Evaluating Software Metrics as Predictors of Software Vulnerabilities
نویسندگان
چکیده
منابع مشابه
Evaluating Software Metrics as Predictors of Software Vulnerabilities
Web application security is an important problem in today’s Internet. A major cause of this is that many developers are not equipped with the right skills to develop secure code. Because of limited time and resources, web engineers need help in recognizing vulnerable components. A useful approach to predict vulnerable code would allow them to prioritize security-auditing efforts. In this work, ...
متن کاملSoftware Metrics as Error Predictors
Analysis of a medium-size software development program shows that several common metrics (McCabe, Halstead, and operator/operand) can be said to predict errors. However, we show that this is largely because high metrics correlate with long modules, which tend to have more errors because they have more code. The use of metrics is not supported for the customary purposes of prioritizing reviews o...
متن کاملMetrics in Evaluating Software Defects
Due to the popularity of mobile devices and increasing demands of software applications, more and more individual developers join this industry. However, software defects top at the cost of software development. Software metrics are able to show some indication of software defect. This paper reviews popular static code and object-oriented metrics and summarizes heuristics for using the metrics....
متن کاملEarly Crosscutting Metrics as Predictors of Software Instability
Many researchers claim that crosscutting concerns, which emerge in early software development stages, are harmful to software stability. On the other hand, there is a lack of effective metrics that allow software developers to understand and predict the characteristics of “early” crosscutting concerns that lead to software instabilities. In general, existing crosscutting metrics are defined for...
متن کاملPredicting Unknown Vulnerabilities using Software Metrics and Maturity Models
We face an increasing reliance on software-based services, applications, platforms, and infrastructures to accomplish daily activities. It is possible to introduce vulnerabilities during any software life cycle and these vulnerabilities could lead to security attacks. It is known that as the software complexity increases, discovering a new security vulnerability introduced by subsequent updates...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: International Journal of Security and Its Applications
سال: 2015
ISSN: 1738-9976
DOI: 10.14257/ijsia.2015.9.10.21