2012 16th Panhellenic Conference on Informatics (2012)
Piraeus, Greece Greece
Oct. 5, 2012 to Oct. 7, 2012
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/PCi.2012.15
A security-related bug is a programming error that introduces a potentially exploitable weakness into a computer system. This weakness could lead to a security breach with unfortunate consequences. Version control systems provide an accurate historical record of the software code's evolution. In this paper we examine the frequency of the security-related bugs throughout the evolution of a software project by applying the Find Bugs static analyzer on all versions of its revision history. We have applied our approach on four projects and we have come out with some interesting results including the fact that the number of the security-related bugs increase as the project evolves.
Computer bugs, Software, Security, Libraries, History, Data mining, Databases, Software Evolution, Alitheia Core, FindBugs, Software Defects, Static Analysis
Dimitris Mitropoulos, Georgios Gousios, Diomidis Spinellis, "Measuring the Occurrence of Security-Related Bugs through Software Evolution", 2012 16th Panhellenic Conference on Informatics, vol. 00, no. , pp. 117-122, 2012, doi:10.1109/PCi.2012.15