[{"user_id":"58331","_id":"62738","language":[{"iso":"eng"}],"keyword":["software vulnerabilities","vulnerability disclosure","security research"],"type":"conference","publication":"Proceedings of the 2025 ACM SIGSAC Conference on Computer and Communications Security","status":"public","abstract":[{"text":"Vulnerability disclosures are necessary to improve the security of our digital ecosystem. However, they can also be challenging for researchers: it may be hard to find out who the affected parties even are, or how to contact them. Researchers may be ignored or face adversity when disclosing vulnerabilities. We investigate researchers' experiences with vulnerability disclosures, extract best practices, and make recommendations for researchers, institutions that employ them, industry, and regulators to enable effective vulnerability disclosures.","lang":"eng"}],"date_created":"2025-12-02T08:48:00Z","author":[{"id":"99000","full_name":"Sri Ramulu, Harshini","orcid":"0000-0002-0000-5843","last_name":"Sri Ramulu","first_name":"Harshini"},{"first_name":"Anna Lena","id":"97843","full_name":"Rotthaler, Anna Lena","last_name":"Rotthaler"},{"last_name":"Rossel","orcid":"0000-0002-3182-4059","id":"58331","full_name":"Rossel, Jost","first_name":"Jost"},{"last_name":"Gonzalez Rodriguez","full_name":"Gonzalez Rodriguez, Rachel","first_name":"Rachel"},{"last_name":"Wermke","full_name":"Wermke, Dominik","first_name":"Dominik"},{"first_name":"Sascha","full_name":"Fahl, Sascha","last_name":"Fahl"},{"full_name":"Kohno, Tadayoshi","last_name":"Kohno","first_name":"Tadayoshi"},{"first_name":"Juraj","id":"83504","full_name":"Somorovsky, Juraj","last_name":"Somorovsky","orcid":"0000-0002-3593-7720"},{"id":"94636","full_name":"Acar, Yasemin","last_name":"Acar","first_name":"Yasemin"}],"date_updated":"2025-12-02T08:54:18Z","publisher":"ACM","oa":"1","main_file_link":[{"open_access":"1","url":"https://dl.acm.org/doi/10.1145/3719027.3760723"}],"doi":"10.1145/3719027.3760723","conference":{"start_date":"2025-10-13","end_date":"2025-10-17"},"title":"Poster: Computer Security Researchers' Experiences with Vulnerability Disclosures","publication_status":"published","citation":{"ama":"Sri Ramulu H, Rotthaler AL, Rossel J, et al. Poster: Computer Security Researchers’ Experiences with Vulnerability Disclosures. In: Proceedings of the 2025 ACM SIGSAC Conference on Computer and Communications Security. ACM; 2025. doi:10.1145/3719027.3760723","chicago":"Sri Ramulu, Harshini, Anna Lena Rotthaler, Jost Rossel, Rachel Gonzalez Rodriguez, Dominik Wermke, Sascha Fahl, Tadayoshi Kohno, Juraj Somorovsky, and Yasemin Acar. “Poster: Computer Security Researchers’ Experiences with Vulnerability Disclosures.” In Proceedings of the 2025 ACM SIGSAC Conference on Computer and Communications Security. ACM, 2025. https://doi.org/10.1145/3719027.3760723.","ieee":"H. Sri Ramulu et al., “Poster: Computer Security Researchers’ Experiences with Vulnerability Disclosures,” 2025, doi: 10.1145/3719027.3760723.","apa":"Sri Ramulu, H., Rotthaler, A. L., Rossel, J., Gonzalez Rodriguez, R., Wermke, D., Fahl, S., Kohno, T., Somorovsky, J., & Acar, Y. (2025). Poster: