{"bundle_type":"pith_open_graph_bundle","bundle_version":"1.0","pith_number":"pith:2018:TZOHC75CSO7IKV26M7UBKQCVSK","short_pith_number":"pith:TZOHC75C","canonical_record":{"source":{"id":"1807.10435","kind":"arxiv","version":1},"metadata":{"license":"http://creativecommons.org/licenses/by-nc-sa/4.0/","primary_cat":"cs.CR","submitted_at":"2018-07-27T05:20:20Z","cross_cats_sorted":[],"title_canon_sha256":"f1421e10a8c33c0a703cae6e90fbb7778c34a96e425d4e6a25d0395dc9c110e1","abstract_canon_sha256":"836a6b46bc1082ae4b5222a440e773e62d6508d139f66f1a9c8fbf1310c14d38"},"schema_version":"1.0"},"canonical_sha256":"9e5c717fa293be85575e67e8154055929930cfff6ca7875d8ee3c94d27511754","source":{"kind":"arxiv","id":"1807.10435","version":1},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1807.10435","created_at":"2026-05-18T00:09:40Z"},{"alias_kind":"arxiv_version","alias_value":"1807.10435v1","created_at":"2026-05-18T00:09:40Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1807.10435","created_at":"2026-05-18T00:09:40Z"},{"alias_kind":"pith_short_12","alias_value":"TZOHC75CSO7I","created_at":"2026-05-18T12:32:56Z"},{"alias_kind":"pith_short_16","alias_value":"TZOHC75CSO7IKV26","created_at":"2026-05-18T12:32:56Z"},{"alias_kind":"pith_short_8","alias_value":"TZOHC75C","created_at":"2026-05-18T12:32:56Z"}],"events":[{"event_type":"record_created","subject_pith_number":"pith:2018:TZOHC75CSO7IKV26M7UBKQCVSK","target":"record","payload":{"canonical_record":{"source":{"id":"1807.10435","kind":"arxiv","version":1},"metadata":{"license":"http://creativecommons.org/licenses/by-nc-sa/4.0/","primary_cat":"cs.CR","submitted_at":"2018-07-27T05:20:20Z","cross_cats_sorted":[],"title_canon_sha256":"f1421e10a8c33c0a703cae6e90fbb7778c34a96e425d4e6a25d0395dc9c110e1","abstract_canon_sha256":"836a6b46bc1082ae4b5222a440e773e62d6508d139f66f1a9c8fbf1310c14d38"},"schema_version":"1.0"},"canonical_sha256":"9e5c717fa293be85575e67e8154055929930cfff6ca7875d8ee3c94d27511754","receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-05-18T00:09:40.635606Z","signature_b64":"LrclNjO62Jn39bELcVlIvEpci4uERSv3I8WsD3BLdCf/OZzgG2nAZnYy9+mARoYSlsumj1JUoiW/L1BPZlgRAA==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"9e5c717fa293be85575e67e8154055929930cfff6ca7875d8ee3c94d27511754","last_reissued_at":"2026-05-18T00:09:40.635009Z","signature_status":"signed_v1","first_computed_at":"2026-05-18T00:09:40.635009Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"source_kind":"arxiv","source_id":"1807.10435","source_version":1,"attestation_state":"computed"},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T00:09:40Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"/43MyDc2ojyV3SdzUgHntzTMjXMHfai7s2W/aKsDCkdS4YU3yo8fU7Co5YPscjT/mWYyL5Ak0vTbKpXR26JHCg==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-06-05T17:54:23.016254Z"},"content_sha256":"ad60ec25dad158093ad15a9583d59f23106263c03cd9ffe0ae11b1d2eaecb8e6","schema_version":"1.0","event_id":"sha256:ad60ec25dad158093ad15a9583d59f23106263c03cd9ffe0ae11b1d2eaecb8e6"},{"event_type":"graph_snapshot","subject_pith_number":"pith:2018:TZOHC75CSO7IKV26M7UBKQCVSK","target":"graph","payload":{"graph_snapshot":{"paper":{"title":"A Model for Android and iOS Applications Risk Calculation: CVSS Analysis and Enhancement Using Case-Control Studies","license":"http://creativecommons.org/licenses/by-nc-sa/4.0/","headline":"","cross_cats":[],"primary_cat":"cs.CR","authors_text":"Ali Dehghantanha, Gregory Epiphaniou, Milda Petraityte","submitted_at":"2018-07-27T05:20:20Z","abstract_excerpt":"Various researchers have shown that the Common Vulnerability Scoring System (CVSS) has many drawbacks and may not provide a precise view of the risks related to software vulnerabilities. However, many threat intelligence platforms and industry-wide standards are relying on CVSS score