中文
相关论文

相关论文: Prioritizing Software Inspection Results using Sta…

200 篇论文

The practice of unit testing enables programmers to obtain automated feedback on whether a currently edited program is consistent with the expectations specified in test cases. Feedback is most valuable when it happens immediately, as…

软件工程 · 计算机科学 2020-02-21 Toni Mattis , Robert Hirschfeld

It is quite common for security testing to be delayed until after the software has been developed, but vulnerabilities may get noticed throughout the implementation phase and the earlier they are discovered, the easier and cheaper it will…

软件工程 · 计算机科学 2018-05-25 Rahma Mahmood , Qusay H. Mahmoud

ELAN is a powerful language and environment for specifying and prototyping deduction systems in a language based on rewrite rules controlled by strategies. Timed automata is a class of continuous real-time models of reactive systems for…

编程语言 · 计算机科学 2007-05-23 Emmanuel Beffara , Olivier Bournez , Hassen Kacem , Claude Kirchner

ELAN is a powerful language and environment for specifying and prototyping deduction systems in a language based on rewrite rules controlled by strategies. Timed automata is a class of continuous real-time models of reactive systems for…

计算机科学中的逻辑 · 计算机科学 2009-07-20 Emmanuel Beffara , Olivier Bournez , Hassen Kacem , Claude Kirchner

Early identification of security issues in software development is vital to minimize their unanticipated impacts. Code review is a widely used manual analysis method that aims to uncover security issues along with other coding issues in…

软件工程 · 计算机科学 2024-07-18 Wachiraphan Charoenwet , Patanamon Thongtanunam , Van-Thuan Pham , Christoph Treude

Knowledge-based systems reason over some knowledge base. Hence, an important issue for such systems is how to acquire the knowledge needed for their inference. This paper assesses active learning methods for acquiring knowledge for "static…

软件工程 · 计算机科学 2020-10-23 Xueqi Yang , Zhe Yu , Junjie Wang , Tim Menzies

Static Code Analyzers (SCAs) have played a critical role in software quality assurance. However, SCAs with various static analysis techniques suffer from different levels of false positives and false negatives, thereby yielding the varying…

软件工程 · 计算机科学 2024-12-25 Xiuting Ge , Chunrong Fang , Xuanye Li , Ye Shang , Mengyao Zhang , Ya Pan

Static analysis plays a crucial role in software vulnerability detection, yet faces a persistent precision-scalability tradeoff. In large codebases like the Linux kernel, traditional static analysis tools often generate excessive false…

软件工程 · 计算机科学 2025-06-03 Haonan Li , Hang Zhang , Kexin Pei , Zhiyun Qian

Product Line Engineering (PLE) is a crucial practice in many software development environments where software systems are complex and developed for multiple customers with varying needs. At the same time, many development processes are use…

软件工程 · 计算机科学 2020-06-19 Ines Hajri , Arda Goknil , Fabrizio Pastore , Lionel C. Briand

Web applications continue to be a favorite target for hackers due to a combination of wide adoption and rapid deployment cycles, which often lead to the introduction of high impact vulnerabilities. Static analysis tools are important to…

密码学与安全 · 计算机科学 2022-01-19 Ibéria Medeiros , Nuno Neves , Miguel Correia

Static source code analysis is a powerful tool for finding and fixing bugs when deployed properly; it is, however, all too easy to deploy it in a way that looks good superficially, but which misses important defects, shows many false…

软件工程 · 计算机科学 2022-02-25 Flash Sheridan

Benefits of static type systems are well-known: they offer guarantees that no type error will occur during runtime and, inherently, inferred types serve as documentation on how functions are called. On the other hand, many type systems have…

编程语言 · 计算机科学 2020-08-31 Isabel Wingen , Philipp Körner

Static analysis techniques enhance the security, performance, and reliability of programs by analyzing and portraiting program behaviors without the need for actual execution. In essence, static analysis takes the Intermediate…

编程语言 · 计算机科学 2024-05-22 Bowen Zhang , Wei Chen , Hung-Chun Chiu , Charles Zhang

Software vulnerabilities remain a significant risk factor in achieving security objectives within software development organizations. This is especially true where either proprietary or open-source software (OSS) is included in the…

软件工程 · 计算机科学 2025-09-23 James J. Cusick

Static analyzers are tool sets which are proving to be indispensable to modern programmers. These enable the programmers to detect possible errors and security defects present in the current code base within the implementation phase of the…

软件工程 · 计算机科学 2019-05-14 Eljose E Sajan , Yunpeng Zhang , Liang-Chieh Cheng

Software Product Lines (SPL) are inherently difficult to test due to the combinatorial explosion of the number of products to consider. To reduce the number of products to test, sampling techniques such as combinatorial interaction testing…

软件工程 · 计算机科学 2017-10-24 Xavier Devroey , Maxime Cordy , Gilles Perrouin , Pierre-Yves Schobbens , Axel Legay , Patrick Heymans

Lean processes focus on doing only necessery things in an efficient way. Artificial intelligence and Machine Learning offer new opportunities to optimizing processes. The presented approach demonstrates an improvement of the test process by…

软件工程 · 计算机科学 2019-06-10 Alexander Poth , Quirin Beck , Andreas Riel

Despite their ability to aid developers in detecting potential defects early in the software development life cycle, static analysis tools often suffer from precision issues (i.e., high false positive rates of reported alarms). To improve…

软件工程 · 计算机科学 2024-01-22 Yuwei Zhang , Ying Xing , Ge Li , Zhi Jin

Eliminating vulnerabilities from low-level code is vital for securing software. Static analysis is a promising approach for discovering vulnerabilities since it can provide developers early feedback on the code they write. But, it presents…

密码学与安全 · 计算机科学 2016-04-07 Bhargava Shastry , Fabian Yamaguchi , Konrad Rieck , Jean-Pierre Seifert

Programs that process data that reside in files are widely used in varied domains, such as banking, healthcare, and web-traffic analysis. Precise static analysis of these programs in the context of software verification and transformation…

编程语言 · 计算机科学 2015-04-06 Raveendra Kumar Medicherla , Raghavan Komondoor , S. Narendran