{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,7]],"date-time":"2026-07-07T15:49:43Z","timestamp":1783439383656,"version":"3.54.6"},"publisher-location":"New York, NY, USA","reference-count":86,"publisher":"ACM","license":[{"start":{"date-parts":[[2023,7,12]],"date-time":"2023-07-12T00:00:00Z","timestamp":1689120000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["61902169"],"award-info":[{"award-number":["61902169"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"name":"Guangdong Provincial Key Laboratory","award":["2020B121201001"],"award-info":[{"award-number":["2020B121201001"]}]},{"name":"Shenzhen Peacock Plan","award":["KQTD2016112514355531"],"award-info":[{"award-number":["KQTD2016112514355531"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2023,7,12]]},"DOI":"10.1145\/3597926.3598143","type":"proceedings-article","created":{"date-parts":[[2023,7,13]],"date-time":"2023-07-13T20:12:53Z","timestamp":1689279173000},"page":"1383-1395","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":30,"title":["Third-Party Library Dependency for Large-Scale SCA in the C\/C++ Ecosystem: How Far Are We?"],"prefix":"10.1145","author":[{"given":"Ling","family":"Jiang","sequence":"first","affiliation":[{"name":"Southern University of Science and Technology, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Hengchen","family":"Yuan","sequence":"additional","affiliation":[{"name":"Southern University of Science and Technology, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Qiyi","family":"Tang","sequence":"additional","affiliation":[{"name":"Tencent Security Keen Lab, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Sen","family":"Nie","sequence":"additional","affiliation":[{"name":"Tencent Security Keen Lab, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Shi","family":"Wu","sequence":"additional","affiliation":[{"name":"Tencent Security Keen Lab, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Yuqun","family":"Zhang","sequence":"additional","affiliation":[{"name":"Southern University of Science and Technology, China"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2023,7,13]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"2010. E2fsprogs: Ext2\/3\/4 Filesystem Utilities. https:\/\/e2fsprogs.sourceforge.net 2010. E2fsprogs: Ext2\/3\/4 Filesystem Utilities. https:\/\/e2fsprogs.sourceforge.net"},{"key":"e_1_3_2_1_2_1","unstructured":"2012. The DWARF Debugging Standard. https:\/\/dwarfstd.org 2012. The DWARF Debugging Standard. https:\/\/dwarfstd.org"},{"key":"e_1_3_2_1_3_1","unstructured":"2022. Apache Maven. https:\/\/maven.apache.org 2022. Apache Maven. https:\/\/maven.apache.org"},{"key":"e_1_3_2_1_4_1","unstructured":"2022. GCC the GNU Compiler Collection. https:\/\/gcc.gnu.org 2022. GCC the GNU Compiler Collection. https:\/\/gcc.gnu.org"},{"key":"e_1_3_2_1_5_1","unstructured":"2022. The GNU C Library (glibc). https:\/\/www.gnu.org\/software\/libc 2022. The GNU C Library (glibc). https:\/\/www.gnu.org\/software\/libc"},{"key":"e_1_3_2_1_6_1","unstructured":"2023. BinaryAI: binary file security analysis platform. https:\/\/binaryai.net 2023. BinaryAI: binary file security analysis platform. https:\/\/binaryai.net"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"crossref","first-page":"12","DOI":"10.1016\/j.socnet.2016.09.005","article-title":"Geodesic based centrality: Unifying the local and the global","volume":"49","author":"Agneessens Filip","year":"2017","unstructured":"Filip Agneessens , Stephen P Borgatti , and Martin G Everett . 2017 . Geodesic based centrality: Unifying the local and the global . Social Networks , 49 (2017), 12 \u2013 26 . Filip Agneessens, Stephen P Borgatti, and Martin G Everett. 