to evaluate cybersecurity compliance. This paper suggests several improvements to the calculation of Impact and Exploitability sub-scores within the CVSS, improve its accuracy and help threat intelligence analysts to focus on the key risks associated with their assets. We will apply our suggested improvements agai"},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1807.10435","kind":"arxiv","version":1},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"verdict_id":null},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T00:09:40Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"pQcftiFrqXRQsib3TBhr2kAA7tuZxZCpItrlA9tmdMx3FQr+QqFepfwv9VkWlcrPg8FRzwa1kiBQ5fHqiPU4AQ==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-06-05T17:54:23.016730Z"},"content_sha256":"537685a099c4e6ee3b7fae807c620dce89265569ce4eeff63848d9af9a540f42","schema_version":"1.0","event_id":"sha256:537685a099c4e6ee3b7fae807c620dce89265569ce4eeff63848d9af9a540f42"}],"timestamp_proofs":[],"mirror_hints":[{"mirror_type":"https","name":"Pith Resolver","base_url":"https://pith.science","bundle_url":"https://pith.science/pith/TZOHC75CSO7IKV26M7UBKQCVSK/bundle.json","state_url":"https://pith.science/pith/TZOHC75CSO7IKV26M7UBKQCVSK/state.json","well_known_bundle_url":"https://pith.science/.well-known/pith/TZOHC75CSO7IKV26M7UBKQCVSK/bundle.json","status":"primary"}],"public_keys":[{"key_id":"pith-v1-2026-05","algorithm":"ed25519","format":"raw","public_key_b64":"stVStoiQhXFxp4s2pdzPNoqVNBMojDU/fJ2db5S3CbM=","public_key_hex":"b2d552b68890857171a78b36a5dccf368a953413288c353f7c9d9d6f94b709b3","fingerprint_sha256_b32_first128bits":"RVFV5Z2OI2J3ZUO7ERDEBCYNKS","fingerprint_sha256_hex":"8d4b5ee74e4693bcd1df2446408b0d54","rotates_at":null,"url":"https://pith.science/pith-signing-key.json","notes":"Pith uses this Ed25519 key to sign canonical record SHA-256 digests. Verify with: ed25519_verify(public_key, message=canonical_sha256_bytes, signature=base64decode(signature_b64))."}],"merge_version":"pith-open-graph-merge-v1","built_at":"2026-06-05T17:54:23Z","links":{"resolver":"https://pith.science/pith/TZOHC75CSO7IKV26M7UBKQCVSK","bundle":"https://pith.science/pith/TZOHC75CSO7IKV26M7UBKQCVSK/bundle.json","state":"https://pith.science/pith/TZOHC75CSO7IKV26M7UBKQCVSK/state.json","well_known_bundle":"https://pith.science/.well-known/pith/TZOHC75CSO7IKV26M7UBKQCVSK/bundle.json"},"state":{"state_type":"pith_open_graph_state","state_version":"1.0","pith_number":"pith:2018:TZOHC75CSO7IKV26M7UBKQCVSK","merge_version":"pith-open-graph-merge-v1","event_count":2,"valid_event_count":2,"invalid_event_count":0,"equivocation_count":0,"current":{"canonical_record":{"metadata":{"abstract_canon_sha256":"836a6b46bc1082ae4b5222a440e773e62d6508d139f66f1a9c8fbf1310c14d38","cross_cats_sorted":[],"license":"http://creativecommons.org/licenses/by-nc-sa/4.0/","primary_cat":"cs.CR","submitted_at":"2018-07-27T05:20:20Z","title_canon_sha256":"f1421e10a8c33c0a703cae6e90fbb7778c34a96e425d4e6a25d0395dc9c110e1"},"schema_version":"1.0","source":{"id":"1807.10435","kind":"arxiv","version":1}},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1807.10435","created_at":"2026-05-18T00:09:40Z"},{"alias_kind":"arxiv_version","alias_value":"1807.10435v1","created_at":"2026-05-18T00:09:40Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1807.10435","created_at":"2026-05-18T00:09:40Z"},{"alias_kind":"pith_short_12","alias_value":"TZOHC75CSO7I","created_at":"2026-05-18T12:32:56Z"},{"alias_kind":"pith_short_16","alias_value":"TZOHC75CSO7IKV26","created_at":"2026-05-18T12:32:56Z"},{"alias_kind":"pith_short_8","alias_value":"TZOHC75C","created_at":"2026-05-18T12:32:56Z"}],"graph_snapshots":[{"event_id":"sha256:537685a099c4e6ee3b7fae807c620dce89265569ce4eeff63848d9af9a540f42","target":"graph","created_at":"2026-05-18T00:09:40Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"graph_snapshot":{"author_claims":{"count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","strong_count":0},"builder_version":"pith-number-builder-2026-05-17-v1","claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"paper":{"abstract_excerpt":"Various