Please use this identifier to cite or link to this item: http://hdl.handle.net/10125/50575

An Empirical Study of Security Issues Posted in Open Source Projects

File Size Format  
paper0688.pdf 519.84 kB Adobe PDF View/Open

Item Summary

Title:An Empirical Study of Security Issues Posted in Open Source Projects
Authors:Zahedi, Mansooreh
Ali Babar, Muhammad
Treude, Christoph
Keywords:Cyber Security and Software Assurance
Empirical Research GitHub Software Security Software Repository Mining Topic Modeling
Date Issued:03 Jan 2018
Abstract:When developers gain thorough understanding and knowledge of software security, they can produce more secure software. This study aims at empirically identifying and understanding the security issues posted on a random sample of GitHub repositories. We tried to understand the presence of security issues and their key themes and topics. We applied a mixed-methods approach, combining topic modeling techniques and qualitative analysis. Our findings have revealed that a) the rate of security-related issues was rather small (approx. 3% of all issues), b) the majority of the security issues were related to identity management and cryptography topics. We present 7 high-level themes of problems that developers face in implementing security features.
Pages/Duration:10 pages
URI/DOI:http://hdl.handle.net/10125/50575
ISBN:978-0-9981331-1-9
DOI:10.24251/HICSS.2018.686
Rights:Attribution-NonCommercial-NoDerivatives 4.0 International
https://creativecommons.org/licenses/by-nc-nd/4.0/
Appears in Collections: Cybersecurity and Software Assurance


Please email libraryada-l@lists.hawaii.edu if you need this content in ADA-compliant format.

This item is licensed under a Creative Commons License Creative Commons