default search action
Fabio Massacci
Person information
- affiliation: University of Trento, Italy
- affiliation: Vrije Universiteit Amsterdam, The Netherlands
Refine list
refinements active!
zoomed in on ?? of ?? records
view refined list in
export refined list as
showing all ?? records
2020 – today
- 2024
- [j89]Quang-Cuong Bui, Ranindya Paramitha, Duc-Ly Vu, Fabio Massacci, Riccardo Scandariato:
APR4Vul: an empirical study of automatic program repair techniques on real-world Java vulnerabilities. Empir. Softw. Eng. 29(1): 18 (2024) - [j88]Aurora Papotti, Ranindya Paramitha, Fabio Massacci:
On the acceptance by code reviewers of candidate security patches suggested by Automated Program Repair tools. Empir. Softw. Eng. 29(5): 132 (2024) - [j87]Fabio Massacci:
The Holy Grail of Vulnerability Predictions. IEEE Secur. Priv. 22(1): 4-6 (2024) - [j86]Antonino Sabetta, Serena Elisa Ponta, Rocío Cabrera Lozoya, Michele Bezzi, Tommaso Sacchetti, Matteo Greco, Gergö Balogh, Péter Hegedüs, Rudolf Ferenc, Ranindya Paramitha, Ivan Pashchenko, Aurora Papotti, Ákos Milánkovich, Fabio Massacci:
Known Vulnerabilities of Open Source Projects: Where Are the Fixes? IEEE Secur. Priv. 22(2): 49-59 (2024) - [j85]Fabio Massacci, Aurora Papotti, Ranindya Paramitha:
Addressing combinatorial experiments and scarcity of subjects by provably orthogonal and crossover experimental designs. J. Syst. Softw. 211: 111990 (2024) - [c177]Aurora Papotti, Fabio Massacci, Katja Tuma:
On the Effects of Program Slicing for Vulnerability Detection during Code Inspection: Extended Abstract. ICSE Companion 2024: 368-369 - [c176]Francesco Minna, Agathe Blaise, Fabio Massacci, Katja Tuma:
Automated Security Repair for Helm Charts. ICSE Companion 2024: 412-413 - [d17]Aurora Papotti, Ranindya Paramitha, Fabio Massacci:
On the acceptance by code reviewers of candidate security patches suggested by Automated Program Repair tools - Dataset. Version 2. Zenodo, 2024 [all versions] - [d16]Aurora Papotti, Ranindya Paramitha, Fabio Massacci:
On the acceptance by code reviewers of candidate security patches suggested by Automated Program Repair tools - Dataset. Version 3. Zenodo, 2024 [all versions] - [d15]Aurora Papotti, Ranindya Paramitha, Fabio Massacci:
On the acceptance by code reviewers of candidate security patches suggested by Automated Program Repair tools - Dataset. Version 4. Zenodo, 2024 [all versions] - [d14]Aurora Papotti, Ranindya Paramitha, Fabio Massacci:
Artefact for "Addressing Combinatorial Experiments and Scarcity of Subjects by Provably Orthogonal and Crossover Experimental Designs". Zenodo, 2024 - [d13]Aurora Papotti, Ranindya Paramitha, Fabio Massacci:
On the acceptance by code reviewers of candidate security patches suggested by Automated Program Repair tools - Dataset. Version 5. Zenodo, 2024 [all versions] - [i26]Ranindya Paramitha, Yuan Feng, Fabio Massacci, Carlos E. Budde:
Cross-ecosystem categorization: A manual-curation protocol for the categorization of Java Maven libraries along Python PyPI Topics. CoRR abs/2403.06300 (2024) - [i25]Francesco Minna, Fabio Massacci, Katja Tuma:
