When developers gain thorough understanding and knowledge of software security, they can produce more secure software. This study aims at empirically identifying and understanding the security issues posted on a random sample of GitHub repositories. We tried to understand the presence of security issues and their key themes and topics. We applied a mixed-methods approach, combining topic modeling techniques and qualitative analysis. Our findings have revealed that a) the rate of security-related issues was rather small (approx. 3% of all issues), b) the majority of the security issues were related to identity management and cryptography topics. We present 7 high-level themes of problems that developers face in implementing security features.
Title of host publication
Hawaii International Conference on System Sciences (HICSS)
This page is printed from https://en.itu.dk/research/portalplaceholder?layoutfraction=top&langRef=https://pure.itu.dk/portal/da/persons-research/yvonne-dittrich(f2136570-f73c-446f-9fb0-6d9e461e2124)/publications.html?filter=research&ordering=publicationOrderByPublicationYearOnly&subfilter=bookchapters&descending=true