author":"Sharif Monirul I.","year":"2009","unstructured":"Monirul I. Sharif, Andrea Lanzi, Jonathon T. Giffin, and Wenke Lee. 2009. Automatic Reverse Engineering of Malware Emulators. 2009 30th IEEE Symposium on Security and Privacy (2009), 94--109."},{"key":"e_1_3_2_1_41_1","doi-asserted-by":"crossref","unstructured":"Wei Tang Yanlin Wang Hongyu Zhang Shi Han Ping Luo and Dongmei Zhang. 2022. LibDB: An Effective and Efficient Framework for Detecting Third-Party Libraries in Binaries. In MSR. arXiv:2204.10232","DOI":"10.1145\/3524842.3528442"},{"key":"e_1_3_2_1_42_1","volume-title":"SoK: Deep Packer Inspection: A Longitudinal Study of the Complexity of Run-Time Packers. 2015 IEEE Symposium on Security and Privacy","author":"Ugarte-Pedrero Xabier","year":"2015","unstructured":"Xabier Ugarte-Pedrero, Davide Balzarotti, Igor Santos, and Pablo Garc\u00eda Bringas. 2015. SoK: Deep Packer Inspection: A Longitudinal Study of the Complexity of Run-Time Packers. 2015 IEEE Symposium on Security and Privacy (2015), 659--673."},{"key":"e_1_3_2_1_43_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2018.07.012"},{"key":"e_1_3_2_1_44_1","doi-asserted-by":"publisher","DOI":"10.1145\/3243734.3243827"},{"key":"e_1_3_2_1_45_1","doi-asserted-by":"crossref","unstructured":"Xiaojun Xu Chang Liu Qian Feng Heng Yin Le Song and Dawn Song. 2017. Neural Network-Based Graph Embedding for Cross-Platform Binary Code Similarity Detection. In CCS. 363--376.","DOI":"10.1145\/3133956.3134018"},{"key":"e_1_3_2_1_46_1","doi-asserted-by":"publisher","DOI":"10.1145\/3395363.3397361"},{"key":"e_1_3_2_1_47_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2018.2827379"},{"key":"e_1_3_2_1_48_1","doi-asserted-by":"publisher","DOI":"10.1145\/3510003.3510627"},{"key":"e_1_3_2_1_49_1","volume-title":"Asteria: Deep Learning-Based for Cross-Platform Binary Code Similarity Detection. In DSN. 13.","author":"Yang Shouguo","year":"2021","unstructured":"Shouguo Yang. 2021. Asteria: Deep Learning-Based for Cross-Platform Binary Code Similarity Detection. In DSN. 13."},{"key":"e_1_3_2_1_50_1","volume-title":"Asteria-Pro: Enhancing Deep-Learning Based Binary Code Similarity Detection by Incorporating Domain Knowledge. ArXiv abs\/2301.00511","author":"Yang Shouguo","year":"2023","unstructured":"Shouguo Yang, Chaopeng Dong, Yang Xiao, Yiran Cheng, Zhiqiang Shi, Zhi Li, and Limin Sun. 2023. Asteria-Pro: Enhancing Deep-Learning Based Binary Code Similarity Detection by Incorporating Domain Knowledge. ArXiv abs\/2301.00511 (2023)."},{"key":"e_1_3_2_1_51_1","doi-asserted-by":"publisher","DOI":"10.1609\/aaai.v34i01.5466"},{"key":"e_1_3_2_1_52_1","unstructured":"Zeping Yu Wenxin Zheng Jiaqi Wang Qiyi Tang Sen Nie and Shi Wu. 2020. CodeCMR: Cross-Modal Retrieval For Function-Level Binary Source Code Matching. In NeurIPS. 12."},{"key":"e_1_3_2_1_53_1","doi-asserted-by":"crossref","unstructured":"Zimu Yuan Muyue Feng Feng Li Gu Ban Yang Xiao Shiyang Wang Qian Tang He Su Chendong Yu Jiahuan Xu Aihua Piao Jingling Xuey and Wei Huo. 2019. B2SFinder: Detecting Open-Source Software Reuse in COTS Software. In ASE. 1038--1049.","DOI":"10.1109\/ASE.2019.00100"},{"key":"e_1_3_2_1_54_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICC.2018.8423015"},{"key":"e_1_3_2_1_55_1","doi-asserted-by":"publisher","DOI":"10.1145\/3533767.3534366"}],"event":{"name":"ICSE '24: IEEE\/ACM 46th International Conference on Software Engineering","location":"Lisbon Portugal","acronym":"ICSE '24","sponsor":["SIGSOFT ACM Special Interest Group on Software Engineering","IEEE CS","Faculty of Engineering of University of Porto"]},"container-title":["Proceedings of the IEEE\/ACM 46th International Conference on Software Engineering"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3597503.3623336","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3597503.3623336","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T17:48:45Z","timestamp":1750182525000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3597503.3623336"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,2,6]]},"references-count":55,"alternative-id":["10.1145\/3597503.3623336","10.1145\/3597503"],"URL":"https:\/\/doi.org\/10.1145\/3597503.3623336","relation":{},"subject":[],"published":{"date-parts":[[2024,2,6]]},"assertion":[{"value":"2024-02-06","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}