Analyzing and Mitigating (with LLMs) the Security Misconfigurations of Helm Charts from Artifact Hub. CoRR abs/2403.09537 (2024) - [i24]Jan H. Klemmer, Stefan Albert Horstmann, Nikhil Patnaik, Cordelia Ludden, Cordell Burton Jr., Carson Powers, Fabio Massacci, Akond Rahman, Daniel Votipka, Heather Richter Lipford, Awais Rashid, Alena Naiakshina, Sascha Fahl:
Using AI Assistants in Software Development: A Qualitative Study on Security Practices and Concerns. CoRR abs/2405.06371 (2024) - [i23]Emanuele Mezzi, Aurora Papotti, Fabio Massacci, Katja Tuma:
Risks of uncertainty propagation in Al-augmented security pipelines. CoRR abs/2407.14540 (2024) - 2023
- [j84]Fabio Massacci, Giorgio Di Tizio:
Are Software Updates Useless against Advanced Persistent Threats? Commun. ACM 66(1): 31-33 (2023) - [j83]Carlos E. Budde, Anni Karinsalo, Silvia Vidor, Jarno Salonen, Fabio Massacci:
Consolidating cybersecurity in Europe: A case study on job profiles assessment. Comput. Secur. 127: 103082 (2023) - [j82]Francesco Minna, Fabio Massacci:
SoK: Run-time security for cloud microservices. Are we there yet? Comput. Secur. 127: 103119 (2023) - [j81]Katsiaryna Labunets, Fabio Massacci, Federica Paci, Katja Tuma:
A new, evidence-based, theory for knowledge reuse in security risk analysis. Empir. Softw. Eng. 28(4): 90 (2023) - [j80]Ranindya Paramitha, Fabio Massacci:
Technical leverage analysis in the Python ecosystem. Empir. Softw. Eng. 28(6): 139 (2023) - [j79]Francesco Ciclosi, Fabio Massacci:
The Data Protection Officer: A Ubiquitous Role That No One Really Knows. IEEE Secur. Priv. 21(1): 66-77 (2023) - [j78]Fabio Massacci, Laurie A. Williams:
Software Supply Chain Security [Guest Editors' Introduction]. IEEE Secur. Priv. 21(6): 8-10 (2023) - [j77]Giorgio Di Tizio, Gilberto Atondo Siu, Alice Hutchings, Fabio Massacci:
A Graph-Based Stratified Sampling Methodology for the Analysis of (Underground) Forums. IEEE Trans. Inf. Forensics Secur. 18: 5473-5483 (2023) - [j76]Giorgio Di Tizio, Michele Armellini, Fabio Massacci:
Software Updates Strategies: A Quantitative Evaluation Against Advanced Persistent Threats. IEEE Trans. Software Eng. 49(3): 1359-1373 (2023) - [d12]Francesco Ciclosi, Fabio Massacci:
Documentary sources of case studies on the issues a data protection officer faces on a daily basis. Zenodo, 2023 - [d11]Francesco Ciclosi, Silvia Vidor, Fabio Massacci:
Cross-language corpora of privacy policies. Zenodo, 2023 - [d10]Ranindya Paramitha, Fabio Massacci:
Technical Leverage Analysis in the Python Ecosystem. Zenodo, 2023 - [d9]Giorgio Di Tizio, Gilberto Atondo Siu, Alice Hutchings, Fabio Massacci:
A graph-based representation of the Hack Forums using Neo4j. Zenodo, 2023 - [i22]Francesco Ciclosi, Silvia Vidor, Fabio Massacci:
Building cross-language corpora for human understanding of privacy policies. CoRR abs/2302.05355 (2023) - [i21]Fabio Massacci, Giorgio Di Tizio:
Are Software Updates Useless Against Advanced Persistent Threats? CoRR abs/2306.07355 (2023) - [i20]Giorgio Di Tizio, Gilberto Atondo Siu, Alice Hutchings, Fabio Massacci:
