| Bojanova, I., Galhardo, C. and Moshtari, S. (2021), Input/Output Check Bugs Taxonomy: Injection Errors in Spotlight, 2021 IEEE 31st International Symposium on Software Reliability Engineering (ISSRE), Wuhan, CN, [online], https://doi.org/10.1109/ISSREW53611.2021.00052, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=933193 |
| Bojanova, I. and Galhardo, C. (2021), Classifying Memory Bugs Using Bugs Framework Approach, 2021 IEEE 45th Annual Computers, Software, and Applications Conference (COMPSAC), All Virtual, MD, US, [online], https://doi.org/10.1109/COMPSAC51774.2021.00159, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=930038 |
| Gueye, A., Galhardo, C., Bojanova, I. and Mell, P. (2021), A Decade of Reoccurring Software Weaknesses, IEEE Security & Privacy, [online], https://doi.org/10.1109/MSEC.2021.3082757, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=932064 |
| Cardoso Galhardo, C., Mell, P. , Bojanova, I. and Gueye, A. (2020), Measurements of the Most Significant Software Security Weaknesses, Annual Computer Security Applications Conference (ACSAC), Austin, TX, US, [online], https://doi.org/10.1145/3427228.3427257, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=930459 |
| Bojanova, I., Yesha, Y. and Black, P., and Wu. Y. (2019), Information Exposure (IEX): A New Class in the Bugs Framework (BF), 2019 IEEE 43rd Annual Computer Software and Applications Conference (COMPSAC), Milwaukee, WI, US, [online], https://doi.org/10.1109/COMPSAC.2019.00086, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=927491 |
| Bojanova, I., Yesha, Y. and Black, P. (2018), Randomness Classes in Bugs Framework (BF): True-Random Number Bugs (TRN) and Pseudo-Random Number Bugs (PRN), 2018 IEEE 42nd Annual Computer Software and Applications Conference (COMPSAC), Tokyo, JP, [online], https://doi.org/10.1109/COMPSAC.2018.00110, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=925123 |
| Bojanova, I., Black, P. and Yesha, Y. (2017), Cryptography Classes in Bugs Framework (BF): Encryption Bugs (ENC), Verification Bugs (VRF), and Key Management Bugs (KMN), 2017 IEEE 28th Annual Software Technology Conference (STC), Gaithersburg, MD, US, [online], https://doi.org/10.1109/STC.2017.8234453, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=923663 |
| Black, P. and Bojanova, I. (2016), Defeating Buffer Overflow: One of the Most Trivial and Dangerous Bugs of All!, IEEE IT Professional, [online], https://doi.org/10.1109/MITP.2016.117, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=921507 |
| Bojanova, I., Black, P., Yesha, Y. and Wu, Y. (2016), The Bugs Framework (BF): A Structured Approach to Express Bugs, IEEE International Conference on Software Quality, Reliability & Security (QRS 2016), Viena, AT, [online], https://doi.org/10.1109/QRS.2016.29, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=920564 |
| Wu, Y., Bojanova, I., Yesha, Y. (2015), They Know Your Weaknesses - Do You?: Reintroducing Common Weakness Enumeration. Supply Chain Assurance. CrossTalk (The Journal of Defense Software Engineering), [online], https://web.archive.org/.../201509-Wu.pdf |