Search Results - "Croft, Roland"

Data Preparation for Software Vulnerability Prediction: A Systematic Literature Review by Croft, Roland, Xie, Yongzheng, Babar, Muhammad Ali

“…Software Vulnerability Prediction (SVP) is a data-driven technique for software quality assurance that has recently gained considerable attention in the…”
Get full text

SmartValidator: A framework for automatic identification and classification of cyber threat data by Islam, Chadni, Babar, M. Ali, Croft, Roland, Janicke, Helge

“…A wide variety of Cyber Threat Information (CTI) is used by Security Operation Centres (SOCs) to perform validation of security incidents and alerts. Security…”
Get full text

An Investigation into Inconsistency of Software Vulnerability Severity across Data Sources by Croft, Roland, Babar, M. Ali, Li, Li

“…Software Vulnerability (SV) severity assessment is a vital task for informing SV remediation and triage. Ranking of SV severity scores is often used to advise…”
Get full text

Data Quality for Software Vulnerability Datasets by Croft, Roland, Babar, M. Ali, Kholoosi, M. Mehdi

“…The use of learning-based techniques to achieve automated software vulnerability detection has been of longstanding interest within the software security…”
Get full text

DeepCVA: Automated Commit-level Vulnerability Assessment with Deep Multi-task Learning by Minh Le, Triet Huynh, Hin, David, Croft, Roland, Ali Babar, M.

“…It is increasingly suggested to identify Software Vulnerabilities (SVs) in code commits to give early warnings about potential security risks. However, there…”
Get full text

An empirical study of developers’ discussions about security challenges of different programming languages by Croft, Roland, Xie, Yongzheng, Zahedi, Mansooreh, Babar, M. Ali, Treude, Christoph

“…Given programming languages can provide different types and levels of security support, it is critically important to consider security aspects while selecting…”
Get full text

Noisy Label Learning for Security Defects by Croft, Roland, Babar, M. Ali, Chen, Huaming

“…Data-driven software engineering processes, such as vulnerability prediction heavily rely on the quality of the data used. In this paper, we observe that it is…”
Get full text

Data Quality for Software Vulnerability Datasets by Croft, Roland, Babar, M. Ali, Kholoosi, Mehdi

“…The use of learning-based techniques to achieve automated software vulnerability detection has been of longstanding interest within the software security…”
Get full text

A Qualitative Study on Using ChatGPT for Software Security: Perception vs. Practicality by Kholoosi, M. Mehdi, Babar, M. Ali, Croft, Roland

“…Artificial Intelligence (AI) advancements have enabled the development of Large Language Models (LLMs) that can perform a variety of tasks with remarkable…”
Get full text

Noisy Label Learning for Security Defects by Croft, Roland, Babar, M. Ali, Chen, Huaming

“…Data-driven software engineering processes, such as vulnerability prediction heavily rely on the quality of the data used. In this paper, we observe that it is…”
Get full text

An Investigation into Inconsistency of Software Vulnerability Severity across Data Sources by Croft, Roland, Babar, M. Ali, Li, Li

“…Software Vulnerability (SV) severity assessment is a vital task for informing SV remediation and triage. Ranking of SV severity scores is often used to advise…”
Get full text

Data Preparation for Software Vulnerability Prediction: A Systematic Literature Review by Croft, Roland, Xie, Yongzheng, Babar, M. Ali

“…Software Vulnerability Prediction (SVP) is a data-driven technique for software quality assurance that has recently gained considerable attention in the…”
Get full text

SmartValidator: A Framework for Automatic Identification and Classification of Cyber Threat Data by Islam, Chadni, Babar, M. Ali, Croft, Roland, Janicke, Helge

“…A wide variety of Cyber Threat Information (CTI) is used by Security Operation Centres (SOCs) to perform validation of security incidents and alerts. Security…”
Get full text

PUMiner: Mining Security Posts from Developer Question and Answer Websites with PU Learning by Minh Le, Triet Huynh, Hin, David, Croft, Roland, Babar, M. Ali

“…Security is an increasing concern in software development. Developer Question and Answer (Q&A) websites provide a large amount of security discussion. Existing…”
Get full text

An Empirical Study of Rule-Based and Learning-Based Approaches for Static Application Security Testing by Croft, Roland, Newlands, Dominic, Chen, Ziyu, Babar, M. Ali

“…Background: Static Application Security Testing (SAST) tools purport to assist developers in detecting security issues in source code. These tools typically…”
Get full text

DeepCVA: Automated Commit-level Vulnerability Assessment with Deep Multi-task Learning by Le, Triet H. M, Hin, David, Croft, Roland, Babar, M. Ali

“…It is increasingly suggested to identify Software Vulnerabilities (SVs) in code commits to give early warnings about potential security risks. However, there…”
Get full text

An Empirical Study of Developers' Discussions about Security Challenges of Different Programming Languages by Croft, Roland, Xie, Yongzheng, Zahedi, Mansooreh, Babar, M. Ali, Treude, Christoph

“…Given programming languages can provide different types and levels of security support, it is critically important to consider security aspects while selecting…”
Get full text

A Large-scale Study of Security Vulnerability Support on Developer Q&A Websites by Le, Triet H. M, Croft, Roland, Hin, David, Babar, M. Ali

“…Context: Security Vulnerabilities (SVs) pose many serious threats to software systems. Developers usually seek solutions to addressing these SVs on developer…”
Get full text

PUMiner: Mining Security Posts from Developer Question and Answer Websites with PU Learning by Le, Triet H. M, Hin, David, Croft, Roland, Babar, M. Ali

“…Security is an increasing concern in software development. Developer Question and Answer (Q&A) websites provide a large amount of security discussion. Existing…”
Get full text