A Graph-based Stratified Sampling Methodology for the Analysis of (Underground) Forums. CoRR abs/2308.09413 (2023) - 2022
- [j75]Linghui Luo, Felix Pauck, Goran Piskachev, Manuel Benz, Ivan Pashchenko, Martin Mory, Eric Bodden, Ben Hermann, Fabio Massacci:
TaintBench: Automatic real-world malware benchmarking of Android taint analyses. Empir. Softw. Eng. 27(1): 16 (2022) - [j74]Adam Shostack, Fabio Massacci, Eric Bodden, Antonino Sabetta:
25 Years in Application Security: Looking Back, Looking Forward. IEEE Secur. Priv. 20(1): 109-112 (2022) - [j73]Fabio Massacci:
Pseudo Ground-Truth Generators and Large-Scale Studies. IEEE Secur. Priv. 20(2): 4-7 (2022) - [j72]Fabio Massacci, Silvia Vidor:
Building Principles for Lawful Cyber Lethal Autonomous Weapons. IEEE Secur. Priv. 20(2): 101-106 (2022) - [j71]Fabio Massacci, Antonino Sabetta, Jelena Mirkovic, Toby Murray, Hamed Okhravi, Mohammad Mannan, Anderson Rocha, Eric Bodden, Daniel E. Geer:
"Free" as in Freedom to Protest? IEEE Secur. Priv. 20(5): 16-21 (2022) - [j70]Tina Marjanov, Ivan Pashchenko, Fabio Massacci:
Machine Learning for Source Code Vulnerability Detection: What Works and What Isn't There Yet. IEEE Secur. Priv. 20(5): 60-76 (2022) - [j69]Daniele Friolo, Fabio Massacci, Chan Nam Ngo, Daniele Venturi:
Cryptographic and Financial Fairness. IEEE Trans. Inf. Forensics Secur. 17: 3391-3406 (2022) - [j68]Alberto Giaretta, Nicola Dragoni, Fabio Massacci:
S×C4IoT: A Security-by-contract Framework for Dynamic Evolving IoT Devices. ACM Trans. Sens. Networks 18(1): 12:1-12:51 (2022) - [j67]Ivan Pashchenko, Henrik Plate, Serena Elisa Ponta, Antonino Sabetta, Fabio Massacci:
Vuln4Real: A Methodology for Counting Actually Vulnerable Dependencies. IEEE Trans. Software Eng. 48(5): 1592-1609 (2022) - [c175]Luca Mecenero, Ranindya Paramitha, Ivan Pashchenko, Fabio Massacci:
Lightweight Parsing and Slicing for Bug Identification in C. ARES 2022: 114:1-114:10 - [c174]Simone Scalco, Ranindya Paramitha, Duc-Ly Vu, Fabio Massacci:
On the feasibility of detecting injections in malicious npm packages. ARES 2022: 115:1-115:8 - [c173]Francesco Minna, Fabio Massacci, Katja Tuma:
Towards a Security Stress-Test for Cloud Configurations. CLOUD 2022: 191-196 - [c172]Francesco Minna, Fabio Massacci:
An Open-Source Cloud Testbed for Security Experimentation. CCGRID 2022: 756-759 - [c171]Francesco Ciclosi, Silvia Vidor, Fabio Massacci:
Building Cross-language Corpora for Human Understanding of Privacy Policies. CyberSec4Europe 2022: 113-131 - [c170]Linghui Luo, Felix Pauck, Goran Piskachev, Manuel Benz, Ivan Pashchenko, Martin Mory, Eric Bodden, Ben Hermann, Fabio Massacci:
TaintBench: Automatic Real-World Malware Benchmarking of Android Taint Analyses. Software Engineering 2022: 65-67 - [d8]Fabio Massacci, Ivan Pashchenko:
Technical Leverage Dataset for Java Dependencies in Maven. Zenodo, 2022 - [d7]Giorgio Di Tizio, Michele Armellini, Fabio Massacci:
Advanced Persistent Threats (APTs) campaigns database. Version v1.0.0. Zenodo, 2022 [all versions] - [d6]Giorgio Di Tizio, Michele Armellini, Fabio Massacci:
