research
∙
08/23/2023
Empirical Analysis of Software Vulnerabilities Causing Timing Side Channels
Timing attacks are considered one of the most damaging side-channel atta...
share
research
∙
07/03/2023
Interpretability and Transparency-Driven Detection and Transformation of Textual Adversarial Examples (IT-DT)
Transformer-based text classifiers like BERT, Roberta, T5, and GPT-3 hav...
research
∙
06/15/2023
Detecting Misuses of Security APIs: A Systematic Review
Security Application Programming Interfaces (APIs) play a vital role in ...
research
∙
01/13/2023
Data Quality for Software Vulnerability Datasets
The use of learning-based techniques to achieve automated software vulne...
research
∙
11/14/2022
An Empirical Study on Secure Usage of Mobile Health Apps: The Attack Simulation Approach
Mobile applications, mobile apps for short, have proven their usefulness...
research
∙
09/20/2022
Design and Implementation of Fragmented Clouds for Evaluation of Distributed Databases
In this paper, we present a Fragmented Hybrid Cloud (FHC) that provides ...
research
∙
06/21/2022
ProML: A Decentralised Platform for Provenance Management of Machine Learning Software Systems
Large-scale Machine Learning (ML) based Software Systems are increasingl...
research
∙
05/15/2022
Mod2Dash: A Framework for Model-Driven Dashboards Generation
The construction of an interactive dashboard involves deciding on what i...
research
∙
03/23/2022
Runtime Software Patching: Taxonomy, Survey and Future Directions
Runtime software patching aims to minimize or eliminate service downtime...
research
∙
03/20/2022
A Framework for Automating Deployment and Evaluation of Blockchain Network
Blockchain network deployment and evaluation have become prevalent due t...
research
∙
03/16/2022
On the Use of Fine-grained Vulnerable Code Statements for Software Vulnerability Assessment Models
Many studies have developed Machine Learning (ML) approaches to detect S...
research
∙
03/15/2022
SmartValidator: A Framework for Automatic Identification and Classification of Cyber Threat Data
A wide variety of Cyber Threat Information (CTI) is used by Security Ope...
research
∙
03/10/2022
LineVD: Statement-level Vulnerability Detection using Graph Neural Networks
Current machine-learning based software vulnerability detection methods ...
research
∙
03/09/2022
Noisy Label Learning for Security Defects
Data-driven software engineering processes, such as vulnerability predic...
research
∙
02/18/2022
Why, How and Where of Delays in Software Security Patch Management: An Empirical Investigation in the Healthcare Sector
Numerous security attacks that resulted in devastating consequences can ...
research
∙
01/22/2022
On the Privacy of Mental Health Apps: An Empirical Investigation and its Implications for Apps Development
An increasing number of mental health services are offered through mobil...
research
∙
01/12/2022
Security for Machine Learning-based Software Systems: a survey of threats, practices and challenges
The rapid development of Machine Learning (ML) has demonstrated superior...
research
∙
01/06/2022
A Framework for Energy-aware Evaluation of Distributed Data Processing Platforms in Edge-Cloud Environment
Distributed data processing platforms (e.g., Hadoop, Spark, and Flink) a...
research
∙
01/06/2022
Evaluation of Distributed Data Processing Frameworks in Hybrid Clouds
Distributed data processing frameworks (e.g., Hadoop, Spark, and Flink) ...
research
∙
12/21/2021
Well Begun is Half Done: An Empirical Study of Exploitability Impact of Base-Image Vulnerabilities
Container technology, (e.g., Docker) is being widely adopted for deployi...
research
∙
12/21/2021
KGSecConfig: A Knowledge Graph Based Approach for Secured Container Orchestrator Configuration
Container Orchestrator (CO) is a vital technology for managing clusters ...
research
∙
12/20/2021
An Investigation into Inconsistency of Software Vulnerability Severity across Data Sources
Software Vulnerability (SV) severity assessment is a vital task for info...
research
∙
12/20/2021
Systematic Literature Review on Cyber Situational Awareness Visualizations
The dynamics of cyber threats are increasingly complex, making it more c...
research
∙
12/12/2021
Evaluation of Security Training and Awareness Programs: Review of Current Practices and Guideline
Evaluating the effectiveness of security awareness and training programs...
