Using Data Mining for Static Code Analysis of C

Tribus, Hannes; Morrigl, Irene; Axelsson, Stefán

doi:10.1007/978-3-642-35527-1_50

Cited by 4 publications

(2 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Tribus et al [5] focused on using classifiers for knowledge discovery and troubleshooting software written in C. Menzies et al used data mining to predict errors and assist large project management [4]. They used metrics such as McCabe's CC, Halstead's MI as well as LOC for C code, and classifiers such as C4.5.…”

Section: Background and Related Workmentioning

confidence: 99%

“…Experience shows that collecting and analyzing fine grained test defects from large, complex software systems is difficult [1]. Data mining has been shown to facilitate quality evaluation when applied directly to source code as well as metrics extracted from code [3][4] [5]. Static analysis using software quality metrics means that the code is analyzed without having to execute the program [2].…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Combining Clustering and Classification for Software Quality Evaluation

Papas

Tjortjis

2014

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. Source code and metric mining have been used to successfully assist with software quality evaluation. This paper presents a data mining approach which incorporates clustering Java classes, as well as classifying extracted clusters, in order to assess internal software quality. We use Java classes as entities and static metrics as attributes for data mining. We identify outliers and apply K-means clustering in order to establish clusters of classes. Outliers indicate potentially fault prone classes, whilst clusters are examined so that we can establish common characteristics. Subsequently, we apply C4.5 to build classification trees for identifying metrics which determine cluster membership. We evaluate the proposed approach with two well known open source software systems, Jedit and Apache Geronimo. Results have consolidated key findings from previous work and indicated that combining clustering with classification produces better results than stand alone clustering.

show abstract

Section: Background and Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Combining Clustering and Classification for Software Quality Evaluation

Papas

Tjortjis

2014

Lecture Notes in Computer Science

View full text Add to dashboard Cite

show abstract

Mining Association Rules from Code (MARC) to support legacy software management

Tjortjis

2019

Software Qual J

View full text Add to dashboard Cite

Input Validation Vulnerabilities in Web Applications: Systematic Review, Classification, and Analysis of the Current State-of-the-Art

Faisal

Elshoush

2023

IEEE Access

View full text Add to dashboard Cite

In recent years, huge increase in attacks and data breaches is noticed. Most of the attacks are performed and focused on the vulnerabilities related to web applications. Hence, nowadays the mitigation of application vulnerabilities is an ignited research area. Thus, due to the potential high severity impacts of web application, many different approaches have been proposed in the past decades to mitigate the damages of application vulnerabilities. Static and dynamic analysis are the two main techniques used. In this paper, a new classification for web application input validation vulnerabilities is proffered. In addition, various techniques/tools that are used to detect them are analyzed and evaluated to apprehend their strengths and weaknesses. Thus, this paper provides both technical as well as literature countermeasures to input validation vulnerabilities. Moreover, various statistical distributions of the reviewed techniques were manifested and scrutinize in different aspects to reveal the perception of the prevailing techniques and the gaps in the literature. In addition, the most widespread metrics are also propounded.

show abstract

Using Data Mining for Static Code Analysis of C

Cited by 4 publications

References 12 publications

Combining Clustering and Classification for Software Quality Evaluation

Combining Clustering and Classification for Software Quality Evaluation

Mining Association Rules from Code (MARC) to support legacy software management

Input Validation Vulnerabilities in Web Applications: Systematic Review, Classification, and Analysis of the Current State-of-the-Art

Contact Info

Product

Resources

About