Software security during modern code review: the developer’s perspective-Reference-Cited by-同舟云学术

Software security during modern code review: the developer’s perspective

Published:2022-11-07 Issue: Volume: Page:
ISSN:
Container-title:Proceedings of the 30th ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering
language:
Short-container-title:

Author:

Braz Larissa¹,Bacchelli Alberto¹

Affiliation:

1. University of Zurich, Switzerland

Funder

Schweizerischer Nationalfonds zur Förderung der Wissenschaftlichen Forschung

Publisher

ACM

Link

https://dl.acm.org/doi/pdf/10.1145/3540250.3549135

Reference77 articles.

1. 2020. GitLab: Mapping the DevSecOps Landscape - 2020 Survey. https://about.gitlab.com/developer-survey 2020. GitLab: Mapping the DevSecOps Landscape - 2020 Survey. https://about.gitlab.com/developer-survey

2. Software inspections: an effective verification process

3. A. Ackerman , P. Fowler , and R. Ebenau . 1984. Software Inspections and the Industrial Production of Software . In Proceedings of the Symposium on Software Validation: Inspection-Testing-Verification-Alternatives. 13–40 . A. Ackerman, P. Fowler, and R. Ebenau. 1984. Software Inspections and the Industrial Production of Software. In Proceedings of the Symposium on Software Validation: Inspection-Testing-Verification-Alternatives. 13–40.

4. Google Alphabet . Last accessed in March 2022 . Vulnerability Rewards Program . https://bughunters.google.com/. Google Alphabet. Last accessed in March 2022. Vulnerability Rewards Program. https://bughunters.google.com/.

5. H. Assal and S. Chiasson . 2018. Security in the software development lifecycle . In Proceedings of the symposium on usable privacy and security. 281–296 . H. Assal and S. Chiasson. 2018. Security in the software development lifecycle. In Proceedings of the symposium on usable privacy and security. 281–296.

Cited by 8 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. An Empirical Study of Static Analysis Tools for Secure Code Review;Proceedings of the 33rd ACM SIGSOFT International Symposium on Software Testing and Analysis;2024-09-11

2. Serious Game for Industrial Cybersecurity: Experiential Learning Through Code Review;2024 36th International Conference on Software Engineering Education and Training (CSEE&T);2024-07-29

3. Toward effective secure code reviews: an empirical study of security-related coding weaknesses;Empirical Software Engineering;2024-06-08

4. Formal Methods and Validation Techniques for Ensuring Automotive Systems Security;Information;2023-12-18

5. Managing Vulnerabilities in Software Projects: the Case of NTT Data;2023 49th Euromicro Conference on Software Engineering and Advanced Applications (SEAA);2023-09-06