2017. Geodesic based centrality: Unifying the local and the global. Social Networks, 49 (2017), 12\u201326.","journal-title":"Social Networks"},{"key":"e_1_3_2_1_8_1","volume-title":"2017 IEEE International Conference on Software Testing, Verification and Validation (ICST). 80\u201391","author":"Alqahtani Sultan S","year":"2017","unstructured":"Sultan S Alqahtani , Ellis E Eghan , and Juergen Rilling . 2017 . Recovering semantic traceability links between APIs and security vulnerabilities: An ontological modeling approach . In 2017 IEEE International Conference on Software Testing, Verification and Validation (ICST). 80\u201391 . Sultan S Alqahtani, Ellis E Eghan, and Juergen Rilling. 2017. Recovering semantic traceability links between APIs and security vulnerabilities: An ontological modeling approach. In 2017 IEEE International Conference on Software Testing, Verification and Validation (ICST). 80\u201391."},{"key":"e_1_3_2_1_9_1","volume-title":"Software Composition Analysis (SCA): Everything You Need to Know","author":"Pathak Amrita","year":"2022","unstructured":"Amrita Pathak . 2022. Software Composition Analysis (SCA): Everything You Need to Know in 2022 . https:\/\/geekflare.com\/software-composition-analysis Amrita Pathak. 2022. Software Composition Analysis (SCA): Everything You Need to Know in 2022. https:\/\/geekflare.com\/software-composition-analysis"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978333"},{"key":"e_1_3_2_1_11_1","unstructured":"Black Duck Hub. 2022. Synopsys Black Duck Binary Analysis. https:\/\/www.synopsys.com\/software-integrity\/security-testing\/software-composition-analysis\/binary-analysis.html Black Duck Hub. 2022. Synopsys Black Duck Binary Analysis. https:\/\/www.synopsys.com\/software-integrity\/security-testing\/software-composition-analysis\/binary-analysis.html"},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1002\/asi.21171"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134048"},{"key":"e_1_3_2_1_14_1","unstructured":"Elasticsearch. 2022. Path hierarchy tokenizer. https:\/\/www.elastic.co\/guide\/en\/elasticsearch\/reference\/current\/analysis-pathhierarchy-tokenizer.html Elasticsearch. 2022. Path hierarchy tokenizer. https:\/\/www.elastic.co\/guide\/en\/elasticsearch\/reference\/current\/analysis-pathhierarchy-tokenizer.html"},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1145\/3395363.3397362"},{"key":"e_1_3_2_1_16_1","volume-title":"2019 IEEE 26th International Conference on Software Analysis, Evolution and Reengineering (SANER). 564\u2013568","author":"Feng Muyue","year":"2019","unstructured":"Muyue Feng , Weixuan Mao , Zimu Yuan , Yang Xiao , Gu Ban , Wei Wang , Shiyang Wang , Qian Tang , Jiahuan Xu , and He Su . 2019 . Open-source license violations of binary software at large scale . In 2019 IEEE 26th International Conference on Software Analysis, Evolution and Reengineering (SANER). 564\u2013568 . Muyue Feng, Weixuan Mao, Zimu Yuan, Yang Xiao, Gu Ban, Wei Wang, Shiyang Wang, Qian Tang, Jiahuan Xu, and He Su. 2019. Open-source license violations of binary software at large scale. In 2019 IEEE 26th International Conference on Software Analysis, Evolution and Reengineering (SANER). 564\u2013568."},{"key":"e_1_3_2_1_17_1","volume-title":"International workshop on algorithms and models for the web-graph. 59\u201371","author":"Fortunato Santo","year":"2006","unstructured":"Santo Fortunato , Mari\u00e1n Bogu\u00f1\u00e1 , Alessandro Flammini , and Filippo Menczer . 2006 . Approximating PageRank from in-degree . In International workshop on algorithms and models for the web-graph. 59\u201371 . Santo Fortunato, Mari\u00e1n Bogu\u00f1\u00e1, Alessandro Flammini, and Filippo Menczer. 2006. Approximating PageRank from in-degree. In International workshop on algorithms and models for the web-graph. 59\u201371."},{"key":"e_1_3_2_1_18_1","volume-title":"Centrality in social networks conceptual clarification. Social networks, 1, 3","author":"Freeman Linton C","year":"1978","unstructured":"Linton C Freeman . 