research
∙
09/15/2021
Evaluation of Distributed Databases in Hybrid Clouds and Edge Computing: Energy, Bandwidth, and Storage Consumption
A benchmark study of modern distributed databases is an important source...
research
∙
09/13/2021
Data Preparation for Software Vulnerability Prediction: A Systematic Literature Review
Software Vulnerability Prediction (SVP) is a data-driven technique for s...
research
∙
09/09/2021
Automated Security Assessment for the Internet of Things
Internet of Things (IoT) based applications face an increasing number of...
research
∙
08/18/2021
DeepCVA: Automated Commit-level Vulnerability Assessment with Deep Multi-task Learning
It is increasingly suggested to identify Software Vulnerabilities (SVs) ...
research
∙
07/29/2021
An Empirical Study of Developers' Discussions about Security Challenges of Different Programming Languages
Given programming languages can provide different types and levels of se...
research
∙
07/18/2021
A Survey on Data-driven Software Vulnerability Assessment and Prioritization
Software Vulnerabilities (SVs) are increasing in complexity and scale, p...
research
∙
07/05/2021
An Empirical Study of Rule-Based and Learning-Based Approaches for Static Application Security Testing
Background: Static Application Security Testing (SAST) tools purport to ...
research
∙
03/21/2021
Automated Software Vulnerability Assessment with Concept Drift
Software Engineering researchers are increasingly using Natural Language...
research
∙
03/15/2021
Challenges and solutions when adopting DevSecOps: A systematic review
Context: DevOps has become one of the fastest growing software developme...
research
∙
01/25/2021
End-Users' Knowledge and Perception about Security of Mobile Health Apps: An Empirical Study
Mobile health applications (mHealth apps for short) are being increasing...
research
∙
12/01/2020
Software Security Patch Management – A Systematic Literature Review of Challenges, Approaches, Tools and Practices
Context: Software security patch management purports to support the proc...
research
∙
08/29/2020
Security Awareness of End-Users of Mobile Health Applications: An Empirical Study
Mobile systems offer portable and interactive computing, empowering user...
research
∙
08/11/2020
Challenges in Docker Development: A Large-scale Study Using Stack Overflow
Docker technology has been increasingly used among software developers i...
research
∙
08/10/2020
Demystifying the Mysteries of Security Vulnerability Discussions on Developer Q A Sites
Detection and mitigation of Security Vulnerabilities (SVs) are integral ...
research
∙
08/07/2020
An Empirical Study on Developing Secure Mobile Health Apps: The Developers Perspective
Mobile apps exploit embedded sensors and wireless connectivity of a devi...
research
∙
07/31/2020
The Impact of Distance on Performance and Scalability of Distributed Database Systems in Hybrid Clouds
The increasing need for managing big data has led the emergence of advan...
research
∙
07/21/2020
Challenges in Developing Secure Mobile Health Applications, A Systematic Review
Mobile health (mHealth) applications (apps) have gained significant popu...
research
∙
06/22/2020
Security and Privacy for mHealth and uHealth Systems: a Systematic Mapping Study
An increased adoption of mobile health (mHealth) and ubiquitous health (...
research
∙
06/04/2020
An Automated Implementation of Hybrid Cloud for Performance Evaluation of Distributed Databases
A Hybrid cloud is an integration of resources between private and public...
research
∙
05/18/2020
An Evasion Attack against ML-based Phishing URL Detectors
Background: Over the year, Machine Learning Phishing URL classification ...
research
∙
05/16/2020
Architectural Design Space for Modelling and Simulation as a Service: A Review
Modelling and Simulation as a Service (MSaaS) is a promising approach to...
research
∙
03/13/2020
On the Role of Software Architecture in DevOps Transformation: An Industrial Case Study
Development and Operations (DevOps), a particular type of Continuous Sof...
research
∙
03/08/2020
PUMiner: Mining Security Posts from Developer Question and Answer Websites with PU Learning
Security is an increasing concern in software development. Developer Que...
research
∙
02/21/2020
A Multi-Vocal Review of Security Orchestration
Organizations use diverse types of security solutions to prevent cyberat...
research
∙
02/13/2020
Deep Learning for Source Code Modeling and Generation: Models, Applications and Challenges
Deep Learning (DL) techniques for Natural Language Processing have been ...
research
∙
01/24/2019