Advanced Persistent Threats (APTs) campaigns database. Version v1.0.1. Zenodo, 2022 [all versions] - [d5]Giorgio Di Tizio, Michele Armellini, Fabio Massacci:
Advanced Persistent Threats (APTs) campaigns database. Version v1.0.1.1. Zenodo, 2022 [all versions] - [i19]Giorgio Di Tizio, Michele Armellini, Fabio Massacci:
Software Updates Strategies: a Quantitative Evaluation against Advanced Persistent Threats. CoRR abs/2205.07759 (2022) - [i18]Francesco Minna, Fabio Massacci, Katja Tuma:
Towards a Security Stress-Test for Cloud Configurations. CoRR abs/2205.14498 (2022) - [i17]Daniele Friolo, Fabio Massacci, Chan Nam Ngo, Daniele Venturi:
Cryptographic and Financial Fairness. CoRR abs/2207.10780 (2022) - [i16]Aurora Papotti, Ranindya Paramitha, Fabio Massacci:
On the acceptance by code reviewers of candidate security patches suggested by Automated Program Repair tools. CoRR abs/2209.07211 (2022) - [i15]Francesco Ciclosi, Fabio Massacci:
The Data Protection Officer, an ubiquitous role nobody really knows. CoRR abs/2212.07712 (2022) - 2021
- [j66]Ganbayar Uuganbayar, Artsiom Yautsiukhin, Fabio Martinelli, Fabio Massacci:
Optimisation of cyber insurance coverage with selection of cost effective security controls. Comput. Secur. 101: 102121 (2021) - [j65]Fabio Massacci, Chan Nam Ngo:
Distributed Financial Exchanges: Security Challenges and Design Principles. IEEE Secur. Priv. 19(1): 54-64 (2021) - [j64]Nicola Dragoni, Alberto Lluch-Lafuente, Fabio Massacci, Anders Schlichtkrull:
Are We Preparing Students to Build Security In? A Survey of European Cybersecurity in Higher Education Programs [Education]. IEEE Secur. Priv. 19(1): 81-88 (2021) - [j63]Sean Peisert, Bruce Schneier, Hamed Okhravi, Fabio Massacci, Terry Benzel, Carl E. Landwehr, Mohammad Mannan, Jelena Mirkovic, Atul Prakash, James Bret Michael:
Perspectives on the SolarWinds Incident. IEEE Secur. Priv. 19(2): 7-13 (2021) - [j62]Fabio Massacci, Trent Jaeger, Sean Peisert:
SolarWinds and the Challenges of Patching: Can We Ever Stop Dancing With the Devil? IEEE Secur. Priv. 19(2): 14-19 (2021) - [j61]Fabio Massacci, Ivan Pashchenko:
Technical Leverage: Dependencies Are a Mixed Blessing. IEEE Secur. Priv. 19(3): 58-62 (2021) - [j60]Francesco Minna, Agathe Blaise, Filippo Rebecchi, Balakrishnan Chandrasekaran, Fabio Massacci:
Understanding the Security Implications of Kubernetes Networking. IEEE Secur. Priv. 19(5): 46-56 (2021) - [j59]Giorgio Di Tizio, Fabio Massacci:
A Calculus of Tracking: Theory and Practice. Proc. Priv. Enhancing Technol. 2021(2): 259-281 (2021) - [c169]Chan Nam Ngo, Fabio Massacci, Florian Kerschbaum, Julian Williams:
Practical Witness-Key-Agreement for Blockchain-Based Dark Pools Financial Trading. Financial Cryptography (2) 2021: 579-598 - [c168]Ivan Pashchenko, Riccardo Scandariato, Antonino Sabetta, Fabio Massacci:
Secure Software Development in the Era of Fluid Multi-party Open Software and Services. ICSE (NIER) 2021: 91-95 - [c167]Fabio Massacci, Ivan Pashchenko:
