Estimating the Attack Surface from Residual Vulnerabilities in Open Source Software Supply Chain.
Dapeng YanYuqing NiuKui LiuZhe LiuZhiming LiuTegawendé F. BissyandéPublished in: QRS (2021)
Keyphrases
- supply chain
- open source software
- open source
- supply chain management
- source code
- software development
- attack graph
- bullwhip effect
- quantity discount
- decision making
- service level
- operating costs
- open source software development
- supplier selection
- inventory management
- mailing lists
- inventory control
- information security
- customer demand
- rfid technology
- stackelberg game
- revenue sharing
- cost savings
- distribution centers
- lead time
- data mining