Search

Your search keyword '"Erdogmus, Hakan"' showing total 347 results
Start Over Author "Erdogmus, Hakan"

Refine your results

more »

more »

more »

more »
347 results on '"Erdogmus, Hakan"'

1. SECOMlint: A linter for Security Commit Messages

Author

Reis, Sofia, Pasareanu, Corina, Abreu, Rui, and Erdogmus, Hakan

Subjects
Computer Science - Cryptography and Security, Computer Science - Software Engineering
Abstract

Transparent and efficient vulnerability and patch disclosure are still a challenge in the security community, essentially because of the poor-quality documentation stemming from the lack of standards. SECOM is a recently-proposed standard convention for security commit messages that enables the writing of well-structured and complete commit messages for security patches. The convention prescribes different bits of security-related information essential for a better understanding of vulnerabilities by humans and tools. SECOMlint is an automated and configurable solution to help security and maintenance teams infer compliance against the SECOM standard when submitting patches to security vulnerabilities in their source version control systems. The tool leverages the natural language processing technique Named-Entity Recognition (NER) to extract security-related information from commit messages and uses it to match the compliance standards designed. We demonstrate SECOMlint at https://youtu.be/-1hzpMN_uFI; and documentation and its source code at https://tqrg.github.io/secomlint/.

Published
2023

2. On using distributed representations of source code for the detection of C security vulnerabilities

Author

Coimbra, David, Reis, Sofia, Abreu, Rui, Păsăreanu, Corina, and Erdogmus, Hakan

Subjects
Computer Science - Cryptography and Security, Computer Science - Artificial Intelligence, Computer Science - Machine Learning, Computer Science - Programming Languages, Computer Science - Software Engineering
Abstract

This paper presents an evaluation of the code representation model Code2vec when trained on the task of detecting security vulnerabilities in C source code. We leverage the open-source library astminer to extract path-contexts from the abstract syntax trees of a corpus of labeled C functions. Code2vec is trained on the resulting path-contexts with the task of classifying a function as vulnerable or non-vulnerable. Using the CodeXGLUE benchmark, we show that the accuracy of Code2vec for this task is comparable to simple transformer-based methods such as pre-trained RoBERTa, and outperforms more naive NLP-based methods. We achieved an accuracy of 61.43% while maintaining low computational requirements relative to larger models., Comment: Submitted to DX 2021

Published
2021

3. Are Computer Science and Engineering Graduates Ready for the Software Industry? Experiences from an Industrial Student Training Program

Author

Tuzun, Eray, Erdogmus, Hakan, and Ozbilgin, Izzet Gokhan

Subjects
Computer Science - Computers and Society, Computer Science - Software Engineering
Abstract

It has been 50 years since the term software engineering was coined in 1968 at a NATO conference. The field should be relatively mature by now, with most established universities covering core software engineering topics in their Computer Science programs and others offering specialized degrees. However, still many practitioners lament a lack of skills in new software engineering hires. With the growing demand for software engineers from the industry, this apparent gap becomes more and more pronounced. One corporate strategy to address this gap is for the industry to develop supplementary training programs before the hiring process, which could also help them screen viable candidates. In this paper, we report on our experiences and lessons learned in conducting a summer school program aimed at screening new graduates, introducing them to core skills relevant to the organization and the industry, and assessing their attitudes toward mastering those skills before the hiring process begins. Our experience suggests that such initiatives can be mutually beneficial for new hires and companies. We support this insight with pre- and post-training data collected from the participants during the first edition of such a summer school and a follow-up questionnaire conducted after a year with the graduates, 50% of whom was hired by the company shortly after the summer school.

Published
2018

5. Flipping a Graduate-Level Software Engineering Foundations Course

Author

Erdogmus, Hakan and Peraire, Cecile

Subjects
Computer Science - Software Engineering, Computer Science - Computers and Society
Abstract

Creating a graduate-level software engineering breadth course is challenging. The scope is wide. Students prefer hands-on work over theory. Industry increasingly values soft skills. Changing software technology requires the syllabus to be technology-agnostic, yet abstracting away technology compromises realism. Instructors must balance scope with depth of learning. At Carnegie Mellon University, we designed a flipped-classroom course that tackles these tradeoffs. The course has been offered since Fall 2014 in the Silicon Valley campus. In this paper, we describe the course's key features and summarize our experiences and lessons learned while designing, teaching, and maintaining it. We found that the pure flipped-classroom format was not optimal in ensuring sufficient transfer of knowledge, especially in remote settings. We initially underestimated teaching assistantship resources. We gradually complemented video lectures and hands-on live sessions with additional live components: easily replaceable recitations that focus on current technology and mini lectures that address application of theory and common wisdom. We also provided the students with more opportunities to share their successes and experiments with their peers. We achieved scalability by increasing the number of teaching assistants, paying attention to teaching assistant recruitment, and fostering a culture of mentoring among the teaching team., Comment: 10 pages, accepted to ICSE 2017, Software Engineering and Education Track

