English
Related papers

Related papers: To Patch or Not to Patch: Motivations, Challenges,…

200 papers

System administrators, similar to end users, may delay or avoid software patches, also known as updates, despite the impact their timely application can have on system security. These admins are responsible for large, complex, amalgamated…

Human-Computer Interaction · Computer Science 2023-07-10 Adam Jenkins , Maria Wolters , Kami Vaniea

Numerous security attacks that resulted in devastating consequences can be traced back to a delay in applying a security patch. Despite the criticality of timely patch application, not much is known about why and how delays occur when…

Software Engineering · Computer Science 2022-09-07 Nesara Dissanayake , Mansooreh Zahedi , Asangi Jayatilaka , M. Ali Babar

Many cybersecurity breaches occur due to users not following good cybersecurity practices, chief among them being regulations for applying software patches to operating systems, updating applications, and maintaining strong passwords. We…

Multiagent Systems · Computer Science 2020-03-26 Nirav Ajmeri , Shubham Goyal , Munindar P. Singh

Several disastrous security attacks can be attributed to delays in patching software vulnerabilities. While researchers and practitioners have paid significant attention to automate vulnerabilities identification and patch development…

Software Engineering · Computer Science 2021-06-21 Nesara Dissanayake , Mansooreh Zahedi , Asangi Jayatilaka , Muhammad Ali Babar

Software updates are essential to enhance security, fix bugs, and add better features to the existing software. While some users accept software updates, non-compliance remains a widespread issue. While some users accept software updates,…

Software Engineering · Computer Science 2025-10-30 Mahzabin Tamanna , Mohd Anwar , Joseph D. W. Stephens

Experts agree that keeping systems up to date is a powerful security measure. Previous work found that users sometimes explicitly refrain from performing timely updates, e.g., due to bad experiences which has a negative impact on end-user…

Human-Computer Interaction · Computer Science 2020-07-20 Christian Tiefenau , Maximilian Häring , Katharina Krombholz , Emanuel von Zezschwitz

Recently, requirements for the explainability of software systems have gained prominence. One of the primary motivators for such requirements is that explainability is expected to facilitate stakeholders' trust in a system. Although this…

Software Engineering · Computer Science 2021-08-16 Lena Kästner , Markus Langer , Veronika Lazar , Astrid Schomäcker , Timo Speith , Sarah Sterz

The present paper focuses on Cyber Security Awareness Campaigns, and aims to identify key factors regarding security which may lead them to failing to appropriately change people's behaviour. Past and current efforts to improve…

Cryptography and Security · Computer Science 2019-01-10 Maria Bada , Angela M. Sasse , Jason R. C. Nurse

Computing devices are vital to all areas of modern life and permeate every aspect of our society. The ubiquity of computing and our reliance on it has been accelerated and amplified by the COVID-19 pandemic. From education to work…

Computers and Society · Computer Science 2021-01-06 Nadya Bliss , Lawrence A. Gordon , Daniel Lopresti , Fred Schneider , Suresh Venkatasubramanian

Transparency is often deemed critical to enable effective real-world deployment of intelligent systems. Yet the motivations for and benefits of different types of transparency can vary significantly depending on context, and objective…

Computers and Society · Computer Science 2019-08-20 Adrian Weller

Software updates are critical to the performance, compatibility, and security of software systems. However, users do not always install updates, leaving their machines vulnerable to attackers' exploits. While recent studies have highlighted…

Cryptography and Security · Computer Science 2018-09-06 Arunesh Mathur , Nathan Malkin , Marian Harbach , Eyal Peer , Serge Egelman

Companies, organizations, and governments across the world are eager to employ so-called 'AI' (artificial intelligence) technology in a broad range of different products and systems. The promise of this cause c\'el\`ebre is that the…

Human-Computer Interaction · Computer Science 2024-03-12 Nanna Inie

Research in cybersecurity may seem reactive, specific, ephemeral, and indeed ineffective. Despite decades of innovation in defense, even the most critical software systems turn out to be vulnerable to attacks. Time and again. Offense and…

Cryptography and Security · Computer Science 2024-09-04 Marcel Böhme

Runtime software patching aims to minimize or eliminate service downtime, user interruptions and potential data losses while deploying a patch. Due to modern software systems' high variance and heterogeneity, no universal solutions are…

Software Engineering · Computer Science 2023-02-23 Chadni Islam , Victor Prokhorenko , M. Ali Babar

Software is infamous for its poor quality and frequent occurrence of bugs. While there is no doubt that thorough testing is an appropriate answer to ensure sufficient quality, the poor state of software generally suggests that developers…

Software Engineering · Computer Science 2023-09-06 Philipp Straubinger , Gordon Fraser

Several studies have shown that automated support for different activities of the security patch management process has great potential for reducing delays in installing security patches. However, it is also important to understand how…

Software Engineering · Computer Science 2022-09-07 Nesara Dissanayake , Asangi Jayatilaka , Mansooreh Zahedi , Muhammad Ali Babar

In rapid release development processes, patches that fix critical issues, or implement high-value features are often promoted directly from the development channel to a stabilization channel, potentially skipping one or more stabilization…

Software Engineering · Computer Science 2017-09-27 Marco Castelluccio , Le An , Foutse Khomh

Background: Testing and validation of the semantic correctness of patches provided by tools for Automated Program Repairs (APR) has received a lot of attention. Yet, the eventual acceptance or rejection of suggested patches for real world…

Software Engineering · Computer Science 2022-09-19 Aurora Papotti , Ranindya Paramitha , Fabio Massacci

Cloud computing projects have many implications, including issues such as security, compliance, funding, cohesion with existing systems, operational resource requirements, and number of employees involved. In order to gain a better…

Computers and Society · Computer Science 2016-04-14 Norah Abokhodair , Hazel Taylor , Surry Jones Mowery , Jitsuko Hasegawa

Security is a requirement of utmost importance to produce high-quality software. However, there is still a considerable amount of vulnerabilities being discovered and fixed almost weekly. We hypothesize that developers affect the…

Software Engineering · Computer Science 2021-09-14 Sofia Reis , Rui Abreu , Luis Cruz
‹ Prev 1 2 3 10 Next ›