1978. Centrality in social networks conceptual clarification. Social networks, 1, 3 ( 1978 ), 215\u2013239. Linton C Freeman. 1978. Centrality in social networks conceptual clarification. Social networks, 1, 3 (1978), 215\u2013239."},{"key":"e_1_3_2_1_19_1","volume-title":"Matrix computations","author":"Golub Gene H","unstructured":"Gene H Golub and Charles F Van Loan . 2013. Matrix computations . JHU press . Gene H Golub and Charles F Van Loan. 2013. Matrix computations. JHU press."},{"key":"e_1_3_2_1_20_1","unstructured":"GrammaTech. 2021. Binary Software Composition Analysis Securing the Modern Software Stack. https:\/\/www.grammatech.com\/binary-software-composition-analysis-sca GrammaTech. 2021. Binary Software Composition Analysis Securing the Modern Software Stack. https:\/\/www.grammatech.com\/binary-software-composition-analysis-sca"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1145\/1985441.1985453"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1109\/TR.2020.3001918"},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP40000.2020.00063"},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2007.30"},{"key":"e_1_3_2_1_25_1","volume-title":"Proceedings of the 45th International Conference on Software Engineering.","author":"Jiang Ling","year":"2023","unstructured":"Ling Jiang , Hengchen Yuan , Mingyuan Wu , Lingming Zhang , and Yuqun Zhang . 2023 . Evaluating and Improving Hybrid Fuzzing . In Proceedings of the 45th International Conference on Software Engineering. Ling Jiang, Hengchen Yuan, Mingyuan Wu, Lingming Zhang, and Yuqun Zhang. 2023. Evaluating and Improving Hybrid Fuzzing. In Proceedings of the 45th International Conference on Software Engineering."},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.18653\/v1\/P17-1052"},{"key":"e_1_3_2_1_27_1","unstructured":"Julie Peterson. 2021. Software Composition Analysis Explained. https:\/\/www.mend.io\/resources\/blog\/software-composition-analysis Julie Peterson. 2021. Software Composition Analysis Explained. https:\/\/www.mend.io\/resources\/blog\/software-composition-analysis"},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1007\/BF02289026"},{"key":"e_1_3_2_1_29_1","first-page":"25","article-title":"Open Source Software Detection using Function-level Static Software Birthmark","volume":"4","author":"Kim Dongjin","year":"2014","unstructured":"Dongjin Kim , Seong-je Cho, Sangchul Han , Minkyu Park , and Ilsun You . 2014 . Open Source Software Detection using Function-level Static Software Birthmark .. J. Internet Serv. Inf. Secur. , 4 , 4 (2014), 25 \u2013 37 . Dongjin Kim, Seong-je Cho, Sangchul Han, Minkyu Park, and Ilsun You. 2014. Open Source Software Detection using Function-level Static Software Birthmark.. J. Internet Serv. Inf. Secur., 4, 4 (2014), 25\u201337.","journal-title":"J. Internet Serv. Inf. Secur."},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1145\/3533767.3534383"},{"key":"e_1_3_2_1_31_1","volume-title":"2017 IEEE Symposium on Security and Privacy (SP). 595\u2013614","author":"Kim Seulbae","year":"2017","unstructured":"Seulbae Kim , Seunghoon Woo , Heejo Lee , and Hakjoo Oh . 2017 . Vuddy: A scalable approach for vulnerable code clone discovery . In 2017 IEEE Symposium on Security and Privacy (SP). 595\u2013614 . Seulbae Kim, Seunghoon Woo, Heejo Lee, and Hakjoo Oh. 2017. Vuddy: A scalable approach for vulnerable code clone discovery. In 2017 IEEE Symposium on Security and Privacy (SP). 595\u2013614."},{"key":"e_1_3_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1145\/3077286.3077289"},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.jss.2021.111141"},{"key":"e_1_3_2_1_34_1","volume-title":"2017 IEEE International Conference on Software Maintenance and Evolution (ICSME). 