Technical Leverage in a Software Ecosystem: Development Opportunities and Security Risks. ICSE 2021: 1386-1397 - [c166]Duc-Ly Vu, Ivan Pashchenko, Fabio Massacci:
Please hold on: more time = more patches? Automated program repair as anytime algorithms. APR@ICSE 2021: 9-10 - [c165]Duc-Ly Vu, Fabio Massacci, Ivan Pashchenko, Henrik Plate, Antonino Sabetta:
LastPyMile: identifying the discrepancy between sources and packages. ESEC/SIGSOFT FSE 2021: 780-792 - [p4]Steven Furnell, Paul S. Haskell-Dowland, Manish Agrawal, Richard L. Baskerville, Anirban Basu, Matt Bishop, Jorge Cuéllar, Sara Foresti, Lynn Futcher, Nurit Gal-Oz, Tejaswini (Teju) Herath, Christian Damsgaard Jensen, Allen C. Johnston, Wouter Joosen, Giovanni Livraga, Javier López, Stephen Marsh, Fabio Martinelli, Fabio Massacci, Aljosa Pasic, Stef Schinagl, Abbas Shahim, Kerry-Lynn Thomson, Jaideep Vaidya, Tony Vance, Merrill Warkentin:
Information Security and Privacy - Challenges and Outlook. IFIP's Exciting First 60+ Years 2021: 383-401 - [d4]Nicola Dragoni, Fabio Massacci, Alberto Lluch-Lafuente, Anders Schlichtkrull:
A Survey of European Cybersecurity in Higher Education Programs. IEEE DataPort, 2021 - [d3]Ivan Pashchenko, Duc-Ly Vu, Fabio Massacci:
Code Analysis Tables for Developers Interviews on Dependencies Paper. Version 1. Zenodo, 2021 [all versions] - [d2]Ivan Pashchenko, Duc-Ly Vu, Fabio Massacci:
Code Analysis Tables for Developers Interviews on Dependencies Paper. Version 1. Zenodo, 2021 [all versions] - [d1]Giorgio Di Tizio, Fabio Massacci:
Database - A Calculus of Tracking: Theory and Practice. Zenodo, 2021 - [i14]Fabio Massacci, Ivan Pashchenko:
Technical Leverage in a Software Ecosystem: Development Opportunities and Security Risks. CoRR abs/2103.03317 (2021) - [i13]Ivan Pashchenko, Riccardo Scandariato, Antonino Sabetta, Fabio Massacci:
Secure Software Development in the Era of Fluid Multi-party Open Software and Services. CoRR abs/2103.03331 (2021) - 2020
- [j58]Luca Allodi, Marco Cremonini, Fabio Massacci, Woohyun Shim:
Measuring the accuracy of software vulnerability assessments: experiments with students and professionals. Empir. Softw. Eng. 25(2): 1063-1094 (2020) - [j57]Duc-Ly Vu, Trong-Kha Nguyen, Tam V. Nguyen, Tu N. Nguyen, Fabio Massacci, Phu H. Phung:
HIT4Mal: Hybrid image transformation for malware classification. Trans. Emerg. Telecommun. Technol. 31(11) (2020) - [j56]Pierantonia Sterlini, Fabio Massacci, Natalia Kadenko, Tobias Fiebig, Michel van Eeten:
Governance Challenges for European Cybersecurity Policies: Stakeholder Views. IEEE Secur. Priv. 18(1): 46-54 (2020) - [j55]Sebastian Pape, Federica Paci, Jan Jürjens, Fabio Massacci:
Selecting a Secure Cloud Provider - An Empirical Study and Multi Criteria Approach. Inf. 11(5): 261 (2020) - [c164]Ivan Pashchenko, Duc-Ly Vu, Fabio Massacci:
A Qualitative Study of Dependency Management and Its Security Implications. CCS 2020: 1513-1531 - [c163]Duc-Ly Vu, Ivan Pashchenko, Fabio Massacci, Henrik Plate, Antonino Sabetta:
Towards Using Source Code Repositories to Identify Software Supply Chain Attacks. CCS 2020: 2093-2095 - [c162]Giorgio Di Tizio, Fabio Massacci, Luca Allodi, Stanislav Dashevskyi, Jelena Mirkovic:
