IEEE

Measuring Secure Coding Practice and Culture: A Finger Pointing at the Moon is not the Moon

Abstract: Software security research has a core problem: it is impossible to prove the security of complex software. A low number of known defects may simply indicate that the software has not been ...