researchers have shown that the Common Vulnerability Scoring System (CVSS) has many drawbacks and may not provide a precise view of the risks related to software vulnerabilities. However, many threat intelligence platforms and industry-wide standards are relying on CVSS score to evaluate cybersecurity compliance. This paper suggests several improvements to the calculation of Impact and Exploitability sub-scores within the CVSS, improve its accuracy and help threat intelligence analysts to focus on the key risks associated with their assets. We will apply our suggested improvements agai","authors_text":"Ali Dehghantanha, Gregory Epiphaniou, Milda Petraityte","cross_cats":[],"headline":"","license":"http://creativecommons.org/licenses/by-nc-sa/4.0/","primary_cat":"cs.CR","submitted_at":"2018-07-27T05:20:20Z","title":"A Model for Android and iOS Applications Risk Calculation: CVSS Analysis and Enhancement Using Case-Control Studies"},"references":{"count":0,"internal_anchors":0,"resolved_work":0,"sample":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1807.10435","kind":"arxiv","version":1},"verdict":{"created_at":null,"id":null,"model_set":{},"one_line_summary":"","pipeline_version":null,"pith_extraction_headline":"","strongest_claim":"","weakest_assumption":""}},"verdict_id":null}}],"author_attestations":[],"timestamp_anchors":[],"storage_attestations":[],"citation_signatures":[],"replication_records":[],"corrections":[],"mirror_hints":[],"record_created":{"event_id":"sha256:ad60ec25dad158093ad15a9583d59f23106263c03cd9ffe0ae11b1d2eaecb8e6","target":"record","created_at":"2026-05-18T00:09:40Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"attestation_state":"computed","canonical_record":{"metadata":{"abstract_canon_sha256":"836a6b46bc1082ae4b5222a440e773e62d6508d139f66f1a9c8fbf1310c14d38","cross_cats_sorted":[],"license":"http://creativecommons.org/licenses/by-nc-sa/4.0/","primary_cat":"cs.CR","submitted_at":"2018-07-27T05:20:20Z","title_canon_sha256":"f1421e10a8c33c0a703cae6e90fbb7778c34a96e425d4e6a25d0395dc9c110e1"},"schema_version":"1.0","source":{"id":"1807.10435","kind":"arxiv","version":1}},"canonical_sha256":"9e5c717fa293be85575e67e8154055929930cfff6ca7875d8ee3c94d27511754","receipt":{"algorithm":"ed25519","builder_version":"pith-number-builder-2026-05-17-v1","canonical_sha256":"9e5c717fa293be85575e67e8154055929930cfff6ca7875d8ee3c94d27511754","first_computed_at":"2026-05-18T00:09:40.635009Z","key_id":"pith-v1-2026-05","kind":"pith_receipt","last_reissued_at":"2026-05-18T00:09:40.635009Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","receipt_version":"0.3","signature_b64":"LrclNjO62Jn39bELcVlIvEpci4uERSv3I8WsD3BLdCf/OZzgG2nAZnYy9+mARoYSlsumj1JUoiW/L1BPZlgRAA==","signature_status":"signed_v1","signed_at":"2026-05-18T00:09:40.635606Z","signed_message":"canonical_sha256_bytes"},"source_id":"1807.10435","source_kind":"arxiv","source_version":1}}},"equivocations":[],"invalid_events":[],"applied_event_ids":["sha256:ad60ec25dad158093ad15a9583d59f23106263c03cd9ffe0ae11b1d2eaecb8e6","sha256:537685a099c4e6ee3b7fae807c620dce89265569ce4eeff63848d9af9a540f42"],"state_sha256":"49471471d0e0a683fd39f0034008a161e3393db00ee71c5a099fa2614bfd53c6"},"bundle_signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"DOmDVE8h631UPETkPnSBDJEQYjMwGoU+LXRUuaIhHdLz4E5blTUrU0kZ5aiFIqOoogvs3JYFnlz3GjsSbl2jDQ==","signed_message":"bundle_sha256_bytes","signed_at":"2026-06-05T17:54:23.019769Z","bundle_sha256":"7613e93a579e0a069979d4a48687d56196a8a077b2a6c157dbdd39615f531846"}}