FierceCIOFierceCIOTechWatchFierceMobileITFierceContentManagement   FierceVoIPFierceHealthITFierceFinanceIT
About | Sample | Privacy

Number of open-source code defects going down

Tools
Tags
dhs
Programming Code
Static Analysis
Department Of Homeland Defense
Open Source Applications
Open Source Projects
Defect Density
Spending and Budgeting
Department of Homeland Security

The results of a two-year study commissioned by the Department of Homeland Defense (DHS) on the quality of programming code in open-source projects have been released. The entire audit was founded on concerns that open-sourced software, though widely deployed, was never subjected to a systematic audit. On that basis, a budget was allocated in 2006 to specifically develop automated static analysis tools to vet open-sourced projects.

The results were gratifying. From an average of 0.30 defects per thousand lines of code (LOC) in 2006, the average defect density has fallen to 0.25 defects per thousand LOC. This represents a 16 percent reduction of defect density achieved over a span of just two years--a notable gain in quality. Obviously, there is no easy way to determine just how "exploitable" each flaw was, though the DHS's original goal to harden open-source applications seems to be achieved.

For more on this DHS-sponsored audit:
- check out this Ars Technica article

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.

More information about formatting options

What is 61 + 10?
To combat spam, please solve the math question above.