@inproceedings{0377cfc738f644158cbf59d777375e12,
title = "Empirical results on the study of software vulnerabilities (NIER track)",
abstract = "While the software development community has put a significant effort to capture the artifacts related to a discovered vulnerability in organized repositories, much of this information is not amenable to meaningful analysis and requires a deep and manual inspection. In the software assurance community a body of knowledge that provides an enumeration of common weaknesses has been developed, but it is not readily usable for the study of vulnerabilities in specific projects and user environments. We propose organizing the information in project repositories around semantic templates. In this paper, we present preliminary results of an experiment conducted to evaluate the effectiveness of using semantic templates as an aid to studying software vulnerabilities.",
keywords = "buffer overflow, experiment, repository, software vulnerability",
author = "Yan Wu and Harvey Siy and Robin Gandhi",
year = "2011",
doi = "10.1145/1985793.1985960",
language = "English (US)",
isbn = "9781450304450",
series = "Proceedings - International Conference on Software Engineering",
pages = "964--967",
booktitle = "ICSE 2011 - 33rd International Conference on Software Engineering, Proceedings of the Conference",
note = "33rd International Conference on Software Engineering, ICSE 2011 ; Conference date: 21-05-2011 Through 28-05-2011",
}