Proceedings of the Evaluation and Assessment in Software Engineering 2020
DOI: 10.1145/3383219.3383293
|View full text |Cite
|
Sign up to set email alerts
|

What Norwegian Developers Want and Need From Security-Directed Program Analysis Tools

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
1
1
1

Citation Types

0
3
0

Year Published

2021
2021
2023
2023

Publication Types

Select...
2

Relationship

1
1

Authors

Journals

citations
Cited by 2 publications
(3 citation statements)
references
References 23 publications
0
3
0
Order By: Relevance
“…Applying different confidence rankings can lead to different detection results. We believed that many developers would prefer low false positives [13], [17], [18]. Therefore, we modified its confidence rating as follows.…”
Section: Other Factors That Influenced Plugin Evaluation Resultsmentioning
confidence: 99%
See 2 more Smart Citations
“…Applying different confidence rankings can lead to different detection results. We believed that many developers would prefer low false positives [13], [17], [18]. Therefore, we modified its confidence rating as follows.…”
Section: Other Factors That Influenced Plugin Evaluation Resultsmentioning
confidence: 99%
“…Study [1] evaluated five open-source IDE plugins, which use static source code analysis approaches to detect vulnerabilities. The results of [1] show that the plugins have much higher false-negative and false-positive rates than the level (as explained in [17] [13] [18]) that developers are willing to accept. Similar empirical studies, e.g., [19], [20], and [2], also observe low recall and precision of IDE plugins in detecting many vulnerabilities.…”
Section: Methodsmentioning
confidence: 99%
See 1 more Smart Citation