• Publications
  • Influence
Security of open source web applications
TLDR
In an empirical study of fourteen widely used open source PHP web applications, we found that vulnerability density of the aggregate code base decreased from 8.88 vulnerabilities/KLOC to 3.30 from Summer 2006 to Summer 2008. Expand
  • 26
  • 4
Girls on the go: a CS summer camp to attract and inspire female high school students
In this paper, we describe our experience running "Girls on the Go: The Mobile Computing College Experience." We decided to do a residential summer camp for HS-age girls to achieve two goals: toExpand
  • 27
  • 2
Agile Software Development in Practice
TLDR
We present a view into the state of the practice in agile software development based on extensive analysis of 2,229 completed Comparative Agility (CA) surveys. Expand
  • 13
  • 2
  • PDF
SAVI: Static-Analysis Vulnerability Indicator
TLDR
Open source software presents new opportunities for software acquisition but introduces risks. Expand
  • 28
  • 2
An informatics perspective on computational thinking
TLDR
In this paper, we examine computational thinking and its connections to critical thinking from the perspective of in- formatics, using both lectures and active learning sessions. Expand
  • 20
  • 2
  • PDF
An Empirical Study of the Evolution of PHP Web Application Security
TLDR
We perform an empirical investigation of the evolution of vulnerabilities in fourteen of the most widely used open source PHP web applications, finding that vulnerabilities densities declined from 28.12 to 19.96 vulnerabilities per thousand lines of code. Expand
  • 24
  • 2
  • PDF
Trace Matrix Analyzer (TMA)
TLDR
A Trace Matrix (TM) represents the relationship between software engineering artifacts and is foundational for many software assurance techniques such as criticality analysis. Expand
  • 3
  • 2
  • PDF
PRESENCING: CHANNELING THERAPEUTIC EFFECTIVENESS WITH THE MENTALLY ILL IN A STATE PSYCHIATRIC HOSPITAL
Twenty-three nursing staff in a state psychiatric hospital in the eastern United States narrated their experiences in establishing meaningful presence with seriously and persistently mentally illExpand
  • 10
  • 1
Idea: Java vs. PHP: Security Implications of Language Choice for Web Applications
TLDR
We studied whether the variation in vulnerability density is greater between languages or between different applications written in a single language by comparing eleven open source web applicationsWritten in Java with fourteen such applicationswritten in PHP. Expand
  • 18
  • 1
  • PDF
Impact of plugins on the security of web applications
TLDR
We present a study of vulnerabilities in twelve open source web applications and 13,778 plugins for those applications. Expand
  • 7
  • 1