249\u2013260","author":"Li Liuqing","year":"2017","unstructured":"Liuqing Li , He Feng , Wenjie Zhuang , Na Meng , and Barbara Ryder . 2017 . Cclearner: A deep learning-based clone detection approach . In 2017 IEEE International Conference on Software Maintenance and Evolution (ICSME). 249\u2013260 . Liuqing Li, He Feng, Wenjie Zhuang, Na Meng, and Barbara Ryder. 2017. Cclearner: A deep learning-based clone detection approach. In 2017 IEEE International Conference on Software Maintenance and Evolution (ICSME). 249\u2013260."},{"key":"e_1_3_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2017.38"},{"key":"e_1_3_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1145\/3106237.3106295"},{"key":"e_1_3_2_1_37_1","volume-title":"International Workshop on Algorithms and Models for the Web-Graph. 72\u201383","author":"Litvak Nelly","year":"2006","unstructured":"Nelly Litvak , Werner RW Scheinhardt , and Yana Volkovich . 2006 . Probabilistic relation between in-degree and pagerank . In International Workshop on Algorithms and Models for the Web-Graph. 72\u201383 . Nelly Litvak, Werner RW Scheinhardt, and Yana Volkovich. 2006. Probabilistic relation between in-degree and pagerank. In International Workshop on Algorithms and Models for the Web-Graph. 72\u201383."},{"key":"e_1_3_2_1_38_1","volume-title":"Proceedings of the ACM on Programming Languages, 1, OOPSLA","author":"Lopes Cristina V","year":"2017","unstructured":"Cristina V Lopes , Petr Maj , Pedro Martins , Vaibhav Saini , Di Yang , Jakub Zitny , Hitesh Sajnani , and Jan Vitek . 2017 . D\u00e9j\u00e0Vu: a map of code duplicates on GitHub . Proceedings of the ACM on Programming Languages, 1, OOPSLA (2017), 1\u201328. Cristina V Lopes, Petr Maj, Pedro Martins, Vaibhav Saini, Di Yang, Jakub Zitny, Hitesh Sajnani, and Jan Vitek. 2017. D\u00e9j\u00e0Vu: a map of code duplicates on GitHub. Proceedings of the ACM on Programming Languages, 1, OOPSLA (2017), 1\u201328."},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ipm.2007.06.006"},{"key":"e_1_3_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.1145\/2889160.2889178"},{"key":"e_1_3_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.1109\/FLOSS.2007.10"},{"key":"e_1_3_2_1_42_1","volume-title":"2019 34th IEEE\/ACM International Conference on Automated Software Engineering (ASE). 1026\u20131037","author":"Nafi Kawser Wazed","year":"2019","unstructured":"Kawser Wazed Nafi , Tonny Shekha Kar , Banani Roy , Chanchal K Roy , and Kevin A Schneider . 2019 . Clcdsa: cross language code clone detection using syntactical features and api documentation . In 2019 34th IEEE\/ACM International Conference on Automated Software Engineering (ASE). 1026\u20131037 . Kawser Wazed Nafi, Tonny Shekha Kar, Banani Roy, Chanchal K Roy, and Kevin A Schneider. 2019. Clcdsa: cross language code clone detection using syntactical features and api documentation. In 2019 34th IEEE\/ACM International Conference on Automated Software Engineering (ASE). 1026\u20131037."},{"key":"e_1_3_2_1_43_1","doi-asserted-by":"crossref","unstructured":"Mark E. J. Newman. 2018. Mathematics of networks. Oxford Scholarship Online. Mark E. J. Newman. 2018. Mathematics of networks. Oxford Scholarship Online.","DOI":"10.1093\/oso\/9780198805090.003.0006"},{"key":"e_1_3_2_1_44_1","doi-asserted-by":"publisher","DOI":"10.1109\/CTC.2013.9"},{"key":"e_1_3_2_1_45_1","unstructured":"OWASP. 2022. OWASP Dependency-Check. https:\/\/owasp.org\/www-project-dependency-check OWASP. 2022. OWASP Dependency-Check. https:\/\/owasp.org\/www-project-dependency-check"},{"key":"e_1_3_2_1_46_1","unstructured":"Lawrence Page Sergey Brin Rajeev Motwani and Terry Winograd. 1999. The PageRank Citation Ranking: Bringing Order to the Web.. Stanford InfoLab. http:\/\/ilpubs.stanford.edu:8090\/422\/ Previous number = SIDL-WP-1999-0120 Lawrence Page Sergey Brin Rajeev Motwani and Terry Winograd. 