An Empirical Study of Security Issues Posted in Open Source Projects
| dc.contributor.author | Zahedi, Mansooreh | |
| dc.contributor.author | Ali Babar, Muhammad | |
| dc.contributor.author | Treude, Christoph | |
| dc.date.accessioned | 2017-12-28T02:17:36Z | |
| dc.date.available | 2017-12-28T02:17:36Z | |
| dc.date.issued | 2018-01-03 | |
| dc.description.abstract | When developers gain thorough understanding and knowledge of software security, they can produce more secure software. This study aims at empirically identifying and understanding the security issues posted on a random sample of GitHub repositories. We tried to understand the presence of security issues and their key themes and topics. We applied a mixed-methods approach, combining topic modeling techniques and qualitative analysis. Our findings have revealed that a) the rate of security-related issues was rather small (approx. 3% of all issues), b) the majority of the security issues were related to identity management and cryptography topics. We present 7 high-level themes of problems that developers face in implementing security features. | |
| dc.format.extent | 10 pages | |
| dc.identifier.doi | 10.24251/HICSS.2018.686 | |
| dc.identifier.isbn | 978-0-9981331-1-9 | |
| dc.identifier.uri | http://hdl.handle.net/10125/50575 | |
| dc.language.iso | eng | |
| dc.relation.ispartof | Proceedings of the 51st Hawaii International Conference on System Sciences | |
| dc.rights | Attribution-NonCommercial-NoDerivatives 4.0 International | |
| dc.rights.uri | https://creativecommons.org/licenses/by-nc-nd/4.0/ | |
| dc.subject | Cyber Security and Software Assurance | |
| dc.subject | Empirical Research GitHub Software Security Software Repository Mining Topic Modeling | |
| dc.title | An Empirical Study of Security Issues Posted in Open Source Projects | |
| dc.type | Conference Paper | |
| dc.type.dcmi | Text |
Files
Original bundle
1 - 1 of 1