Accession Number : AD1020884


Title :   Static Analysis Alert Audits: Lexicon and Rules


Descriptive Note : Conference Paper


Corporate Author : CARNEGIE-MELLON UNIV PITTSBURGH PA PITTSBURGH United States


Personal Author(s) : Snavely,William


Full Text : https://apps.dtic.mil/dtic/tr/fulltext/u2/1020884.pdf


Report Date : 04 Nov 2016


Pagination or Media Count : 32


Abstract : We developed a lexicon and auditing rule set for our collaborators. Includes a standard set of well-defined determinations for static analysis alerts. Includes a set of auditing rules to help auditors make consistent decisions in commonly-encountered situations. Different auditors should make the same determination for a given alert!Improve the quality and consistency of audit data for the purpose of building machine learning classifiers. Help organizations make better-informed decisions about bug-fixes, development, and future audits.


Descriptors :   computingrelated activities , software development , computer programming , coding , auditing , security


Subject Categories : Computer Programming and Software


Distribution Statement : APPROVED FOR PUBLIC RELEASE