The automatic detection of software vulnerabilities is an important research problem. However, existing solutions to this problem rely on human experts to define features and often miss many vulnerabilities (i.e., incurring high false negative rate). In this paper, we initiate the study of using deep learning-based vulnerability detection to relieve human experts from the tedious and subjective...

In a typical COBOL program, the data division consists of 50% of the lines of code. Automatic type inference can help to understand the large collections of variable declarations contained therein, showing how variables are related based on their actual usage. The most problematic aspect of type inference is pollution, the phenomenon that types become too large, and contain variables that intui...

Many organizations are now pursuing software architecture as a way to control their software development and evolution costs and challenges . A software architecture describes a system’s structure and global properties and thus determines not only how the system should be constructed but also guides its evolution. An important challenge is to be able to evaluate the “goodness” of a proposed arc...

Zot is an agile and easily extendible bounded model checker, which can be downloaded at http://home.dei.polimi.it/pradella/. The tool supports different logic languages through a multi-layered approach: its core uses PLTL, and on top of it a decidable predicative fragment of TRIO is defined. An interesting feature of Zot is its ability to support different encodings of temporal logic as SAT pro...

Last year, the NICTA L4.verified project produced a formal machine-checked Isabelle/HOL proof that the C code of the seL4 OS microkernel correctly implements its abstract implementation. This papers gives a brief overview of the proof together with its main implications and assumptions, and paints a vision on how this verified kernel can be used for gaining assurance of overall system security ...

Modern commodity operating systems are large and complex systems developed over many years by large teams of programmers, containing hundreds of thousands of lines of code. Consequently, it is extremely difficult to add significant new functionality to these systems. In response to this problem, a number of recent research projects have explored novel operating system architectures to support u...

The technical skill or ability of an individual is different to person in software developments of projects . So, it is necessary to identify the talent and attitude of an individual contribution can be uniformly distributed to the different phases of software development cycle. The line of code analysis metrics to understanding the various skills of the programmers in code development. By usin...

Code metrics collected at the method level are often aggregated using summation to capture system properties at higher levels (e.g., fileor package-level). Since defect data is often available at these higher levels, this aggregation allows researchers to build defect prediction models. Recent findings by Landman et al. indicate that aggregation is likely to inflate the correlation between size...

Forgotten Books, United States, 2015. Paperback. Book Condition: New. 229 x 152 mm. Language: English . Brand New Book ***** Print on Demand *****.Excerpt from Improving the Reliability of Function Point Measurement: An Empirical Study: October 1991 Information Systems development has operated for virtually its entire history without the quantitative measurement capability of other business fun...