{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,13]],"date-time":"2026-05-13T21:49:43Z","timestamp":1778708983632,"version":"3.51.4"},"publisher-location":"New York, NY, USA","reference-count":30,"publisher":"ACM","license":[{"start":{"date-parts":[[2024,10,24]],"date-time":"2024-10-24T00:00:00Z","timestamp":1729728000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2024,10,24]]},"DOI":"10.1145\/3674805.3695408","type":"proceedings-article","created":{"date-parts":[[2024,10,15]],"date-time":"2024-10-15T18:39:24Z","timestamp":1729017564000},"page":"582-588","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":7,"title":["ChatGPT\u2019s Potential in Cryptography Misuse Detection: A Comparative Analysis with Static Analysis Tools"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0009-0000-7563-4196","authenticated-orcid":false,"given":"Ehsan","family":"Firouzi","sequence":"first","affiliation":[{"name":"TU Clausthal, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-1986-9668","authenticated-orcid":false,"given":"Mohammad","family":"Ghafari","sequence":"additional","affiliation":[{"name":"TU Clausthal, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0009-1332-2301","authenticated-orcid":false,"given":"Mike","family":"Ebrahimi","sequence":"additional","affiliation":[{"name":"CUBE Global, Australia"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2024,10,24]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","unstructured":"Sharmin Afrose Sazzadur Rahaman and Danfeng Yao. 2019. CryptoAPI-Bench: A Comprehensive Benchmark on Java Cryptographic API Misuses. In 2019 IEEE Cybersecurity Development (SecDev). 49\u201361. https:\/\/doi.org\/10.1109\/SecDev.2019.00017","DOI":"10.1109\/SecDev.2019.00017"},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2022.3154717"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1145\/2901739.2903506"},{"key":"e_1_3_2_1_4_1","volume-title":"Why Crypto-detectors Fail: A Systematic Evaluation of Cryptographic Misuse Detection Techniques. In 2022 IEEE Symposium on Security and Privacy (SP).","author":"Ami Amit\u00a0Seal","year":"2022","unstructured":"Amit\u00a0Seal Ami, Nathan Cooper, Kaushal Kafle, Kevin Moran, Denys Poshyvanyk, and Adwait Nadkarni. 2022. Why Crypto-detectors Fail: A Systematic Evaluation of Cryptographic Misuse Detection Techniques. In 2022 IEEE Symposium on Security and Privacy (SP)."},{"key":"e_1_3_2_1_5_1","volume-title":"Advances in Cryptology \u2014 CRYPTO \u201998","author":"Bleichenbacher Daniel","unstructured":"Daniel Bleichenbacher. 1998. Chosen ciphertext attacks against protocols based on the RSA encryption standard PKCS #1. In Advances in Cryptology \u2014 CRYPTO \u201998, Hugo Krawczyk (Ed.). Springer Berlin Heidelberg, Berlin, Heidelberg, 1\u201312."},{"key":"e_1_3_2_1_6_1","volume-title":"Prompt engineering for ChatGPT: a quick guide to techniques, tips, and best practices. Authorea Preprints","author":"Ekin Sabit","year":"2023","unstructured":"Sabit Ekin. 2023. Prompt engineering for ChatGPT: a quick guide to techniques, tips, and best practices. Authorea Preprints (2023)."},{"key":"e_1_3_2_1_7_1","unstructured":"Find security bugs. 2024. Find security bugs. https:\/\/find-secbugs.github.io\/. [Online]."},{"key":"e_1_3_2_1_8_1","volume-title":"Time to separate from StackOverflow and match with ChatGPT for encryption. Journal of Systems and Software","author":"Firouzi Ehsan","year":"2024","unstructured":"Ehsan Firouzi and Mohammad Ghafari. 2024. Time to separate from StackOverflow and match with ChatGPT for encryption. Journal of Systems and Software (2024), 112135."},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/3674805.3695405"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/QRS54544.2021.00013"},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1109\/ESEM.2019.8870184"},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1145\/3382494.3422166"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSME52107.2021.00076"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/3613904.3642596"},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSME52107.2021.00042"},{"key":"e_1_3_2_1_16_1","volume-title":"LLM Security Guard for Code. In The 28th International Conference on Evaluation and Assessment in Software Engineering (EASE)","author":"Kavian Arya","year":"2024","unstructured":"Arya Kavian, Mohammad Mehdi\u00a0Pourhashem Kallehbasti, Sajjad Kazemi, Ehsan Firouzi, and Mohammad Ghafari. 