1999. The PageRank Citation Ranking: Bringing Order to the Web.. Stanford InfoLab. http:\/\/ilpubs.stanford.edu:8090\/422\/ Previous number = SIDL-WP-1999-0120"},{"key":"e_1_3_2_1_47_1","doi-asserted-by":"publisher","DOI":"10.1145\/859670.859678"},{"key":"e_1_3_2_1_48_1","doi-asserted-by":"crossref","unstructured":"David Reid Mahmoud Jahanshahi and Audris Mockus. 2022. The Extent of Orphan Vulnerabilities from Code Reuse in Open Source Software. David Reid Mahmoud Jahanshahi and Audris Mockus. 2022. The Extent of Orphan Vulnerabilities from Code Reuse in Open Source Software.","DOI":"10.1145\/3510003.3510216"},{"key":"e_1_3_2_1_49_1","unstructured":"Github Repository. 2011. zlib-v0.8 file of deflation algorithm. https:\/\/github.com\/madler\/zlib\/blob\/v0.8\/deflate.c Github Repository. 2011. zlib-v0.8 file of deflation algorithm. https:\/\/github.com\/madler\/zlib\/blob\/v0.8\/deflate.c"},{"key":"e_1_3_2_1_50_1","unstructured":"Github Repository. 2015. Independent JPEG Group\u2019s JPEG software. https:\/\/github.com\/LuaDist\/libjpeg.git Github Repository. 2015. Independent JPEG Group\u2019s JPEG software. https:\/\/github.com\/LuaDist\/libjpeg.git"},{"key":"e_1_3_2_1_51_1","unstructured":"Github Repository. 2022. ClickHouse: open-source column-oriented database management system. https:\/\/github.com\/ClickHouse\/ClickHouse Github Repository. 2022. ClickHouse: open-source column-oriented database management system. https:\/\/github.com\/ClickHouse\/ClickHouse"},{"key":"e_1_3_2_1_52_1","unstructured":"Github Repository. 2022. SQLiteC++ file of sqlite3. https:\/\/github.com\/SRombauts\/SQLiteCpp\/blob\/master\/sqlite3\/sqlite3.c Github Repository. 2022. SQLiteC++ file of sqlite3. https:\/\/github.com\/SRombauts\/SQLiteCpp\/blob\/master\/sqlite3\/sqlite3.c"},{"key":"e_1_3_2_1_53_1","unstructured":"Github Repository. 2022. SQLiteC++ with native C APIs of SQLite. https:\/\/github.com\/SRombauts\/SQLiteCpp\/tree\/master\/sqlite3 Github Repository. 2022. SQLiteC++ with native C APIs of SQLite. https:\/\/github.com\/SRombauts\/SQLiteCpp\/tree\/master\/sqlite3"},{"key":"e_1_3_2_1_54_1","unstructured":"Github Repository. 2022. ZLIB DATA COMPRESSION LIBRARY. https:\/\/github.com\/madler\/zlib Github Repository. 2022. ZLIB DATA COMPRESSION LIBRARY. https:\/\/github.com\/madler\/zlib"},{"key":"e_1_3_2_1_55_1","unstructured":"Github Repository. 2023. TPLite: TPL dependency scanner with origin detection and centrality analysis. https:\/\/github.com\/Tricker-z\/TPLite Github Repository. 2023. TPLite: TPL dependency scanner with origin detection and centrality analysis. https:\/\/github.com\/Tricker-z\/TPLite"},{"key":"e_1_3_2_1_56_1","volume-title":"Proceedings of the eighteenth international symposium on Software testing and analysis. 117\u2013128","author":"\u00f8rnsen Andreas S\u00e6","year":"2009","unstructured":"Andreas S\u00e6 bj \u00f8rnsen , Jeremiah Willcock , Thomas Panas , Daniel Quinlan , and Zhendong Su . 2009 . Detecting code clones in binary executables . In Proceedings of the eighteenth international symposium on Software testing and analysis. 117\u2013128 . Andreas S\u00e6 bj\u00f8rnsen, Jeremiah Willcock, Thomas Panas, Daniel Quinlan, and Zhendong Su. 2009. Detecting code clones in binary executables. In Proceedings of the eighteenth international symposium on Software testing and analysis. 117\u2013128."},{"key":"e_1_3_2_1_57_1","doi-asserted-by":"publisher","DOI":"10.1145\/2884781.2884877"},{"key":"e_1_3_2_1_58_1","unstructured":"Scantist. 2022. Scantist an open source management platform. https:\/\/scantist.io Scantist. 2022. Scantist an open source management platform. https:\/\/scantist.io"},{"key":"e_1_3_2_1_59_1","volume-title":"2017 24th Asia-Pacific Software Engineering Conference (APSEC). 