Ranking attack-prone components with a predictive model

Proceedings - International Symposium on Software Reliability Engineering, ISSRE

Volumn , Issue , 2008, Pages 315-316

  Gegick, Michael ^a   Williams, Laurie ^a  

^a North Carolina State University   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

CLASSIFICATION AND REGRESSION TREE; LINES OF CODE; PREDICTIVE MODELS; PROBABILITY OF ATTACK; RISK COMPONENTS; SECURITY RISK ANALYSIS; SECURITY TESTING; SOFTWARE COMPONENT; SOFTWARE ENGINEERS; SOFTWARE SYSTEMS;

COMPUTER SOFTWARE SELECTION AND EVALUATION; MILITARY ENGINEERING; PREDICTIVE CONTROL SYSTEMS; PROBABILITY; RISK ANALYSIS; RISK ASSESSMENT; SAFETY FACTOR;

SOFTWARE RELIABILITY;

EID: 67249159318     PISSN: 10719458     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ISSRE.2008.24     Document Type: Conference Paper

References (4)

1. B. Boehm and V. Basili, "Software Defect Reduction Top 10 List," IEEE Computer, vol.34, no. 1, pp. 135-137, January, 2001.
2. M. Gegick, L. Williams, J. Osborne, and M. Vouk, "Prioritizing Software Security Fortification through Code- Level Security Metrics," Workshop on Quality of Protection to appear, Alexandria, VA, 2008.
3. S. Neuhaus, T. Zimmermann, C. Holler, and A. Zeller, "Predicting Vulnerable Software Components," Computer and Communications Security, Alexandria, VA, pp. 529-540, 29 October-2 November 2007.
4. Y. Shin and L. Williams, "Is Complexity Really the Enemy of Software Security?," Workshop on Quality of Protection to appear, Alexandria, VA, 2008.