Open source vs. closed source software: towards measuring security

11 years 1 months ago
Open source vs. closed source software: towards measuring security
The increasing availability and deployment of open source software in personal and commercial environments makes open source software highly appealing for hackers, and others who are interested in exploiting software vulnerabilities. This deployment has resulted in a debate “full of religion” on the security of open source software compared to that of closed source software. However, beyond such arguments, only little quantitative analysis on this research issue has taken place. We discuss the state-of-theart of the security debate and identify shortcomings. Based on these, we propose new metrics, which allows to answer the question to what extent the review process of open source and closed source development has helped to fix vulnerabilities. We illustrate the application of some of these metrics in a case study on OpenOffice (open source software) vs. Microsoft Office (closed source software). Categories and Subject Descriptors D.2.8 [Software Engineering]: Metrics – product ...
Guido Schryen, Rouven Kadura
Added 19 May 2010
Updated 19 May 2010
Type Conference
Year 2009
Where SAC
Authors Guido Schryen, Rouven Kadura
Comments (0)