654\u2013659","author":"Semura Yuichi","year":"2017","unstructured":"Yuichi Semura , Norihiro Yoshida , Eunjong Choi , and Katsuro Inoue . 2017 . CCFinderSW: Clone detection tool with flexible multilingual tokenization . In 2017 24th Asia-Pacific Software Engineering Conference (APSEC). 654\u2013659 . Yuichi Semura, Norihiro Yoshida, Eunjong Choi, and Katsuro Inoue. 2017. CCFinderSW: Clone detection tool with flexible multilingual tokenization. In 2017 24th Asia-Pacific Software Engineering Conference (APSEC). 654\u2013659."},{"key":"e_1_3_2_1_60_1","doi-asserted-by":"publisher","DOI":"10.17705\/1jais.00248"},{"key":"e_1_3_2_1_61_1","volume-title":"2020 IEEE 27th International Conference on Software Analysis, Evolution and Reengineering (SANER). 104\u2013115","author":"Tang Wei","year":"2020","unstructured":"Wei Tang , Ping Luo , Jialiang Fu , and Dan Zhang . 2020 . Libdx: A cross-platform and accurate system to detect third-party libraries in binary code . In 2020 IEEE 27th International Conference on Software Analysis, Evolution and Reengineering (SANER). 104\u2013115 . Wei Tang, Ping Luo, Jialiang Fu, and Dan Zhang. 2020. Libdx: A cross-platform and accurate system to detect third-party libraries in binary code. In 2020 IEEE 27th International Conference on Software Analysis, Evolution and Reengineering (SANER). 104\u2013115."},{"key":"e_1_3_2_1_62_1","doi-asserted-by":"crossref","unstructured":"Wei Tang Yanlin Wang Hongyu Zhang Shi Han Ping Luo and Dongmei Zhang. 2022. LibDB: An Effective and Efficient Framework for Detecting Third-Party Libraries in Binaries. arXiv preprint arXiv:2204.10232. Wei Tang Yanlin Wang Hongyu Zhang Shi Han Ping Luo and Dongmei Zhang. 2022. LibDB: An Effective and Efficient Framework for Detecting Third-Party Libraries in Binaries. arXiv preprint arXiv:2204.10232.","DOI":"10.1145\/3524842.3528442"},{"key":"e_1_3_2_1_63_1","doi-asserted-by":"publisher","DOI":"10.1145\/3551349.3560432"},{"key":"e_1_3_2_1_64_1","doi-asserted-by":"publisher","DOI":"10.1145\/2771783.2771795"},{"key":"e_1_3_2_1_65_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2018.2877612"},{"key":"e_1_3_2_1_66_1","doi-asserted-by":"crossref","unstructured":"Huihui Wei and Ming Li. 2017. Supervised Deep Features for Software Functional Clone Detection by Exploiting Lexical and Syntactical Information in Source Code.. In IJCAI. 3034\u20133040. Huihui Wei and Ming Li. 2017. Supervised Deep Features for Software Functional Clone Detection by Exploiting Lexical and Syntactical Information in Source Code.. In IJCAI. 3034\u20133040.","DOI":"10.24963\/ijcai.2017\/423"},{"key":"e_1_3_2_1_67_1","volume-title":"31st USENIX Security Symposium (USENIX Security 22)","author":"Woo Seunghoon","year":"2022","unstructured":"Seunghoon Woo , Hyunji Hong , Eunjin Choi , and Heejo Lee . 2022 . $MOVERY$: A Precise Approach for Modified Vulnerable Code Clone Discovery from Modified $Open-Source$ Software Components . In 31st USENIX Security Symposium (USENIX Security 22) . 3037\u20133053. Seunghoon Woo, Hyunji Hong, Eunjin Choi, and Heejo Lee. 2022. $MOVERY$: A Precise Approach for Modified Vulnerable Code Clone Discovery from Modified $Open-Source$ Software Components. In 31st USENIX Security Symposium (USENIX Security 22). 3037\u20133053."},{"key":"e_1_3_2_1_68_1","volume-title":"CENTRIS: A Precise and Scalable Approach for Identifying Modified Open-Source Software Reuse. In 2021 IEEE\/ACM 43rd International Conference on Software Engineering (ICSE). 860\u2013872","author":"Woo Seunghoon","year":"2021","unstructured":"Seunghoon Woo , Sunghan Park , Seulbae Kim , Heejo Lee , and Hakjoo Oh . 2021 . CENTRIS: A Precise and Scalable Approach for Identifying Modified Open-Source Software Reuse. In 2021 IEEE\/ACM 43rd International Conference on Software Engineering (ICSE). 