An Experimental Approach for Estimating Cyber Risk: a Proposal Building upon Cyber Ranges and Capture the Flags. EuroS&P Workshops 2020: 56-65 - [c161]Chan Nam Ngo, Daniele Friolo, Fabio Massacci, Daniele Venturi, Ettore Battaiola:
Vision: What If They All Die? Crypto Requirements For Key People. EuroS&P Workshops 2020: 178-183 - [c160]Luca Allodi, Alice Hutchings, Fabio Massacci, Sergio Pastrana, Marie Vasek:
WACCO 2020: the 2nd Workshop on Attackers and Cybercrime Operations Co-held with IEEE European Symposium on Security and Privacy 2020. EuroS&P Workshops 2020: 427 - [c159]Duc-Ly Vu, Ivan Pashchenko, Fabio Massacci, Henrik Plate, Antonino Sabetta:
Typosquatting and Combosquatting Attacks on the Python Ecosystem. EuroS&P Workshops 2020: 509-514 - [c158]Ivan Pashchenko, Duc-Ly Vu, Fabio Massacci:
Preliminary findings on FOSS dependencies and security: a qualitative study on developers' attitudes and experience. ICSE (Companion Volume) 2020: 284-285
2010 – 2019
- 2019
- [j54]Fabio Massacci:
Is "Deny Access" a Valid "Fail-Safe Default" Principle for Building Security in Cyberphysical Systems? IEEE Secur. Priv. 17(5): 90-93 (2019) - [j53]Neline van Ginkel, Willem De Groef, Fabio Massacci, Frank Piessens:
A Server-Side JavaScript Security Architecture for Secure Integration of Third-Party Libraries. Secur. Commun. Networks 2019: 9629034:1-9629034:21 (2019) - [j52]Alberto Giaretta, Nicola Dragoni, Fabio Massacci:
IoT Security Configurability with Security-by-Contract. Sensors 19(19): 4121 (2019) - [j51]Stanislav Dashevskyi, Daniel Ricardo dos Santos, Fabio Massacci, Antonino Sabetta:
TestREx: a framework for repeatable exploits. Int. J. Softw. Tools Technol. Transf. 21(1): 105-119 (2019) - [j50]Stanislav Dashevskyi, Achim D. Brucker, Fabio Massacci:
A Screening Test for Disclosed Vulnerabilities in FOSS Components. IEEE Trans. Software Eng. 45(10): 945-966 (2019) - [j49]Duy-Phuc Pham, Duc-Ly Vu, Fabio Massacci:
Mac-A-Mal: macOS malware analysis framework resistant to anti evasion techniques. J. Comput. Virol. Hacking Tech. 15(4): 249-257 (2019) - [c157]Ganbayar Uuganbayar, Fabio Massacci, Artsiom Yautsiukhin, Fabio Martinelli:
Cyber Insurance and Time-to-Compromise: An Integrated Approach. CyberSA 2019: 1-8 - [c156]Ettore Battaiola, Fabio Massacci, Chan Nam Ngo, Pierantonia Sterlini:
Blockchain-based Invoice Factoring: from business requirements to commitments. DLT@ITASEC 2019: 17-31 - [c155]Elia Geretto, Cédric Tessier, Fabio Massacci:
A QBDI-based Fuzzer Taming Magic Bytes. ITASEC 2019 - [c154]Daniele Friolo, Fabio Massacci, Chan Nam Ngo, Daniele Venturi:
Affordable Security or Big Guy vs Small Guy - Does the Depth of Your Pockets Impact Your Protocols? Security Protocols Workshop 2019: 135-147 - [c153]Alberto Giaretta, Nicola Dragoni, Fabio Massacci:
Protecting the Internet of Things with Security-by-Contract and Fog Computing. WF-IoT 2019: 1-6 - [i12]Duc-Ly Vu, Trong-Kha Nguyen, Tam V. Nguyen, Tu N. Nguyen, Fabio Massacci, Phu H. Phung:
