An empirical study of security issues posted in open source projects
When developers gain thorough understanding and knowledge of software security, they can produce more secure software. This study aims at empirically identifying and understanding the security issues posted on a random sample of GitHub repositories. We tried to understand the presence of security is...
Saved in:
| Main Authors: | , , |
|---|---|
| Format: | text |
| Language: | English |
| Published: |
Institutional Knowledge at Singapore Management University
2018
|
| Subjects: | |
| Online Access: | https://ink.library.smu.edu.sg/sis_research/8933 https://ink.library.smu.edu.sg/context/sis_research/article/9936/viewcontent/hicss18.pdf |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Singapore Management University |
| Language: | English |
| id |
sg-smu-ink.sis_research-9936 |
|---|---|
| record_format |
dspace |
| spelling |
sg-smu-ink.sis_research-99362024-07-04T08:54:22Z An empirical study of security issues posted in open source projects ZAHEDI, Mansooreh BABAR, M. Ali TREUDE, Christoph When developers gain thorough understanding and knowledge of software security, they can produce more secure software. This study aims at empirically identifying and understanding the security issues posted on a random sample of GitHub repositories. We tried to understand the presence of security issues and their key themes and topics. We applied a mixedmethods approach, combining topic modeling techniques and qualitative analysis. Our findings have revealed that a) the rate of security-related issues was rather small (approx. 3% of all issues), b) the majority of the security issues were related to identity management and cryptography topics. We present 7 high-level themes of problems that developers face in implementing security features. 2018-08-01T07:00:00Z text application/pdf https://ink.library.smu.edu.sg/sis_research/8933 info:doi/10.1145/3341161.3343520 https://ink.library.smu.edu.sg/context/sis_research/article/9936/viewcontent/hicss18.pdf http://creativecommons.org/licenses/by-nc-nd/4.0/ Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University Software Engineering |
| institution |
Singapore Management University |
| building |
SMU Libraries |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
SMU Libraries |
| collection |
InK@SMU |
| language |
English |
| topic |
Software Engineering |
| spellingShingle |
Software Engineering ZAHEDI, Mansooreh BABAR, M. Ali TREUDE, Christoph An empirical study of security issues posted in open source projects |
| description |
When developers gain thorough understanding and knowledge of software security, they can produce more secure software. This study aims at empirically identifying and understanding the security issues posted on a random sample of GitHub repositories. We tried to understand the presence of security issues and their key themes and topics. We applied a mixedmethods approach, combining topic modeling techniques and qualitative analysis. Our findings have revealed that a) the rate of security-related issues was rather small (approx. 3% of all issues), b) the majority of the security issues were related to identity management and cryptography topics. We present 7 high-level themes of problems that developers face in implementing security features. |
| format |
text |
| author |
ZAHEDI, Mansooreh BABAR, M. Ali TREUDE, Christoph |
| author_facet |
ZAHEDI, Mansooreh BABAR, M. Ali TREUDE, Christoph |
| author_sort |
ZAHEDI, Mansooreh |
| title |
An empirical study of security issues posted in open source projects |
| title_short |
An empirical study of security issues posted in open source projects |
| title_full |
An empirical study of security issues posted in open source projects |
| title_fullStr |
An empirical study of security issues posted in open source projects |
| title_full_unstemmed |
An empirical study of security issues posted in open source projects |
| title_sort |
empirical study of security issues posted in open source projects |
| publisher |
Institutional Knowledge at Singapore Management University |
| publishDate |
2018 |
| url |
https://ink.library.smu.edu.sg/sis_research/8933 https://ink.library.smu.edu.sg/context/sis_research/article/9936/viewcontent/hicss18.pdf |
| _version_ |
1814047650702426112 |