Computer Security Researchers’ Experiences with Vulnerability Disclosures. Proceedings of the 2025 ACM SIGSAC Conference on Computer and Communications Security. https://doi.org/10.1145/3719027.3760723","bibtex":"@inproceedings{Sri Ramulu_Rotthaler_Rossel_Gonzalez Rodriguez_Wermke_Fahl_Kohno_Somorovsky_Acar_2025, title={Poster: Computer Security Researchers’ Experiences with Vulnerability Disclosures}, DOI={10.1145/3719027.3760723}, booktitle={Proceedings of the 2025 ACM SIGSAC Conference on Computer and Communications Security}, publisher={ACM}, author={Sri Ramulu, Harshini and Rotthaler, Anna Lena and Rossel, Jost and Gonzalez Rodriguez, Rachel and Wermke, Dominik and Fahl, Sascha and Kohno, Tadayoshi and Somorovsky, Juraj and Acar, Yasemin}, year={2025} }","short":"H. Sri Ramulu, A.L. Rotthaler, J. Rossel, R. Gonzalez Rodriguez, D. Wermke, S. Fahl, T. Kohno, J. Somorovsky, Y. Acar, in: Proceedings of the 2025 ACM SIGSAC Conference on Computer and Communications Security, ACM, 2025.","mla":"Sri Ramulu, Harshini, et al. “Poster: Computer Security Researchers’ Experiences with Vulnerability Disclosures.” Proceedings of the 2025 ACM SIGSAC Conference on Computer and Communications Security, ACM, 2025, doi:10.1145/3719027.3760723."},"year":"2025"},{"volume":7,"date_created":"2023-07-11T06:23:54Z","author":[{"full_name":"Kaur, Mannat","last_name":"Kaur","first_name":"Mannat"},{"first_name":"Harshini","full_name":"Sri Ramulu, Harshini","id":"99000","last_name":"Sri Ramulu","orcid":"0000-0002-0000-5843"},{"last_name":"Acar","full_name":"Acar, Yasemin","first_name":"Yasemin"},{"last_name":"Fiebig","full_name":"Fiebig, Tobias","first_name":"Tobias"}],"date_updated":"2024-04-09T07:19:23Z","doi":"10.1145/3579617","title":"\"Oh yes! over-preparing for meetings is my jam :)\": The Gendered Experiences of System Administrators","issue":"CSCW1","intvolume":" 7","page":"1–38","citation":{"ama":"Kaur M, Sri Ramulu H, Acar Y, Fiebig T. “Oh yes! over-preparing for meetings is my jam :)”: The Gendered Experiences of System Administrators. Proc ACM Hum Comput Interact. 2023;7(CSCW1):1–38. doi:10.1145/3579617","chicago":"Kaur, Mannat, Harshini Sri Ramulu, Yasemin Acar, and Tobias Fiebig. “‘Oh Yes! Over-Preparing for Meetings Is My Jam :)’: The Gendered Experiences of System Administrators.” Proc. ACM Hum. Comput. Interact. 7, no. CSCW1 (2023): 1–38. https://doi.org/10.1145/3579617.","ieee":"M. Kaur, H. Sri Ramulu, Y. Acar, and T. Fiebig, “‘Oh yes! over-preparing for meetings is my jam :)’: The Gendered Experiences of System Administrators,” Proc. ACM Hum. Comput. Interact., vol. 7, no. CSCW1, pp. 1–38, 2023, doi: 10.1145/3579617.","apa":"Kaur, M., Sri Ramulu, H., Acar, Y., & Fiebig, T. (2023). “Oh yes! over-preparing for meetings is my jam :)”: The Gendered Experiences of System Administrators. Proc. ACM Hum. Comput. Interact., 7(CSCW1), 1–38. https://doi.org/10.1145/3579617","bibtex":"@article{Kaur_Sri Ramulu_Acar_Fiebig_2023, title={“Oh yes! over-preparing for meetings is my jam :)”: The Gendered Experiences of System Administrators}, volume={7}, DOI={10.1145/3579617}, number={CSCW1}, journal={Proc. ACM Hum. Comput. Interact.