{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,12,22]],"date-time":"2025-12-22T22:27:40Z","timestamp":1766442460845,"version":"3.48.0"},"publisher-location":"New York, NY, USA","reference-count":18,"publisher":"ACM","license":[{"start":{"date-parts":[[2026,11,22]],"date-time":"2026-11-22T00:00:00Z","timestamp":1795305600000},"content-version":"vor","delay-in-days":368,"URL":"http:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100000001","name":"NSF (National Science Foundation)","doi-asserted-by":"publisher","award":["2206865 & CNS-2207008"],"award-info":[{"award-number":["2206865 & CNS-2207008"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2025,11,19]]},"DOI":"10.1145\/3719027.3760723","type":"proceedings-article","created":{"date-parts":[[2025,11,22]],"date-time":"2025-11-22T23:37:25Z","timestamp":1763854645000},"page":"4779-4781","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":0,"title":["Poster: Computer Security Researchers' Experiences with Vulnerability Disclosures"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-0000-5843","authenticated-orcid":false,"given":"Harshini","family":"Sri Ramulu","sequence":"first","affiliation":[{"name":"Paderborn University, Paderborn, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0009-7785-7110","authenticated-orcid":false,"given":"Anna Lena","family":"Rotthaler","sequence":"additional","affiliation":[{"name":"Paderborn University, Paderborn, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3182-4059","authenticated-orcid":false,"given":"Jost","family":"Rossel","sequence":"additional","affiliation":[{"name":"Paderborn University, Paderborn, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0004-9800-4006","authenticated-orcid":false,"given":"Rachel","family":"Gonzalez Rodriguez","sequence":"additional","affiliation":[{"name":"Paderborn University, Paderborn, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0008-2921-1254","authenticated-orcid":false,"given":"Dominik","family":"Wermke","sequence":"additional","affiliation":[{"name":"North Carolina State University, Raleigh, North Carolina, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5644-3316","authenticated-orcid":false,"given":"Sascha","family":"Fahl","sequence":"additional","affiliation":[{"name":"CISPA Helmholtz Center for Information Security, Hannover, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4899-226X","authenticated-orcid":false,"given":"Tadayoshi","family":"Kohno","sequence":"additional","affiliation":[{"name":"Georgetown University, Washington, D.C., USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3593-7720","authenticated-orcid":false,"given":"Juraj","family":"Somorovsky","sequence":"additional","affiliation":[{"name":"Paderborn University, Paderborn, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-7167-7383","authenticated-orcid":false,"given":"Yasemin","family":"Acar","sequence":"additional","affiliation":[{"name":"Paderborn University, Paderborn, Germany and The George Washington University, Washington D.C., USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2025,11,22]]},"reference":[{"key":"e_1_3_2_1_1_1","first-page":"2275","volume-title":"32nd USENIX Security Symposium (USENIX Security 23)","author":"Akgul Omer","year":"2023","unstructured":"Omer Akgul, Taha Eghtesad, Amit Elazari, Omprakash Gnawali, Jens Grossklags, Michelle L Mazurek, Daniel Votipka, and Aron Laszka. 2023. Bug {Hunters'} Perspectives on the Challenges and Benefits of the Bug Bounty Ecosystem. In 32nd USENIX Security Symposium (USENIX Security 23). 2275-2291."},{"key":"e_1_3_2_1_2_1","volume-title":"Proceedings of the 15th ACM\/IEEE international symposium on empirical software engineering and measurement (ESEM). 1-12","author":"Alexopoulos Nikolaos","year":"2021","unstructured":"Nikolaos Alexopoulos, Andrew Meneely, Dorian Arnouts, and Max M\u00fchlh\u00e4user. 2021. Who are vulnerability reporters? a large-scale empirical study on floss. In Proceedings of the 15th ACM\/IEEE international symposium on empirical software engineering and measurement (ESEM). 1-12."},{"key":"e_1_3_2_1_3_1","volume-title":"Proceedings of the International Conference on Security and Management (SAM). The Steering Committee of The World Congress in Computer Science, Computer \u2026, 1.","author":"Algarni Abdullah M","year":"2013","unstructured":"Abdullah M Algarni and Yashwant K Malaiya. 2013. Most successful vulnerability discoverers: Motivation and methods. In Proceedings of the International Conference on Security and Management (SAM). The Steering Committee of The World Congress in Computer Science, Computer \u2026, 1."},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1145\/3543507.3583352"},{"key":"e_1_3_2_1_5_1","volume-title":"Bounty everything: Hackers and the making of the global bug marketplace. Available at SSRN 4009275","author":"Ellis Ryan","year":"2022","unstructured":"Ryan Ellis and Yuan Stevens. 2022. Bounty everything: Hackers and the making of the global bug marketplace. Available at SSRN 4009275 (2022)."},{"key":"e_1_3_2_1_6_1","first-page":"273","volume-title":"22nd USENIX Security Symposium (USENIX Security 13)","author":"Finifter Matthew","year":"2013","unstructured":"Matthew Finifter, Devdatta Akhawe, and David Wagner. 2013. An empirical study of vulnerability rewards programs. In 22nd USENIX Security Symposium (USENIX Security 13). 273-288."},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1145\/3091478.3091517"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP46215.2023.10179478"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/3339252.3341495"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-55958-8_5"},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1093\/cybsec\/tyx008"},{"key":"e_1_3_2_1_12_1","volume-title":"Bug bounty programs for cybersecurity: Practices, issues, and recommendations","author":"Malladi Suresh S","year":"2019","unstructured":"Suresh S Malladi and Hemang C Subramanian. 2019. Bug bounty programs for cybersecurity: Practices, issues, and recommendations. IEEE software, Vol. 37, 1 (2019), 31-39."},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2007.180"},{"key":"e_1_3_2_1_14_1","unstructured":"NIST. 2025. National Vulnerability Database. https:\/\/nvd.nist.gov\/vuln\/search#\/nvd\/home?resultType=statistics. Accessed: 2025-08-12."},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2018.00003"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP40001.2021.00092"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1145\/1368088.1368112"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1145\/2810103.2813704"}],"event":{"name":"CCS '25: ACM SIGSAC Conference on Computer and Communications Security","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"],"location":"Taipei Taiwan","acronym":"CCS '25"},"container-title":["Proceedings of the 2025 ACM SIGSAC Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3719027.3760723","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3719027.3760723","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,12,22]],"date-time":"2025-12-22T22:25:58Z","timestamp":1766442358000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3719027.3760723"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,11,19]]},"references-count":18,"alternative-id":["10.1145\/3719027.3760723","10.1145\/3719027"],"URL":"https:\/\/doi.org\/10.1145\/3719027.3760723","relation":{},"subject":[],"published":{"date-parts":[[2025,11,19]]},"assertion":[{"value":"2025-11-22","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}