Please use this identifier to cite or link to this item: http://hdl.handle.net/10125/50575

An Empirical Study of Security Issues Posted in Open Source Projects

File Size Format  
paper0688.pdf 519.84 kB Adobe PDF View/Open

Item Summary

dc.contributor.author Zahedi, Mansooreh
dc.contributor.author Ali Babar, Muhammad
dc.contributor.author Treude, Christoph
dc.date.accessioned 2017-12-28T02:17:36Z
dc.date.available 2017-12-28T02:17:36Z
dc.date.issued 2018-01-03
dc.identifier.isbn 978-0-9981331-1-9
dc.identifier.uri http://hdl.handle.net/10125/50575
dc.description.abstract When developers gain thorough understanding and knowledge of software security, they can produce more secure software. This study aims at empirically identifying and understanding the security issues posted on a random sample of GitHub repositories. We tried to understand the presence of security issues and their key themes and topics. We applied a mixed-methods approach, combining topic modeling techniques and qualitative analysis. Our findings have revealed that a) the rate of security-related issues was rather small (approx. 3% of all issues), b) the majority of the security issues were related to identity management and cryptography topics. We present 7 high-level themes of problems that developers face in implementing security features.
dc.format.extent 10 pages
dc.language.iso eng
dc.relation.ispartof Proceedings of the 51st Hawaii International Conference on System Sciences
dc.rights Attribution-NonCommercial-NoDerivatives 4.0 International
dc.rights.uri https://creativecommons.org/licenses/by-nc-nd/4.0/
dc.subject Cyber Security and Software Assurance
dc.subject Empirical Research GitHub Software Security Software Repository Mining Topic Modeling
dc.title An Empirical Study of Security Issues Posted in Open Source Projects
dc.type Conference Paper
dc.type.dcmi Text
dc.identifier.doi 10.24251/HICSS.2018.686
Appears in Collections: Cybersecurity and Software Assurance


Please email libraryada-l@lists.hawaii.edu if you need this content in ADA-compliant format.

This item is licensed under a Creative Commons License Creative Commons