860\u2013872 . Seunghoon Woo, Sunghan Park, Seulbae Kim, Heejo Lee, and Hakjoo Oh. 2021. CENTRIS: A Precise and Scalable Approach for Identifying Modified Open-Source Software Reuse. In 2021 IEEE\/ACM 43rd International Conference on Software Engineering (ICSE). 860\u2013872."},{"key":"e_1_3_2_1_69_1","volume-title":"Proceedings of the 44th International Conference on Software Engineering. 1634\u20131645","author":"Wu Mingyuan","year":"2022","unstructured":"Mingyuan Wu , Ling Jiang , Jiahong Xiang , Yanwei Huang , Heming Cui , Lingming Zhang , and Yuqun Zhang . 2022 . One fuzzing strategy to rule them all . In Proceedings of the 44th International Conference on Software Engineering. 1634\u20131645 . Mingyuan Wu, Ling Jiang, Jiahong Xiang, Yanwei Huang, Heming Cui, Lingming Zhang, and Yuqun Zhang. 2022. One fuzzing strategy to rule them all. In Proceedings of the 44th International Conference on Software Engineering. 1634\u20131645."},{"key":"e_1_3_2_1_70_1","doi-asserted-by":"publisher","DOI":"10.1145\/3510003.3510089"},{"key":"e_1_3_2_1_71_1","doi-asserted-by":"publisher","DOI":"10.1145\/3324884.3416562"},{"key":"e_1_3_2_1_72_1","doi-asserted-by":"publisher","DOI":"10.1016\/S0022-5193(03)00071-7"},{"key":"e_1_3_2_1_73_1","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134018"},{"key":"e_1_3_2_1_74_1","volume-title":"2021 IEEE\/ACM 43rd International Conference on Software Engineering (ICSE). 873\u2013884","author":"Xu Xi","year":"2021","unstructured":"Xi Xu , Qinghua Zheng , Zheng Yan , Ming Fan , Ang Jia , and Ting Liu . 2021 . Interpretation-enabled software reuse detection based on a multi-level birthmark model . In 2021 IEEE\/ACM 43rd International Conference on Software Engineering (ICSE). 873\u2013884 . Xi Xu, Qinghua Zheng, Zheng Yan, Ming Fan, Ang Jia, and Ting Liu. 2021. Interpretation-enabled software reuse detection based on a multi-level birthmark model. In 2021 IEEE\/ACM 43rd International Conference on Software Engineering (ICSE). 873\u2013884."},{"key":"e_1_3_2_1_75_1","volume-title":"Discovering author impact: A PageRank perspective. Information processing & management, 47, 1","author":"Yan Erjia","year":"2011","unstructured":"Erjia Yan and Ying Ding . 2011. Discovering author impact: A PageRank perspective. Information processing & management, 47, 1 ( 2011 ), 125\u2013134. Erjia Yan and Ying Ding. 2011. Discovering author impact: A PageRank perspective. Information processing & management, 47, 1 (2011), 125\u2013134."},{"key":"e_1_3_2_1_76_1","doi-asserted-by":"publisher","DOI":"10.1145\/3510003.3510627"},{"key":"e_1_3_2_1_77_1","first-page":"3872","article-title":"Codecmr: Cross-modal retrieval for function-level binary source code matching","volume":"33","author":"Yu Zeping","year":"2020","unstructured":"Zeping Yu , Wenxin Zheng , Jiaqi Wang , Qiyi Tang , Sen Nie , and Shi Wu . 2020 . Codecmr: Cross-modal retrieval for function-level binary source code matching . Advances in Neural Information Processing Systems , 33 (2020), 3872 \u2013 3883 . Zeping Yu, Wenxin Zheng, Jiaqi Wang, Qiyi Tang, Sen Nie, and Shi Wu. 2020. Codecmr: Cross-modal retrieval for function-level binary source code matching. Advances in Neural Information Processing Systems, 33 (2020), 3872\u20133883.","journal-title":"Advances in Neural Information Processing Systems"},{"key":"e_1_3_2_1_78_1","volume-title":"2019 34th IEEE\/ACM International Conference on Automated Software Engineering (ASE). 1038\u20131049","author":"Yuan Zimu","year":"2019","unstructured":"Zimu Yuan , Muyue Feng , Feng Li , Gu Ban , Yang Xiao , Shiyang Wang , Qian Tang , He Su , Chendong Yu , and Jiahuan Xu . 2019 . B2sfinder: detecting open-source software reuse in cots software . In 2019 34th IEEE\/ACM International Conference on Automated Software Engineering (ASE). 