Abstract

ABSTRACT Vulnerability prediction facilitates the development of secure software, as it enables the identification and mitigation of security risks early enough in the software development lifecycle. Although several factors have been studied for their ability to indicate software security risk, very limited attention has been given to technical debt (TD), despite its potential relevance to software security. To this end, in the present study, we investigate the ability of common TD indicators to indicate security risks in software products, both at project-level and at class-level of granularity. Our findings suggest that TD indicators may potentially act as security indicators as well.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Systematic Literature Review on Security Risks and its Practices in Secure Software Development
Rafiq Ahmad Khan ... Habib Ullah Khan
IEEE Access | VOL. 10
Rafiq Ahmad Khan, et. al.Rafiq Ahmad Khan ... Habib Ullah Khan
01 Jan 2021
Security Risks in the Software Development Lifecycle
Mamdoh Alenezi* ... Sadiq Almuairfi
International Journal of Recent Technology and Engineering (IJRTE) | VOL. 8
Mamdoh Alenezi*, et. al.Mamdoh Alenezi* ... Sadiq Almuairfi
30 Sep 2019
An Attack Surface Metric
Pratyusa K Manadhata ... Jeannette M Wing
IEEE Transactions on Software Engineering | VOL. 37
Pratyusa K Manadhata, et. al.Pratyusa K Manadhata ... Jeannette M Wing
01 May 2011
Security Risk Assessment and Management as Technical Debt
Kalle Rindell ... Johannes Holvitie
-
Kalle Rindell, et. al.Kalle Rindell ... Johannes Holvitie
01 Jun 2019
View more papers

More From: Enterprise Information Systems

Paper Title
Journal
Date
Author
The evolution of creativity: how generative AI is reshaping the hospitality landscape
Kuo-Cheng Chung
Enterprise Information Systems | VOL. ahead-of-print
Kuo-Cheng ChungKuo-Cheng Chung
15 Nov 2024
Trustworthy federated learning model for the internet of robotic things
Sultan Basudan ... Abdulrahman Alamer
Enterprise Information Systems | VOL. -
Sultan Basudan, et. al.Sultan Basudan ... Abdulrahman Alamer
10 Nov 2024
Information disclosing strategy and additional online customer reviews
Shaozeng Dong ... Yifei Wang
Enterprise Information Systems | VOL. ahead-of-print
Shaozeng Dong, et. al.Shaozeng Dong ... Yifei Wang
07 Nov 2024
Machine learning for predicting tourist spots’ preference and analysing future tourism trends in Bangladesh
Victor Chang ... Qianwen Ariel Xu
Enterprise Information Systems | VOL. ahead-of-print
Victor Chang, et. al.Victor Chang ... Qianwen Ariel Xu
03 Nov 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.