Peer Code Review to Prevent Security Vulnerabilities: An Empirical Evaluation

机译：同行代码审查，以防止安全漏洞：实证评估

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

Peer code review, as an effective quality improvement practice, has also been considered important for reducing security vulnerabilities. There is a lack of empirical evidence to quantify and support this claim. Therefore, we propose a research plan to analyze mature open source projects to gather empirical evidence regarding the relationship between peer code review and security vulnerabilities. As a proof-of-concept, we analyzed the Chromium OS project and found that reviewers identified potential vulnerabilities in 32 review requests.

机译：同行代码审查作为一种有效的质量改进措施，也被认为对于减少安全漏洞很重要。缺乏经验证据来量化和支持这种说法。因此，我们提出了一项研究计划，以分析成熟的开源项目，以收集有关对等代码审查与安全漏洞之间关系的经验证据。作为概念验证，我们分析了Chromium OS项目，发现审阅者在32个审阅请求中发现了潜在的漏洞。

著录项

来源
《2013 IEEE 7th International Conference on Software Security and Reliability Companion》|2013年|229-230|共2页
会议地点 Gaithersburg MD(US)
作者
Bosu Amiangshu; Carver Jeffrey C.;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类
关键词
code review; open source; security defects; vulnerability;

机译：代码审查;开源;安全缺陷;漏洞;;

相似文献

外文文献
中文文献
专利

1. What makes peer review helpfulness evaluation in online review communities? An empirical research based on persuasion effect [J] . Wang Yani, Wang Jun, Yao Tang, Online Information Review . 2020,第6期

机译：在线评论社区中的同行评审评价是什么？基于劝说效应的实证研究
2. Security risks/Vulnerabilities V/s Security Tactics to Prevent Loss in Hospitals [J] . Yashpal Sharma, Jasbir Singh JK Science : Journal of Medical Education & Research . 2000,第3期

机译：安全风险/漏洞预防医院损失的安全策略
3. ARE ROAD SAFETY EVALUATION STUDIES PUBLISHED IN PEER REVIEWED JOURNALS MORE VALID THAN SIMILAR STUDIES NOT PUBLISHED IN PEER REVIEWED JOURNALS? [J] . RUNE ELVK Accident Analysis & Prevention . 1998,第1期

机译：在同行评审期刊中发表的道路安全评估研究是否比在同行评审期刊中未发表的类似研究更有效？
4. Peer Code Review to Prevent Security Vulnerabilities: An Empirical Evaluation [C] . Bosu Amiangshu, Carver Jeffrey C. IEEE International Conference on Software Security and Reliability Companion . 2013

机译：同行代码审查以防止安全漏洞：实证评估
5. Security Code Review with Static Analysis Techniques for the Detection and Remediation of Security Vulnerabilities [D] . Thomas, Tyler William. 2018

机译：使用静态分析技术检查安全代码，以检测和修复安全漏洞
6. Peer Reviewed: Designing a Natural Experiment to Evaluate a National Health Care–Community Partnership to Prevent Type 2 Diabetes [O] . Ronald T. Ackermann, Ann M. Holmes, Chandan Saha 2013

机译：同行评审：设计一项自然实验以评估全国卫生保健与社区合作伙伴关系以预防2型糖尿病
7. An empirical model to predict security vulnerabilities using code complexity metrics [O] . Yonghee Shin, Laurie Williams 2008

机译：使用代码复杂度指标预测安全漏洞的经验模型

Peer Code Review to Prevent Security Vulnerabilities: An Empirical Evaluation

摘要

著录项

相似文献

相关主题

期刊订阅