}, author={Kaur, Mannat and Sri Ramulu, Harshini and Acar, Yasemin and Fiebig, Tobias}, year={2023}, pages={1–38} }","mla":"Kaur, Mannat, et al. “‘Oh Yes! Over-Preparing for Meetings Is My Jam :)’: The Gendered Experiences of System Administrators.” Proc. ACM Hum. Comput. Interact., vol. 7, no. CSCW1, 2023, pp. 1–38, doi:10.1145/3579617.","short":"M. Kaur, H. Sri Ramulu, Y. Acar, T. Fiebig, Proc. ACM Hum. Comput. Interact. 7 (2023) 1–38."},"year":"2023","user_id":"15458","_id":"45984","language":[{"iso":"eng"}],"publication":"Proc. ACM Hum. Comput. Interact.","type":"journal_article","status":"public"},{"status":"public","type":"conference","publication":"44th IEEE Symposium on Security and Privacy, SP 2023, San Francisco, CA, USA, May 21-25, 2023","language":[{"iso":"eng"}],"_id":"47304","user_id":"14931","department":[{"_id":"34"},{"_id":"858"}],"year":"2023","citation":{"apa":"Wermke, D., Klemmer, J. H., Wöhler, N., Schmüser, J., Sri Ramulu, H., Acar, Y., & Fahl, S. (2023). “Always Contribute Back”: A Qualitative Study on Security Challenges of the Open Source Supply Chain. 44th IEEE Symposium on Security and Privacy, SP 2023, San Francisco, CA, USA, May 21-25, 2023, 1545–1560. https://doi.org/10.1109/SP46215.2023.10179378","ama":"Wermke D, Klemmer JH, Wöhler N, et al. “Always Contribute Back”: A Qualitative Study on Security Challenges of the Open Source Supply Chain. In: 44th IEEE Symposium on Security and Privacy, SP 2023, San Francisco, CA, USA, May 21-25, 2023. IEEE; 2023:1545–1560. doi:10.1109/SP46215.2023.10179378","bibtex":"@inproceedings{Wermke_Klemmer_Wöhler_Schmüser_Sri Ramulu_Acar_Fahl_2023, title={“Always Contribute Back”: A Qualitative Study on Security Challenges of the Open Source Supply Chain}, DOI={10.1109/SP46215.2023.10179378}, booktitle={44th IEEE Symposium on Security and Privacy, SP 2023, San Francisco, CA, USA, May 21-25, 2023}, publisher={IEEE}, author={Wermke, Dominik and Klemmer, Jan H. and Wöhler, Noah and Schmüser, Juliane and Sri Ramulu, Harshini and Acar, Yasemin and Fahl, Sascha}, year={2023}, pages={1545–1560} }","short":"D. Wermke, J.H. Klemmer, N. Wöhler, J. Schmüser, H. Sri Ramulu, Y. Acar, S. Fahl, in: 44th IEEE Symposium on Security and Privacy, SP 2023, San Francisco, CA, USA, May 21-25, 2023, IEEE, 2023, pp. 1545–1560.","mla":"Wermke, Dominik, et al. “‘Always Contribute Back’: A Qualitative Study on Security Challenges of the Open Source Supply Chain.” 44th IEEE Symposium on Security and Privacy, SP 2023, San Francisco, CA, USA, May 21-25, 2023, IEEE, 2023, pp. 1545–1560, doi:10.1109/SP46215.2023.10179378.","ieee":"D. Wermke et al., “‘Always Contribute Back’: A Qualitative Study on Security Challenges of the Open Source Supply Chain,” in 44th IEEE Symposium on Security and Privacy, SP 2023, San Francisco, CA, USA, May 21-25, 2023, 2023, pp. 1545–1560, doi: 10.1109/SP46215.2023.10179378.","chicago":"Wermke, Dominik, Jan H. Klemmer, Noah Wöhler, Juliane Schmüser, Harshini Sri Ramulu, Yasemin Acar, and Sascha Fahl. “‘Always Contribute Back’: A Qualitative Study on Security Challenges of the Open Source Supply Chain.” In 44th IEEE Symposium on Security and Privacy, SP 2023, San Francisco, CA, USA, May 21-25, 2023, 1545–1560. IEEE, 2023. https://doi.org/10.1109/SP46215.2023.10179378."