English
Related papers

Related papers: Analyzing and Calibrating Risk Assessment by Softw…

200 papers

The project managers who deal with risk management are often faced with the difficult task of determining the relative importance of the various sources of risk that affect the project. This prioritisation is crucial to direct management…

Risk Management · Quantitative Finance 2024-06-03 Fernando Acebes , José Manuel González-Varona , Adolfo López-Paredes , Javier Pajares

Cyber risk assessment is a fundamental activity for enhancing the protection of an organization, identifying and evaluating the exposure to cyber threats. Currently, this activity is carried out mainly manually and the identification and…

Cryptography and Security · Computer Science 2022-07-08 Marco Angelini , Silvia Bonomi , Alessandro Palma

The damage caused by cybercrime makes the development of secure software inevitable. Although many tools and frameworks exist to support the development of secure software, statistics on cybercrime show no improvement in recent years. To…

Software Engineering · Computer Science 2025-12-09 Alex R. Mattukat , Timo Langstrof , Horst Lichter

The software product is a source of cyber-attacks that target organizations by using their software supply chain as a distribution vector. As the reliance of software projects on open-source or proprietary modules is increasing drastically,…

Cryptography and Security · Computer Science 2023-05-24 Betul Gokkaya , Leonardo Aniello , Basel Halak

For each software project a plan is developed, according to a documented procedure, that covers the software activities and commitments. The requirements allocated to software form the basis for the software development plan. Estimates for…

Software Engineering · Computer Science 2012-01-24 M. Rizwan Jameel Qureshi

Many software products are composed of components integrated from other teams or external parties. Each additional link in a software product's supply chain increases the risk of the injection of malicious behavior. To improve supply chain…

Software Engineering · Computer Science 2025-03-31 Kelechi G. Kalu , Tanya Singla , Chinenye Okafor , Santiago Torres-Arias , James C. Davis

Project managers play a crucial role in the success of projects. The selection of an appropriate project manager is a primary concern for senior managers in firms. Typically, this process involves candidate interviews and assessments of…

Software Engineering · Computer Science 2023-11-07 Armin Asaadi , Armita Atrian , Hesam Nik Hoseini , Mohammad Mahdi Movahedi

Nowadays, companies are highly exposed to cyber security threats. In many industrial domains, protective measures are being deployed and actively supported by standards. However the global process remains largely dependent on document…

Cryptography and Security · Computer Science 2024-09-13 Christophe Ponsard

We use machine learning techniques to investigate whether it is possible to replicate the behavior of bank managers who assess the risk of commercial loans made by a large commercial US bank. Even though a typical bank already relies on an…

Econometrics · Economics 2022-02-10 Matthew Harding , Gabriel F. R. Vasconcelos

Effort estimation is a key factor for software project success, defined as delivering software of agreed quality and functionality within schedule and budget. Traditionally, effort estimation has been used for planning and tracking project…

Software Engineering · Computer Science 2014-01-24 Adam Trendowicz , Jürgen Münch , Ross Jeffery

Models of software systems are used throughout the software development lifecycle. Dataflow diagrams (DFDs), in particular, are well-established resources for security analysis. Many techniques, such as threat modelling, are based on DFDs…

Software Engineering · Computer Science 2024-01-10 Simon Schneider , Nicolás E. Díaz Ferreyra , Pierre-Jean Quéval , Georg Simhandl , Uwe Zdun , Riccardo Scandariato

This study investigates the prevalence and underlying causes of work-related stress and burnout among cybersecurity professionals using a quantitative survey approach guided by the Job Demands-Resources model. Analysis of responses from 50…

Cryptography and Security · Computer Science 2025-01-22 Sunil Arora , John D. Hastings

Context: Forgetting is defined as a gradual process of losing information. Even though there are many studies demonstrating the effect of forgetting in software development, to the best of our knowledge, no study explores the impact of…

Software Engineering · Computer Science 2022-04-19 Utku Ünal , Eray Tüzün , Tamer Gezici , Ausaf Ahmed Farooqui

When undertaking cyber security risk assessments, we must assign numeric values to metrics to compute the final expected loss that represents the risk that an organization is exposed to due to cyber threats. Even if risk assessment is…

Computer Science and Game Theory · Computer Science 2017-12-19 Andrew Fielder , Sandra Konig , Emmanouil Panaousis , Stefan Schauer , Stefan Rass

Software security is of utmost importance for most software systems. Developers must systematically select, plan, design, implement, and especially, maintain and evolve security features -- functionalities to mitigate attacks or protect…

Software Engineering · Computer Science 2025-09-30 Kevin Hermann , Sven Peldszus , Jan-Philipp Steghöfer , Thorsten Berger

There will be a long time when automated vehicles are mixed with human-driven vehicles. Understanding how drivers assess driving risks and modelling their individual differences are significant for automated vehicles to develop human-like…

Numerical Analysis · Mathematics 2022-11-22 Chen Chen , Zhiqian Lan , Guojian Zhan , Yao Lyu , Bingbing Nie , Shengbo Eben Li

Engineering risk is concerned with the likelihood of failure and the scenarios when it occurs. The sensitivity of failure probability to change in system parameters is relevant to risk-informed decision making. Computing sensitivity is at…

Methodology · Statistics 2025-12-19 Siu-Kui Au , Zi-Jun Cao

The key concepts (calibration, discrimination, and discordance) important in understanding and comparing risk models are best conveyed graphically. To illustrate this, models predicting death and acute kidney injury in a large cohort of PCI…

Quantitative Methods · Quantitative Biology 2015-04-21 Ralph H. Stern , Dean E. Smith , Hitinder S. Gurm

Background: The experience sampling method studies everyday experiences of humans in natural environments. In psychology it has been used to study the relationships between work well-being and productivity. To our best knowledge, daily…

Software Engineering · Computer Science 2018-09-05 Miikka Kuutila , Mika Mäntylä , Maëlick Claes , Marko Elovainio , Bram Adams

Various researchers have shown that the Common Vulnerability Scoring System (CVSS) has many drawbacks and may not provide a precise view of the risks related to software vulnerabilities. However, many threat intelligence platforms and…

Cryptography and Security · Computer Science 2018-07-30 Milda Petraityte , Ali Dehghantanha , Gregory Epiphaniou