1038\u20131049 . Zimu Yuan, Muyue Feng, Feng Li, Gu Ban, Yang Xiao, Shiyang Wang, Qian Tang, He Su, Chendong Yu, and Jiahuan Xu. 2019. B2sfinder: detecting open-source software reuse in cots software. In 2019 34th IEEE\/ACM International Conference on Automated Software Engineering (ASE). 1038\u20131049."},{"key":"e_1_3_2_1_79_1","doi-asserted-by":"publisher","DOI":"10.1145\/3533767.3534390"},{"key":"e_1_3_2_1_80_1","volume-title":"2021 IEEE\/ACM 43rd International Conference on Software Engineering (ICSE). 1695\u20131707","author":"Zhan Xian","year":"2021","unstructured":"Xian Zhan , Lingling Fan , Sen Chen , Feng We , Tianming Liu , Xiapu Luo , and Yang Liu . 2021 . Atvhunter: Reliable version detection of third-party libraries for vulnerability identification in android applications . In 2021 IEEE\/ACM 43rd International Conference on Software Engineering (ICSE). 1695\u20131707 . Xian Zhan, Lingling Fan, Sen Chen, Feng We, Tianming Liu, Xiapu Luo, and Yang Liu. 2021. Atvhunter: Reliable version detection of third-party libraries for vulnerability identification in android applications. In 2021 IEEE\/ACM 43rd International Conference on Software Engineering (ICSE). 1695\u20131707."},{"key":"e_1_3_2_1_81_1","doi-asserted-by":"publisher","DOI":"10.1145\/3324884.3416582"},{"key":"e_1_3_2_1_82_1","volume-title":"2020 35th IEEE\/ACM International Conference on Automated Software Engineering (ASE). 1312\u20131315","author":"Zhang Dan","year":"2020","unstructured":"Dan Zhang , Ping Luo , Wei Tang , and Min Zhou . 2020 . OSLDetector: identifying open-source libraries through binary analysis . In 2020 35th IEEE\/ACM International Conference on Automated Software Engineering (ASE). 1312\u20131315 . Dan Zhang, Ping Luo, Wei Tang, and Min Zhou. 2020. OSLDetector: identifying open-source libraries through binary analysis. In 2020 35th IEEE\/ACM International Conference on Automated Software Engineering (ASE). 1312\u20131315."},{"key":"e_1_3_2_1_83_1","doi-asserted-by":"publisher","DOI":"10.1145\/3293882.3330563"},{"key":"e_1_3_2_1_84_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2019.00086"},{"key":"e_1_3_2_1_85_1","doi-asserted-by":"publisher","DOI":"10.1145\/3236024.3236068"},{"key":"e_1_3_2_1_86_1","volume-title":"2020 35th IEEE\/ACM International Conference on Automated Software Engineering (ASE). 931\u2013942","author":"Zou Yue","year":"2020","unstructured":"Yue Zou , Bihuan Ban , Yinxing Xue , and Yun Xu . 2020 . CCGraph: a PDG-based code clone detector with approximate graph matching . In 2020 35th IEEE\/ACM International Conference on Automated Software Engineering (ASE). 931\u2013942 . Yue Zou, Bihuan Ban, Yinxing Xue, and Yun Xu. 2020. CCGraph: a PDG-based code clone detector with approximate graph matching. In 2020 35th IEEE\/ACM International Conference on Automated Software Engineering (ASE). 931\u2013942."}],"event":{"name":"ISSTA '23: 32nd ACM SIGSOFT International Symposium on Software Testing and Analysis","location":"Seattle WA USA","acronym":"ISSTA '23","sponsor":["SIGSOFT ACM Special Interest Group on Software Engineering","AITO"]},"container-title":["Proceedings of the 32nd ACM SIGSOFT International Symposium on Software Testing and Analysis"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3597926.3598143","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3597926.3598143","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T16:37:59Z","timestamp":1750178279000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3597926.3598143"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,7,12]]},"references-count":86,"alternative-id":["10.1145\/3597926.3598143","10.1145\/3597926"],"URL":"https:\/\/doi.org\/10.1145\/3597926.3598143","relation":{},"subject":[],"published":{"date-parts":[[2023,7,12]]},"assertion":[{"value":"2023-07-13","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}