},"page":"1545–1560","title":"\"Always Contribute Back\": A Qualitative Study on Security Challenges of the Open Source Supply Chain","doi":"10.1109/SP46215.2023.10179378","publisher":"IEEE","date_updated":"2024-06-05T12:37:40Z","author":[{"full_name":"Wermke, Dominik","last_name":"Wermke","first_name":"Dominik"},{"last_name":"Klemmer","full_name":"Klemmer, Jan H.","first_name":"Jan H."},{"last_name":"Wöhler","full_name":"Wöhler, Noah","first_name":"Noah"},{"first_name":"Juliane","last_name":"Schmüser","full_name":"Schmüser, Juliane"},{"full_name":"Sri Ramulu, Harshini","id":"99000","last_name":"Sri Ramulu","orcid":"0000-0002-0000-5843","first_name":"Harshini"},{"last_name":"Acar","id":"94636","full_name":"Acar, Yasemin","first_name":"Yasemin"},{"last_name":"Fahl","full_name":"Fahl, Sascha","first_name":"Sascha"}],"date_created":"2023-09-22T13:28:42Z"},{"language":[{"iso":"eng"}],"_id":"47312","department":[{"_id":"34"},{"_id":"858"}],"user_id":"14931","status":"public","publication":"Nineteenth Symposium on Usable Privacy and Security, SOUPS 2023, Anaheim, CA, USA, August 5-7, 2023","type":"conference","title":"Who Comes Up with this Stuff? Interviewing Authors to Understand How They Produce Security Advice","publisher":"USENIX Association","date_updated":"2024-06-05T12:50:02Z","date_created":"2023-09-22T13:45:47Z","author":[{"first_name":"Lorenzo","last_name":"Neil","full_name":"Neil, Lorenzo"},{"last_name":"Sri Ramulu","orcid":"0000-0002-0000-5843","full_name":"Sri Ramulu, Harshini","id":"99000","first_name":"Harshini"},{"full_name":"Acar, Yasemin","id":"94636","last_name":"Acar","first_name":"Yasemin"},{"last_name":"Reaves","full_name":"Reaves, Bradley","first_name":"Bradley"}],"year":"2023","page":"283–299","citation":{"ama":"Neil L, Sri Ramulu H, Acar Y, Reaves B. Who Comes Up with this Stuff? Interviewing Authors to Understand How They Produce Security Advice. In: Nineteenth Symposium on Usable Privacy and Security, SOUPS 2023, Anaheim, CA, USA, August 5-7, 2023. USENIX Association; 2023:283–299.","ieee":"L. Neil, H. Sri Ramulu, Y. Acar, and B. Reaves, “Who Comes Up with this Stuff? Interviewing Authors to Understand How They Produce Security Advice,” in Nineteenth Symposium on Usable Privacy and Security, SOUPS 2023, Anaheim, CA, USA, August 5-7, 2023, 2023, pp. 283–299.","chicago":"Neil, Lorenzo, Harshini Sri Ramulu, Yasemin Acar, and Bradley Reaves. “Who Comes Up with This Stuff? Interviewing Authors to Understand How They Produce Security Advice.” In Nineteenth Symposium on Usable Privacy and Security, SOUPS 2023, Anaheim, CA, USA, August 5-7, 2023, 283–299. USENIX Association, 2023.","apa":"Neil, L., Sri Ramulu, H., Acar, Y., & Reaves, B. (2023). Who Comes Up with this Stuff? Interviewing Authors to Understand How They Produce Security Advice. Nineteenth Symposium on Usable Privacy and Security, SOUPS 