Abstract
This paper will identify a fatal flaw in the current Digital Object Identifier (DOI) management policy regarding software reproducibility validation with service providers. The fatal flaw can cause security breaches for individuals and organizations over the Internet. Under the current DOI policy, once software code with known security vulnerability is published with unique DOI, no one can modify or delete it. This paper will also address how the DOI software policy should be fixed or updated for deleting harmful software DOI numbers. We must be aware of this fatal flaw on the DOI management policy for preventing security breaches.
This is a preview of subscription content, log in via an institution to check access.
Data Availability
Not applicable.
References
Amaral, O. B., & Neves, K. (2021). Reproducibility: Expect less of the scientific paper. Nature, 597(7876), 329–331. https://doi.org/10.1038/d41586-021-02486-7. PMID: 34526702.
Baker, M. (2016). 1,500 scientists lift the lid on reproducibility. Nature, 533, 452–454. https://doi.org/10.1038/533452a
Editorial. (2018). Easing the burden of code review. Nature Methods, 15, 641. https://doi.org/10.1038/s41592-018-0137-5
Editorial. (2019a). Changing coding culture. Nature Biotechnol, 37, 485. https://doi.org/10.1038/s41587-019-0136-9
Editorial. (2019b). Sharing high expectations. Nature Machine Intelligence, 1, 329. https://doi.org/10.1038/s42256-019-0092-6
IBM. (2022). How much does a data breach cost in 2022?. https://www.ibm.com/security/data-breach
Jeffrey, M. (2019). Perkel, Make code accessible with these cloud services. Nature, 575, 247–248. https://doi.org/10.1038/d41586-019-03366-x
Joppa, L. N., McInerny, G., Harper, R., et al. (2013). Computational science. Troubling trends in scientific software use. Science, 340(6134), 814–815. https://doi.org/10.1126/science.1231535
Laraway, S., Snycerski, S., Pradhan, S., & Huitema, B. E. (2019). An overview of scientific reproducibility: Consideration of relevant issues for behavior science/analysis. Perspectives on behavior science, 42(1), 33–57. https://doi.org/10.1007/s40614-019-00193-3
Pérignon, C., Gadouche, K., Hurlin, C., Silberman, R., & Debonnel, E. (2019). Certify reproducibility with confidential data. Science, 365(6449), 127–128. https://doi.org/10.1126/science.aaw2825
Science Translational Medicine Editorial Policies. Retrieved June 24, 2023, from https://www.science.org/content/page/stm-editorial-policies
Stodden, V., McNutt, M., Bailey, D. H., et al. (2016). Enhancing reproducibility for computational methods. Science, 354(6317), 1240–1241. https://doi.org/10.1126/science.aah6168
Takefuji, Y. (2022). dyDNS for dynamic DNS updater in freedns.afraid.org [Source Code]. https://doi.org/10.24433/CO.2993693.v1
Author information
Authors and Affiliations
Corresponding author
Ethics declarations
Conflict of Interest
The author declares no competing interests.
Additional information
Highlights
• A fatal flaw in the DOI (Digital Object Identifier) policy was identified in software.
• Software with known vulnerability and published DOI may cause security breaches.
• The DOI policy flaw on software is harmful to individuals and organizations worldwide.
• All businesses need to be aware of the fatal flaws in their software DOI policies.
Rights and permissions
About this article
Cite this article
Takefuji, Y. International Companies and Governments Need to be Alerted to a Fatal Flaw in DOI Management Policy to Prevent Security Breaches. DISO 2, 25 (2023). https://doi.org/10.1007/s44206-023-00055-1
Received:
Accepted:
Published:
DOI: https://doi.org/10.1007/s44206-023-00055-1