메뉴 건너뛰기




Volumn 51, Issue 10, 2009, Pages 1469-1484

The life and death of statically detected vulnerabilities: An empirical study

Author keywords

Empirical study; Mining software repositories; Software vulnerabilities

Indexed keywords

BUFFER OVERFLOWS; CROSS SITE SCRIPTING; DATA LOSS; EMPIRICAL STUDIES; EMPIRICAL STUDY; LIFE AND DEATH; MINING SOFTWARE REPOSITORIES; NETWORKING SYSTEMS; QUALITATIVE ANALYSIS; SECURITY ATTACKS; SOFTWARE VULNERABILITIES; SOURCE CODES;

EID: 67650108546     PISSN: 09505849     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.infsof.2009.04.013     Document Type: Article
Times cited : (35)

References (42)
  • 1
    • 67650100207 scopus 로고    scopus 로고
    • I.V. Krsul, Software vulnerability analysis, Ph.D. Thesis, West Lafayette, IN, USA, Major Professor-Eugene H. Spafford, 1998.
    • I.V. Krsul, Software vulnerability analysis, Ph.D. Thesis, West Lafayette, IN, USA, Major Professor-Eugene H. Spafford, 1998.
  • 5
    • 58149508296 scopus 로고    scopus 로고
    • Tracking your changes: a language-independent approach
    • Canfora G., Cerulo L., and Di Penta M. Tracking your changes: a language-independent approach. IEEE Softw. 26 1 (2009) 50-57
    • (2009) IEEE Softw. , vol.26 , Issue.1 , pp. 50-57
    • Canfora, G.1    Cerulo, L.2    Di Penta, M.3
  • 12
    • 0033880192 scopus 로고    scopus 로고
    • Automated test-data generation for exception conditions
    • Tracey N., Clark J., Mander K., and McDermid J. Automated test-data generation for exception conditions. Softw. Pract. Exper. 30 1 (2000) 61-79
    • (2000) Softw. Pract. Exper. , vol.30 , Issue.1 , pp. 61-79
    • Tracey, N.1    Clark, J.2    Mander, K.3    McDermid, J.4
  • 14
  • 22
    • 42549101143 scopus 로고    scopus 로고
    • Predicting software reliability
    • Wood A. Predicting software reliability. IEEE Comput. 9 (1999) 69-77
    • (1999) IEEE Comput. , vol.9 , pp. 69-77
    • Wood, A.1
  • 23
    • 0035400435 scopus 로고    scopus 로고
    • Maintenance and testing effort modeled by linear and nonlinear dynamic systems
    • Calzolari F., Tonella P., and Antoniol G. Maintenance and testing effort modeled by linear and nonlinear dynamic systems. Inform. Softw. Technol. 43 8 (2001) 477-486
    • (2001) Inform. Softw. Technol. , vol.43 , Issue.8 , pp. 477-486
    • Calzolari, F.1    Tonella, P.2    Antoniol, G.3
  • 29
    • 34248348339 scopus 로고    scopus 로고
    • Measuring, analyzing and predicting security vulnerabilities in software systems
    • Alhazmi O.H., Malaiya Y.K., and Ray I. Measuring, analyzing and predicting security vulnerabilities in software systems. Comput. Secur. 26 3 (2007) 219-228
    • (2007) Comput. Secur. , vol.26 , Issue.3 , pp. 219-228
    • Alhazmi, O.H.1    Malaiya, Y.K.2    Ray, I.3
  • 30
    • 84877999984 scopus 로고    scopus 로고
    • A. Ozment, S.E. Schechter, Milk or wine: does software security improve with age?, in: Proceedings of the 15th Usenix Security Symposium, August 2006, 2006.
    • A. Ozment, S.E. Schechter, Milk or wine: does software security improve with age?, in: Proceedings of the 15th Usenix Security Symposium, August 2006, 2006.
  • 33
    • 0036147522 scopus 로고    scopus 로고
    • Improving security using extensible lightweight static analysis
    • Evans D., and Larochelle D. Improving security using extensible lightweight static analysis. IEEE Softw. 19 1 (2002) 42-51
    • (2002) IEEE Softw. , vol.19 , Issue.1 , pp. 42-51
    • Evans, D.1    Larochelle, D.2
  • 38
    • 0000472488 scopus 로고
    • Likelihood ratio statistics for autoregressive time series with a unit root
    • Dickey D.A., and Fuller W.A. Likelihood ratio statistics for autoregressive time series with a unit root. Econometrica 49 4 (1981) 1057-1072
    • (1981) Econometrica , vol.49 , Issue.4 , pp. 1057-1072
    • Dickey, D.A.1    Fuller, W.A.2
  • 41
    • 67650138396 scopus 로고    scopus 로고
    • The life and death of statically detected vulnerabilities: An empirical study
    • Tech. rep, Department of Engineering, University of Sannio, Italy
    • M. Di Penta, L. Cerulo, L. Aversano, The life and death of statically detected vulnerabilities: an empirical study, Tech. rep., Department of Engineering, University of Sannio, Italy, 2009, .
    • (2009)
    • Di Penta, M.1    Cerulo, L.2    Aversano, L.3


* 이 정보는 Elsevier사의 SCOPUS DB에서 KISTI가 분석하여 추출한 것입니다.