2023, Anaheim, CA, USA, August 5-7, 2023, 283–299.","bibtex":"@inproceedings{Neil_Sri Ramulu_Acar_Reaves_2023, title={Who Comes Up with this Stuff? Interviewing Authors to Understand How They Produce Security Advice}, booktitle={Nineteenth Symposium on Usable Privacy and Security, SOUPS 2023, Anaheim, CA, USA, August 5-7, 2023}, publisher={USENIX Association}, author={Neil, Lorenzo and Sri Ramulu, Harshini and Acar, Yasemin and Reaves, Bradley}, year={2023}, pages={283–299} }","mla":"Neil, Lorenzo, et al. “Who Comes Up with This Stuff? Interviewing Authors to Understand How They Produce Security Advice.” Nineteenth Symposium on Usable Privacy and Security, SOUPS 2023, Anaheim, CA, USA, August 5-7, 2023, USENIX Association, 2023, pp. 283–299.","short":"L. Neil, H. Sri Ramulu, Y. Acar, B. Reaves, in: Nineteenth Symposium on Usable Privacy and Security, SOUPS 2023, Anaheim, CA, USA, August 5-7, 2023, USENIX Association, 2023, pp. 283–299."}},{"publication":"2024 IEEE Symposium on Security and Privacy (SP)","type":"conference","status":"public","_id":"53366","department":[{"_id":"858"}],"user_id":"14931","language":[{"iso":"eng"}],"year":"2023","page":"4–4","citation":{"bibtex":"@inproceedings{Tran_Munyendo_Sri Ramulu_Rodriguez_Schnell_Sula_Simko_Acar_2023, title={Security, Privacy, and Data-sharing Trade-offs When Moving to the United States: Insights from a Qualitative Study}, booktitle={2024 IEEE Symposium on Security and Privacy (SP)}, author={Tran, Mindy and Munyendo, Collins W and Sri Ramulu, Harshini and Rodriguez, Rachel Gonzalez and Schnell, Luisa Ball and Sula, Cora and Simko, Lucy and Acar, Yasemin}, year={2023}, pages={4–4} }","mla":"Tran, Mindy, et al. “Security, Privacy, and Data-Sharing Trade-Offs When Moving to the United States: Insights from a Qualitative Study.” 2024 IEEE Symposium on Security and Privacy (SP), 2023, pp. 4–4.","short":"M. Tran, C.W. Munyendo, H. Sri Ramulu, R.G. Rodriguez, L.B. Schnell, C. Sula, L. Simko, Y. Acar, in: 2024 IEEE Symposium on Security and Privacy (SP), 2023, pp. 4–4.","apa":"Tran, M., Munyendo, C. W., Sri Ramulu, H., Rodriguez, R. G., Schnell, L. B., Sula, C., Simko, L., & Acar, Y. (2023). Security, Privacy, and Data-sharing Trade-offs When Moving to the United States: Insights from a Qualitative Study. 2024 IEEE Symposium on Security and Privacy (SP), 4–4.","ama":"Tran M, Munyendo CW, Sri Ramulu H, et al. Security, Privacy, and Data-sharing Trade-offs When Moving to the United States: Insights from a Qualitative Study. In: 2024 IEEE Symposium on Security and Privacy (SP). ; 2023:4–4.","ieee":"M. Tran et al., “Security, Privacy, and Data-sharing Trade-offs When Moving to the United States: Insights from a Qualitative Study,” in 2024 IEEE Symposium on Security and Privacy (SP), 2023, pp. 4–4.","chicago":"Tran, Mindy, Collins W Munyendo, Harshini Sri Ramulu, Rachel Gonzalez Rodriguez, Luisa Ball Schnell, Cora Sula, Lucy Simko, and Yasemin Acar. “Security, Privacy, and Data-Sharing Trade-Offs When Moving to the United States: Insights from a Qualitative Study.” In 2024 IEEE Symposium on Security and Privacy (SP), 4–4, 2023."