Due to the interdependent nature of Free Open Source Software projects, a vulnerability in just\ud one highly used project can have significant and sweeping consequences across many projects,\ud and can inflict hundreds of millions of dollars in damage. This paper proposes a model for\ud predicting software vulnerabilities in highly used FOSS projects using measures of effort and\ud complexity. We used several measures of complexity and effort to look at the top 150 projects\ud listed on the Debian Popularity Contest. We determined that total development effort was the\ud best measure of effort and lines of code was the best measure of complexity for predicting\ud software vulnerabilities in these projects
Software security being one of the primary concerns in the software engineering community, researche...
To what extent do investments in secure software engineering pay off? Right now, many development co...
peer reviewedVulnerabilities are one of the main concerns faced by practitioners when working with s...
Security vulnerabilities continue to be an issue in the software field and new severe vulnerabilitie...
Reducing the time taken to discover and fix vulnerabilities in open source software projects is incr...
Software vulnerabilities are weaknesses in source code that can be potentially exploited to cause lo...
Meaningful metrics and methods for measuring software security would greatly improve the security of...
Free and Open Source Software (FOSS) components are ubiquitous in both proprietary and open source a...
Software security plays a crucial role in the modern world governed by software. And while closed so...
Software developers mostly focus on functioning code while developing their software paying little a...
To what extent do investments in secure software engineering pay off? Right now, many development co...
Web applications have been gaining increased popularity around the globe, in such a way that a growi...
Context: Software security is considered a major aspect of software quality as the number of discove...
Because of the distributed and collaborative nature of free / open source software (FOSS) projects, ...
This is the author accepted manuscript. The final version is available from the publisher via the DO...
Software security being one of the primary concerns in the software engineering community, researche...
To what extent do investments in secure software engineering pay off? Right now, many development co...
peer reviewedVulnerabilities are one of the main concerns faced by practitioners when working with s...
Security vulnerabilities continue to be an issue in the software field and new severe vulnerabilitie...
Reducing the time taken to discover and fix vulnerabilities in open source software projects is incr...
Software vulnerabilities are weaknesses in source code that can be potentially exploited to cause lo...
Meaningful metrics and methods for measuring software security would greatly improve the security of...
Free and Open Source Software (FOSS) components are ubiquitous in both proprietary and open source a...
Software security plays a crucial role in the modern world governed by software. And while closed so...
Software developers mostly focus on functioning code while developing their software paying little a...
To what extent do investments in secure software engineering pay off? Right now, many development co...
Web applications have been gaining increased popularity around the globe, in such a way that a growi...
Context: Software security is considered a major aspect of software quality as the number of discove...
Because of the distributed and collaborative nature of free / open source software (FOSS) projects, ...
This is the author accepted manuscript. The final version is available from the publisher via the DO...
Software security being one of the primary concerns in the software engineering community, researche...
To what extent do investments in secure software engineering pay off? Right now, many development co...
peer reviewedVulnerabilities are one of the main concerns faced by practitioners when working with s...