A Convolutional Transformation Network for Malware Classification. CoRR abs/1909.07227 (2019) - 2018
- [c152]Ivan Pashchenko, Henrik Plate, Serena Elisa Ponta, Antonino Sabetta, Fabio Massacci:
Vulnerable open source dependencies: counting those that matter. ESEM 2018: 42:1-42:10 - [c151]Katsiaryna Labunets, Fabio Massacci, Federica Paci, Sabrina Marczak, Flávio Moreira de Oliveira:
Model comprehension for security risk assessment: an empirical comparison of tabular vs. graphical representations. ICSE 2018: 395 - [c150]Fabio Massacci, Chan Nam Ngo, Jing Nie, Daniele Venturi, Julian Williams:
FuturesMEX: Secure, Distributed Futures Market Exchange. IEEE Symposium on Security and Privacy 2018: 335-353 - [c149]Fabio Massacci, Chan Nam Ngo, Daniele Venturi, Julian Williams:
Non-monotonic Security Protocols and Failures in Financial Intermediation. Security Protocols Workshop 2018: 45-54 - [c148]Fabio Massacci:
Non-monotonic Security Protocols and Failures in Financial Intermediation (Transcript of Discussion). Security Protocols Workshop 2018: 55-62 - [i11]Luca Allodi, Fabio Massacci:
Attack Potential in Impact and Complexity. CoRR abs/1801.04703 (2018) - [i10]Luca Allodi, Marco Cremonini, Fabio Massacci, Woohyun Shim:
The Effect of Security Education and Expertise on Security Assessments: the Case of Software Vulnerabilities. CoRR abs/1808.06547 (2018) - [i9]Ivan Pashchenko, Henrik Plate, Serena Elisa Ponta, Antonino Sabetta, Fabio Massacci:
Vulnerable Open Source Dependencies: Counting Those That Matter. CoRR abs/1808.09753 (2018) - 2017
- [j48]Maria Riaz, Jason Tyler King, John Slankas, Laurie A. Williams, Fabio Massacci, Christian Quesada-López, Marcelo Jenkins:
Identifying the implied: Findings from three differentiated replications on the use of security requirements templates. Empir. Softw. Eng. 22(4): 2127-2178 (2017) - [j47]Katsiaryna Labunets, Fabio Massacci, Federica Paci, Sabrina Marczak, Flávio Moreira de Oliveira:
Model comprehension for security risk assessment: an empirical comparison of tabular vs. graphical representations. Empir. Softw. Eng. 22(6): 3017-3056 (2017) - [c147]Luca Allodi, Fabio Massacci:
Attack Potential in Impact and Complexity. ARES 2017: 32:1-32:6 - [c146]Ivan Pashchenko, Stanislav Dashevskyi, Fabio Massacci:
Delta-Bench: Differential Benchmark for Static Analysis Security Testing Tools. ESEM 2017: 163-168 - [c145]Katsiaryna Labunets, Fabio Massacci, Alessandra Tedeschi:
Graphical vs. Tabular Notations for Risk Models: On the Role of Textual Labels and Complexity. ESEM 2017: 267-276 - [c144]Luca Allodi, Silvio Biagioni, Bruno Crispo, Katsiaryna Labunets, Fabio Massacci, Wagner Santos:
Estimating the Assessment Difficulty of CVSS Environmental Metrics: An Experiment. FDSE 2017: 23-39 - [c143]Katsiaryna Labunets, Andrea Janes, Michael Felderer, Fabio Massacci:
Teaching predictive modeling to junior software engineers - seminar format and its evaluation: poster. ICSE (Companion Volume) 2017: 339-340 - [c142]Ali Davanian, Fabio Massacci, Luca Allodi:
Diversity: A Poor Man's Solution to Drone Takeover. PECCS 2017: 25-34 - [c141]