},"date_updated":"2024-06-05T13:52:39Z","date_created":"2024-04-09T07:11:01Z","author":[{"first_name":"Mindy","last_name":"Tran","full_name":"Tran, Mindy","id":"99001"},{"last_name":"Munyendo","full_name":"Munyendo, Collins W","first_name":"Collins W"},{"first_name":"Harshini","orcid":"0000-0002-0000-5843","last_name":"Sri Ramulu","id":"99000","full_name":"Sri Ramulu, Harshini"},{"last_name":"Rodriguez","full_name":"Rodriguez, Rachel Gonzalez","first_name":"Rachel Gonzalez"},{"first_name":"Luisa Ball","full_name":"Schnell, Luisa Ball","last_name":"Schnell"},{"last_name":"Sula","full_name":"Sula, Cora","first_name":"Cora"},{"full_name":"Simko, Lucy","last_name":"Simko","first_name":"Lucy"},{"first_name":"Yasemin","id":"94636","full_name":"Acar, Yasemin","last_name":"Acar"}],"title":"Security, Privacy, and Data-sharing Trade-offs When Moving to the United States: Insights from a Qualitative Study"},{"department":[{"_id":"858"}],"user_id":"14931","_id":"53352","language":[{"iso":"eng"}],"publication":"Proc. ACM Hum. Comput. Interact.","type":"journal_article","status":"public","volume":7,"date_created":"2024-04-08T09:22:02Z","author":[{"first_name":"Lucy","full_name":"Simko, Lucy","last_name":"Simko"},{"last_name":"Sri Ramulu","orcid":"0000-0002-0000-5843","full_name":"Sri Ramulu, Harshini","id":"99000","first_name":"Harshini"},{"first_name":"Tadayoshi","last_name":"Kohno","full_name":"Kohno, Tadayoshi"},{"last_name":"Acar","full_name":"Acar, Yasemin","id":"94636","first_name":"Yasemin"}],"date_updated":"2024-06-05T13:53:38Z","doi":"10.1145/3610215","title":"The Use and Non-Use of Technology During Hurricanes","issue":"CSCW2","intvolume":" 7","page":"1–54","citation":{"ama":"Simko L, Sri Ramulu H, Kohno T, Acar Y. The Use and Non-Use of Technology During Hurricanes. Proc ACM Hum Comput Interact. 2023;7(CSCW2):1–54. doi:10.1145/3610215","chicago":"Simko, Lucy, Harshini Sri Ramulu, Tadayoshi Kohno, and Yasemin Acar. “The Use and Non-Use of Technology During Hurricanes.” Proc. ACM Hum. Comput. Interact. 7, no. CSCW2 (2023): 1–54. https://doi.org/10.1145/3610215.","ieee":"L. Simko, H. Sri Ramulu, T. Kohno, and Y. Acar, “The Use and Non-Use of Technology During Hurricanes,” Proc. ACM Hum. Comput. Interact., vol. 7, no. CSCW2, pp. 1–54, 2023, doi: 10.1145/3610215.","apa":"Simko, L., Sri Ramulu, H., Kohno, T., & Acar, Y. (2023). The Use and Non-Use of Technology During Hurricanes. Proc. ACM Hum. Comput. Interact., 7(CSCW2), 1–54. https://doi.org/10.1145/3610215","mla":"Simko, Lucy, et al. “The Use and Non-Use of Technology During Hurricanes.” Proc. ACM Hum. Comput. Interact., vol. 7, no. CSCW2, 2023, pp. 1–54, doi:10.1145/3610215.","short":"L. Simko, H. Sri Ramulu, T. Kohno, Y. Acar, Proc. ACM Hum. Comput. Interact. 7 (2023) 1–54.","bibtex":"@article{Simko_Sri Ramulu_Kohno_Acar_2023, title={The Use and Non-Use of Technology During Hurricanes}, volume={7}, DOI={10.1145/3610215}, number={CSCW2}, journal={Proc. ACM Hum. Comput. Interact.}, author={Simko, Lucy and Sri Ramulu, Harshini and Kohno, Tadayoshi and Acar, Yasemin}, year={2023}, pages={1–54} }"},"year":"2023"}]