Datamation Logo

DHS Program Helps Reduce Open Source Defects

Home Security
By Sean Michael Kerner
May 20, 2008
Datamation content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More.

Nearly two and a half years ago, the U.S. Department of Homeland Security
(DHS) issued a multi-year grant to help improve open source code quality. It appears
the DHS investment has paid off.

According to a report from code analysis vendor Coverity, the DHS-sponsored
effort has helped to reduce “defect density” in 250 open source projects
by 16 percent over the past two years. That defect reduction translates into
the elimination of more than 8,500 defects.

The report on the benefits of the DHS open source security efforts comes at a time when open source software is increasingly becoming part of critical infrastructure both in the government and in U.S. enterprises.

“The improvement of project defect density is such that when we started the
effort they were at 0.30 defects per thousand lines of code and now they are
down to on average 0.25 defects per thousand lines of code,” David Maxwell,
open source strategist for Coverity, told InternetNews.com. “I know
that feels like a small percentage change, but when it’s over 55 million code
it adds up.”

Coverity is a code analysis vendor and runs its scanning tools on the
included open source projects to identify coding errors.

While many projects have benefited from running the DHS-sponsored Coverity
scan, not all have actually managed to reduce their defects.

“There is a graph in the report that shows some projects have significant
improvements and some that haven’t been actively using the results from the
scan actually have increased in defect density,” Maxwell said.

The report graph that was provided to InternetNews.com
doesn’t fully reveal which projects did not improve. The report, however, did identify Perl, PHP,
Python, Postfix, Samba and TCL among the projects that have been able to
reduce their code defect densities by using data from the Coverity scans.

This article was first published on InternetNews.com. To read the full article, click here.

  SEE ALL
ARTICLES  
Previous Article
Open Source Dimdim Eagle Takes Flight
Next Article
Google: Gmail Success Spells SaaS Superiority

Subscribe to Data Insider

Learn the latest news and best practices about data science, big data analytics, artificial intelligence, data security, and more.

Similar articles

AI

AI in Cybersecurity: The Comprehensive Guide to Modern Security

AI in Cybersecurity: The Comprehensive Guide to Modern Security
Security

What Is Cybersecurity? Definitions, Practices, Threats

What Is Cybersecurity? Definitions, Practices, Threats
Security

How to Secure a Network: 9 Key Actions to Secure Your Data

How to Secure a Network: 9 Key Actions to Secure Your Data
Datamation Logo

Datamation is the leading industry resource for B2B data professionals and technology buyers. Datamation's focus is on providing insight into the latest trends and innovation in AI, data security, big data, and more, along with in-depth product recommendations and comparisons. More than 1.7M users gain insight and guidance from Datamation every year.

Advertisers

Advertise with TechnologyAdvice on Datamation and our other data and technology-focused platforms.

Advertise with Us

Our Brands

Technologyadvice ServerWatch TechRepublic Enterprise Networking Planet eWeek Project Management eSecurity Planet IT Business Edge
Privacy Policy Terms & Conditions About Contact Advertise California - Do Not Sell My Information

Property of TechnologyAdvice.
© 2025 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.