Article-Journal

A Case-Control Study to Measure Behavioral Risks of Malware Encounters in Organizations

The behavior of enterprise users (e.g. browsing at night or visiting gambling sites) is a potential factor that might increase the …

Marcello Meschini, Giorgio Di Tizio, Marco Balduzzi, Fabio Massacci

Addressing Combinatorial Experiments and Scarcity of Subjects by Provably Orthogonal and Crossover Experimental Designs

Context: Experimentation in Software and Security Engineering is a common research practice, in particular with human subjects. …

Fabio Massacci, Aurora Papotti, Ranindya Paramitha

On the acceptance by code reviewers of candidate security patches suggested by Automated Program Repair tools

Objective: We investigated whether (possibly wrong) security patches suggested by Automated Program Repairs (APR) for real world …

Aurora Papotti, Ranindya Paramitha, Fabio Massacci

Known Vulnerabilities of Open Source Projects: Where Are the Fixes?

Every day, developers have the daunting task of tracing vulnerabilities back in a morass of commits. In this article, we report the …

Antonino Sabetta, Serena Elisa Ponta, Rocio Cabrera Lozoya, Michele Bezzi, Tommaso Sacchetti, Matteo Greco, Gergő Balogh, Péter Hegedűs, Rudolf Ferenc, Ranindya Paramitha, Ivan Pashchenko, Aurora Papotti, Ákos Milánkovich, Fabio Massacci