Publication: Less is more: Supporting developers in vulnerability detection during code review
Less is more: Supporting developers in vulnerability detection during code review
Date
Date
Date
Citations
Braz, L., Aeberhard, C., Çalikli, G., & Bacchelli, A. (2022). Less is more: Supporting developers in vulnerability detection during code review. 1317–1329. https://doi.org/10.1145/3510003.3511560
Abstract
Abstract
Abstract
Reviewing source code from a security perspective has proven to be a difficult task. Indeed, previous research has shown that developers often miss even popular and easy-to-detect vulnerabilities during code review. Initial evidence suggests that a significant cause may lie in the reviewers' mental attitude and common practices.
In this study, we investigate whether and how explicitly asking developers to focus on security during a code review affects the detection of vulnerabilities. Furthermore, we evaluate the effect of providing
Metrics
Downloads
Views
Additional indexing
Creators (Authors)
- Braz, Larissa
- Aeberhard, Christian
- Çalikli, Gül
Event Title
Event Title
Event Title
Event Location
Event Location
Event Location
Event Start Date
Event Start Date
Event Start Date
Event End Date
Event End Date
Event End Date
Page range/Item number
Page range/Item number
Page range/Item number
Page end
Page end
Page end
Item Type
Item Type
Item Type
In collections
Dewey Decimal Classifikation
Dewey Decimal Classifikation
Dewey Decimal Classifikation
Scope
Scope
Scope
Language
Language
Language
Date available
Date available
Date available
ISBN or e-ISBN
ISBN or e-ISBN
ISBN or e-ISBN
OA Status
OA Status
OA Status
Free Access at
Free Access at
Free Access at
Publisher DOI
Other Identification Number
Other Identification Number
Other Identification Number
Metrics
Downloads
Views
Citations
Braz, L., Aeberhard, C., Çalikli, G., & Bacchelli, A. (2022). Less is more: Supporting developers in vulnerability detection during code review. 1317–1329. https://doi.org/10.1145/3510003.3511560
