Evaluation indicators for open-source software: a review
Open Access
- 2 June 2021
- journal article
- review article
- Published by Springer Science and Business Media LLC in Cybersecurity
- Vol. 4 (1), 1-24
- https://doi.org/10.1186/s42400-021-00084-8
Abstract
In recent years, the widespread applications of open-source software (OSS) have brought great convenience for software developers. However, it is always facing unavoidable security risks, such as open-source code defects and security vulnerabilities. To find out the OSS risks in time, we carry out an empirical study to identify the indicators for evaluating the OSS. To achieve a comprehensive understanding of the OSS assessment, we collect 56 papers from prestigious academic venues (such as IEEE Xplore, ACM Digital Library, DBLP, and Google Scholar) in the past 21 years. During the process of the investigation, we first identify the main concerns for selecting OSS and distill five types of commonly used indicators to assess OSS. We then conduct a comparative analysis to discuss how these indicators are used in each surveyed study and their differences. Moreover, we further undertake a correlation analysis between these indicators and uncover 13 confirmed conclusions and four cases with controversy occurring in these studies. Finally, we discuss several possible applications of these conclusions, which are insightful for the research on OSS and software supply chain.Keywords
This publication has 83 references indexed in Scilit:
- Q’ FACTO 10-A Commercial Off-the-Shelf Component Quality Model ProposalJournal of Software Engineering, 2009
- Impact of license choice on Open Source Software development activityJournal of the American Society for Information Science and Technology, 2009
- Determinants of the Choice of Open Source Software LicenseJournal of Management Information Systems, 2008
- Increased security through open sourceCommunications of the ACM, 2007
- Information systems success in free and open source software development: theory and measuresSoftware Process: Improvement and Practice, 2006
- Sponsorship and the Image of the SponsorEuropean Journal of Marketing, 1991
- Evaluating With SenseEvaluation Review, 1983
- An introduction to the logic, assumptions, and basic analytic procedures of two-stage least squares.Psychological Bulletin, 1978
- A Multiple Comparison Procedure for Comparing Several Treatments with a ControlJournal of the American Statistical Association, 1955
- Individual Comparisons by Ranking MethodsBiometrics Bulletin, 1945