Published
2017

6. Designing Interactive Workshops for Software Engineering Educators

Author

Péraire, Cécile, Erdogmus, Hakan, Dzvonyar, Dora, Goos, Gerhard, Founding Editor, Hartmanis, Juris, Founding Editor, Bertino, Elisa, Editorial Board Member, Gao, Wen, Editorial Board Member, Steffen, Bernhard, Editorial Board Member, Woeginger, Gerhard, Editorial Board Member, Yung, Moti, Editorial Board Member, Bruel, Jean-Michel, editor, Capozucca, Alfredo, editor, Mazzara, Manuel, editor, Meyer, Bertrand, editor, Naumchev, Alexandr, editor, and Sadovykh, Andrey, editor

Published
2020
Full Text
View/download PDF

7. A Dissection of the Test-Driven Development Process: Does It Really Matter to Test-First or to Test-Last?

Author

Fucci, Davide, Erdogmus, Hakan, Turhan, Burak, Oivo, Markku, and Juristo, Natalia

Subjects
Computer Science - Software Engineering
Abstract

Background: Test-driven development (TDD) is a technique that repeats short coding cycles interleaved with testing. The developer first writes a unit test for the desired functionality, followed by the necessary production code, and refactors the code. Many empirical studies neglect unique process characteristics related to TDD iterative nature. Aim: We formulate four process characteristic: sequencing, granularity, uniformity, and refactoring effort. We investigate how these characteristics impact quality and productivity in TDD and related variations. Method: We analyzed 82 data points collected from 39 professionals, each capturing the process used while performing a specific development task. We built regression models to assess the impact of process characteristics on quality and productivity. Quality was measured by functional correctness. Result: Quality and productivity improvements were primarily positively associated with the granularity and uniformity. Sequencing, the order in which test and production code are written, had no important influence. Refactoring effort was negatively associated with both outcomes. We explain the unexpected negative correlation with quality by possible prevalence of mixed refactoring. Conclusion: The claimed benefits of TDD may not be due to its distinctive test-first dynamic, but rather due to the fact that TDD-like processes encourage fine-grained, steady steps that improve focus and flow.

Published
2016
Full Text
View/download PDF

8. Small Polygon Compression For Integer Coordinates

Author

Jauhri, Abhinav, Griss, Martin, and Erdogmus, Hakan

Subjects
Computer Science - Information Theory
Abstract

We describe several polygon compression techniques to enable efficient transmission of polygons representing geographical targets. The main application is to embed compressed polygons to emergency alert messages that have strict length restrictions, as in the case of Wireless Emergency Alert messages. We are able to compress polygons to between 9.7% and 23.6% of original length, depending on characteristics of the specific polygons, reducing original polygon lengths from 43-331 characters to 8-55 characters. The best techniques apply several heuristics to perform initial compression, and then other algorithmic techniques, including higher base encoding. Further, these methods are respectful of computation and storage constraints typical of cell phones. Two of the best techniques include a \enquote{bignum} quadratic combination of integer coordinates and a variable length encoding, which takes advantage of a strongly skewed polygon coordinate distribution. Both techniques applied to one of two \enquote{delta} representations of polygons are on average able to reduce the size of polygons by some 80%. A repeated substring dictionary can provide further compression, and a merger of these techniques into a \enquote{polyalgorithm} can also provide additional improvements., Comment: Publised at 3rd Conference on Weather Warnings and Communication 2015

Published
2015

12. The Role of Process Measurement in Test-Driven Development

Author

Wang, Yihong, Erdogmus, Hakan, Hutchison, David, editor, Kanade, Takeo, editor, Kittler, Josef, editor, Kleinberg, Jon M., editor, Mattern, Friedemann, editor, Mitchell, John C., editor, Naor, Moni, editor, Nierstrasz, Oscar, editor, Pandu Rangan, C., editor, Steffen, Bernhard, editor, Sudan, Madhu, editor, Terzopoulos, Demetri, editor, Tygar, Dough, editor, Vardi, Moshe Y., editor, Weikum, Gerhard, editor, Zannier, Carmen, editor, Erdogmus, Hakan, editor, and Lindstrom, Lowell, editor