2024. LLM Security Guard for Code. In The 28th International Conference on Evaluation and Assessment in Software Engineering (EASE) (Salerno, Italy)."},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1145\/3368826.3377905"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1109\/ASE.2017.8115707"},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1145\/2884781.2884790"},{"key":"e_1_3_2_1_20_1","unstructured":"OWASP Benchmark. 2024. OWASP Benchmark. https:\/\/owasp.org\/www-project-benchmark\/. [Online]."},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP40001.2021.00010"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP40001.2021.00010"},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1145\/3319535.3345659"},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1145\/3319535.3345659"},{"key":"e_1_3_2_1_25_1","unstructured":"Michael Schlichtig Anna-Katharina Wickert Stefan Kr\u00fcger Eric Bodden and Mira Mezini. 2022. CamBench \u2013 Cryptographic API Misuse Detection Tool Benchmark Suite. arxiv:2204.06447\u00a0[cs.SE]"},{"key":"e_1_3_2_1_26_1","volume-title":"Cataloging prompt patterns to enhance the discipline of prompt engineering. URL: https:\/\/www. dre. vanderbilt. edu\/ schmidt\/PDF\/ADA_Europe_Position_Paper. pdf [accessed 2023-09-25]","author":"Schmidt C","year":"2023","unstructured":"Douglas\u00a0C Schmidt, Jesse Spencer-Smith, Quchen Fu, and Jules White. 2023. Cataloging prompt patterns to enhance the discipline of prompt engineering. URL: https:\/\/www. dre. vanderbilt. edu\/ schmidt\/PDF\/ADA_Europe_Position_Paper. pdf [accessed 2023-09-25] (2023)."},{"key":"e_1_3_2_1_27_1","unstructured":"Catherine Tony Nicol\u00e1s E.\u00a0D\u00edaz Ferreyra Markus Mutas Salem Dhiff and Riccardo Scandariato. 2024. Prompting Techniques for Secure Code Generation: A Systematic Investigation. arxiv:2407.07064\u00a0[cs.SE] https:\/\/arxiv.org\/abs\/2407.07064"},{"key":"e_1_3_2_1_28_1","volume-title":"A prompt pattern catalog to enhance prompt engineering with chatgpt. arXiv preprint arXiv:2302.11382","author":"White Jules","year":"2023","unstructured":"Jules White, Quchen Fu, Sam Hays, Michael Sandborn, Carlos Olea, Henry Gilbert, Ashraf Elnashar, Jesse Spencer-Smith, and Douglas\u00a0C Schmidt. 2023. A prompt pattern catalog to enhance prompt engineering with chatgpt. arXiv preprint arXiv:2302.11382 (2023)."},{"key":"e_1_3_2_1_29_1","volume-title":"Generative AI for Effective Software Development","author":"White Jules","unstructured":"Jules White, Sam Hays, Quchen Fu, Jesse Spencer-Smith, and Douglas\u00a0C Schmidt. 2024. Chatgpt prompt patterns for improving code quality, refactoring, requirements elicitation, and software design. In Generative AI for Effective Software Development. Springer, 71\u2013108."},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2022.3150302"}],"event":{"name":"ESEM '24: ACM \/ IEEE International Symposium on Empirical Software Engineering and Measurement","location":"Barcelona Spain","acronym":"ESEM '24","sponsor":["SIGSOFT ACM Special Interest Group on Software Engineering"]},"container-title":["Proceedings of the 18th ACM\/IEEE International Symposium on Empirical Software Engineering and Measurement"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3674805.3695408","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3674805.3695408","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,8,22]],"date-time":"2025-08-22T12:56:51Z","timestamp":1755867411000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3674805.3695408"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,10,24]]},"references-count":30,"alternative-id":["10.1145\/3674805.3695408","10.1145\/3674805"],"URL":"https:\/\/doi.org\/10.1145\/3674805.3695408","relation":{},"subject":[],"published":{"date-parts":[[2024,10,24]]},"assertion":[{"value":"2024-10-24","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}