Title :
Measuring the Occurrence of Security-Related Bugs through Software Evolution
Author :
Mitropoulos, Dimitris ; Gousios, Georgios ; Spinellis, Diomidis
Author_Institution :
Dept. of Manage. Sci. & Technol., Athens Univ. of Econ. & Bus., Athens, Greece
Abstract :
A security-related bug is a programming error that introduces a potentially exploitable weakness into a computer system. This weakness could lead to a security breach with unfortunate consequences. Version control systems provide an accurate historical record of the software code´s evolution. In this paper we examine the frequency of the security-related bugs throughout the evolution of a software project by applying the Find Bugs static analyzer on all versions of its revision history. We have applied our approach on four projects and we have come out with some interesting results including the fact that the number of the security-related bugs increase as the project evolves.
Keywords :
program debugging; security of data; software engineering; computer system; programming error; security-related bugs; software code; software evolution; version control systems; Computer bugs; Data mining; Databases; History; Libraries; Security; Software; Alitheia Core; FindBugs; Software Defects; Software Evolution; Static Analysis;
Conference_Titel :
Informatics (PCI), 2012 16th Panhellenic Conference on
Conference_Location :
Piraeus
Print_ISBN :
978-1-4673-2720-6
DOI :
10.1109/PCi.2012.15