Published
2004
Full Text
View/download PDF

15. Introduction

Author

Erdogmus, Hakan, Tanir, Oryal, Kark, Anatol W., Coallier, François, Erdogmus, Hakan, editor, and Tanir, Oryal, editor

Published
2002
Full Text
View/download PDF

17. Bayesian Hypothesis Testing Illustrated: An Introduction for Software Engineering Researchers.

Author

ERDOGMUS, HAKAN

Subjects
*SOFTWARE engineers, *SOFTWARE engineering, *COMPUTATIONAL complexity, *COMPUTER software testing, *HYPOTHESIS, *FREQUENTIST statistics
Abstract

Bayesian data analysis is gaining traction in many fields, including empirical studies in software engineering. Bayesian approaches provide many advantages over traditional, or frequentist, data analysis, but the mechanics often remain opaque to beginners due to the underlying computational complexity. Introductory articles, while successful in explaining the theory and principles, fail to provide a totally transparent operationalization. To address this gap, this tutorial provides a step-by-step illustration of Bayesian hypothesis testing in the context of software engineering research using a fully developed example and in comparison to the frequentist hypothesis testing approach. It shows how Bayesian analysis can help build evidence over time incrementally through a family of experiments. It also discusses chief advantages and disadvantages in an applied manner. A figshare package is provided for reproducing all calculations. [ABSTRACT FROM AUTHOR]

Published
2023
Full Text
View/download PDF

18. Ground-Truth Deficiencies in Software Engineering : When Codifying the Past Can Be Counterproductive

Author

Tuzun, Eray, Erdogmus, Hakan, Baldassarre, Maria Teresa, Felderer, Michael, Feldt, Robert, Turhan, Burak, Tuzun, Eray, Erdogmus, Hakan, Baldassarre, Maria Teresa, Felderer, Michael, Feldt, Robert, and Turhan, Burak

Abstract

In software engineering, the objective function of human decision makers might be influenced by many factors. Relying on historical data as the ground truth may give rise to systems that automate software engineering decisions by mimicking past suboptimal behavior. We describe the problem and offer some strategies. ©IEEE.

Published
2022
Full Text
View/download PDF

19. SECOM

Author

Reis, Sofia, primary, Abreu, Rui, additional, Erdogmus, Hakan, additional, and Păsăreanu, Corina, additional

Published
2022
Full Text
View/download PDF

20. Roadmapping Working Group 4 Results

Author

Williams, Laurie, Erdogmus, Hakan, Selby, Rick, Hutchison, David, editor, Kanade, Takeo, editor, Kittler, Josef, editor, Kleinberg, Jon M., editor, Mattern, Friedemann, editor, Mitchell, John C., editor, Naor, Moni, editor, Nierstrasz, Oscar, editor, Rangan, C. Pandu, editor, Steffen, Bernhard, editor, Sudan, Madhu, editor, Terzopoulos, Demetri, editor, Tygar, Doug, editor, Vardi, Moshe Y., editor, Weikum, Gerhard, editor, Basili, Victor R., editor, Rombach, Dieter, editor, Schneider, Kurt, editor, Kitchenham, Barbara, editor, Pfahl, Dietmar, editor, and Selby, Richard W., editor

Published
2007
Full Text
View/download PDF

23. Tracking progress through earned value

Author

Erdogmus, Hakan

Subjects
Company business management, Industrial project management -- Methods, Project management -- Methods, Computer software industry -- Management
Published
2010

26. Deja vu: the life of software engineering ideas

Author

Erdogmus, Hakan

Subjects
Software development/engineering, Market trend/market analysis, Software engineering -- Practice, Software engineering -- Forecasts and trends
Published
2010

27. A process that is not

Author

Erdogmus, Hakan

Subjects
Web site management software, TikiWiki (Web site management software) -- Product information, Web site management software -- Product information
Published
2009

28. A tale of two conferences

Author

Erdogmus, Hakan

Subjects
Computer software industry -- Conferences, meetings and seminars, Computer programmers -- Conferences, meetings and seminars
Published
2009

29. Essentials of software process

Author

Erdogmus, Hakan

Subjects
Software development/engineering, Software engineering -- Standards
Published
2008

30. The infamous ratio measure

Author

Erdogmus, Hakan

Subjects
Software development/engineering, Software engineering -- Measurement, Ratio and proportion -- Usage, Prediction theory -- Usage
Published
2008

