Do bugs foreshadow vulnerabilities? An in-depth study of the chromium project
Author:
Funder
National Science Foundation
Publisher
Springer Science and Business Media LLC
Subject
Software
Link
http://link.springer.com/article/10.1007/s10664-016-9447-3/fulltext.html
Reference40 articles.
1. Algarni A, Malaiya Y (2014) Software vulnerability markets: Discoverers and buyers. Inter J Comp Inf Scie Engin 8(3):71–81
2. Allodi L, Massacci F (2012a) A Preliminary Analysis of Vulnerability Scores for Attacks in Wild. In: Proceedings of the 2012 ACM Workshop on Building analysis datasets and gathering experience returns for security - BADGERS ’12, p 17. doi: http://dx.doi.org/10.1145/2382416.2382427
3. Allodi L, Massacci F (2012b) A Preliminary Analysis of Vulnerability Scores for Attacks in Wild: The EKITS and SYM Datasets. In: Proceedings of the 2012 ACM Workshop on Building analysis datasets and gathering experience returns for security, ACM, pp 17–24
4. Allodi L, Massacci F (2014) Comparing vulnerability severity and exploits using case-control studies. ACM Trans Inf Syst Secur 17(1):1
5. Allodi L, Shim W, Massacci F (2013) Quantitative assessment of risk reduction with cybercrime black market monitoring. In: Security and Privacy Workshops (SPW), 2013 IEEE, IEEE, pp 165–172
Cited by 19 articles. 订阅此论文施引文献 订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献
1. Semgrep*: Improving the Limited Performance of Static Application Security Testing (SAST) Tools;Proceedings of the 28th International Conference on Evaluation and Assessment in Software Engineering;2024-06-18
2. Toward effective secure code reviews: an empirical study of security-related coding weaknesses;Empirical Software Engineering;2024-06-08
3. Estimating Security Risk Through Repository Mining;Proceedings of the 2023 Workshop on Software Supply Chain Offensive Research and Ecosystem Defenses;2023-11-26
4. A Software Vulnerability Prediction Model Using Traceable Code Patterns and Software Metrics;SN Computer Science;2023-08-09
5. An empirical analysis for software robustness vulnerability in terms of modularity quality;Systems Engineering;2023-04-18
1.学者识别学者识别
2.学术分析学术分析
3.人才评估人才评估
"同舟云学术"是以全球学者为主线,采集、加工和组织学术论文而形成的新型学术文献查询和分析系统,可以对全球学者进行文献检索和人才价值评估。用户可以通过关注某些学科领域的顶尖人物而持续追踪该领域的学科进展和研究前沿。经过近期的数据扩容,当前同舟云学术共收录了国内外主流学术期刊6万余种,收集的期刊论文及会议论文总量共计约1.5亿篇,并以每天添加12000余篇中外论文的速度递增。我们也可以为用户提供个性化、定制化的学者数据。欢迎来电咨询!咨询电话:010-8811{复制后删除}0370
www.globalauthorid.com
TOP
Copyright © 2019-2024 北京同舟云网络信息技术有限公司 京公网安备11010802033243号 京ICP备18003416号-3