31. Agile's coming of age... or not

Author

Erdogmus, Hakan

Subjects
Software development/engineering, Market trend/market analysis, Software engineering -- Forecasts and trends, Computer software industry -- Beliefs, opinions and attitudes, Computer software industry -- Forecasts and trends
Published
2007

34. On the effectiveness of the test-first approach to programming

Author

Erdogmus, Hakan, Morisio, Maurizio, and Torchiano, Marco

Subjects
Software product testing, Software development/engineering, Computer programming, Debugging -- Analysis, Software engineering -- Analysis, Computer programming -- Analysis
Published
2005

36. Valuation of learning options in software development under private and market risk

Author

Erdogmus, Hakan

Subjects
Software -- Product development, Product development -- Analysis, Software quality, Time to market, Business, Petroleum, energy and mining industries
Abstract

Commercial software development is an inherently uncertain activity. Private risk is high, schedule and cost overruns are common, and market success is elusive. Such circumstances call for a disciplined project evaluation approach. This paper addresses the use of market and earned value management data in assessing the economic value of commercial software development projects that are simultaneously subject to schedule, development cost, and market risk. The assessment is based on real options analysis, a financial valuation technique that can tackle dynamic investment decisions under uncertainty. The paper demonstrates the application of real options analysis to a development scenario that consists of two consecutive stages: a mandatory prototyping stage and an optional full-development stage. The full-development stage is undertaken only if the prototype is successful and the market outlook is sufficiently positive at the end of the prototyping stage, thus giving the full-development stage the flavor of an option. The project's staged design increases its value. Real options analyses capture the extra value due to optionality., INTRODUCTION According to the Standish Group's CHAOS report (1), more than 20% of software projects fail and only less than 20% of software projects are completed on time and on [...]

Published
2002

37. Measurement and Interpretation of Productivity and Functional Correctness

Author

Erdogmus, Hakan, Hutchison, David, editor, Kanade, Takeo, editor, Kittler, Josef, editor, Kleinberg, Jon M., editor, Mattern, Friedemann, editor, Mitchell, John C., editor, Naor, Moni, editor, Nierstrasz, Oscar, editor, Rangan, C. Pandu, editor, Steffen, Bernhard, editor, Sudan, Madhu, editor, Terzopoulos, Demetri, editor, Tygar, Doug, editor, Vardi, Moshe Y., editor, Weikum, Gerhard, editor, Basili, Victor R., editor, Rombach, Dieter, editor, Schneider, Kurt, editor, Kitchenham, Barbara, editor, Pfahl, Dietmar, editor, and Selby, Richard W., editor

Published
2007
Full Text
View/download PDF

40. Passing the reins

Author

Erdogmus, Hakan

Subjects
Periodical editors -- Personal narratives, Computer literature, Computer science literature
Published
2010

41. Architecture meets agility

Author

Erdogmus, Hakan

Subjects
Computer programming, Modularity, Software architecture, Computer programming -- Conferences, meetings and seminars
Published
2009

43. Measurement acquiescence

Author

Erdogmus, Hakan

Subjects
Software development/engineering, Software engineering -- Measurement
Published
2008

44. So many languages, so little time

Author

Erdogmus, Hakan

Subjects
Programming language, Distributed object technology, Object-oriented programming, Reusable code, Market trend/market analysis, Programming languages -- Public opinion, Programming languages -- Forecasts and trends, Object-oriented programming -- Public opinion, Object-oriented programming -- Usage
Published
2008

45. Value of commercial software development under technology risk

Author

Erdogmus, Hakan

Subjects
JavaPC (Operating system) -- Product development -- Usage, Uncertainty (Information theory) -- Usage -- Methods, Software -- Usage -- Product development, Computer software industry -- Product development, Risk management -- Methods -- Product development -- Usage, Banking, finance and accounting industries, Business, Business, international, Software quality, Risk management, Usage, Methods, Product development
Abstract

Risk, or exposure to uncertainty, is an inherent part of software development. It is therefore an important factor in software investment decisions. This paper presents a disciplined approach to treating [...]

Published
2000

46. Tips for 'Software' authors

Author

Erdogmus, Hakan

Subjects
Technical writing -- Methods, Technical writing -- Standards, Editors -- Speeches, lectures and essays, Authors -- Vocational guidance, Periodical publishing -- Standards
Published
2007

48. OpenAlerts

Author

Falcão, João Diogo, primary, Krebs, Joel, additional, Kumar, Sumeet, additional, and Erdogmus, Hakan, additional

Published
2018
Full Text
View/download PDF

Catalog

Books, media, physical & digital resources
See catalog results