@inbook {1735, title = {On the Availability and Effectiveness of Open Source Software for Digital Signing of PDF Documents}, booktitle = {Open Source Systems: Adoption and Impact}, series = {IFIP Advances in Information and Communication Technology}, volume = {451}, year = {2015}, pages = {71-80}, publisher = {Springer International Publishing}, organization = {Springer International Publishing}, abstract = {Digital signatures are important in order to ensure the integrity and authenticity of information communicated over the Internet involving different stakeholders within and beyond the borders of different nations. The topic has gained increased interest in the European context and there is legislation and project initiatives aiming to facilitate use and standardisation of digital signatures. Open standards and open source implementations of open standards are important means for the interoperability and long-term maintenance of software systems implementing digital signatures. In this paper we report from a study aiming to establish the availability and effectiveness of software provided under an open source license for digital signing and validation of PDF documents. Specifically, we characterise the use of digital signatures in Swedish Governmental agencies, report on the interoperability of open source and proprietary licensed software for digital signatures in PDF documents, and establish the effectiveness of software provided under an open source license for validation of digital signatures in PDF documents. }, isbn = {978-3-319-17836-3}, doi = {10.1007/978-3-319-17837-0_7}, url = {http://dx.doi.org/10.1007/978-3-319-17837-0_7}, author = {Gamalielsson, Jonas and Jakobsson, Fredrik and Lundell, Bj{\"o}rn and Feist, Jonas and Gustavsson, Tomas and Landqvist, Fredric}, editor = {Damiani, Ernesto and Frati, Fulvio and Dirk Riehle and Wasserman, Anthony I.} } @inbook {1730, title = {An Empirical Study of the Relation Between Strong Change Coupling and Defects Using History and Social Metrics in the Apache Aries Project}, booktitle = {Open Source Systems: Adoption and Impact}, series = {IFIP Advances in Information and Communication Technology}, volume = {451}, year = {2015}, pages = {3-12}, publisher = {Springer International Publishing}, organization = {Springer International Publishing}, abstract = {Change coupling is an implicit relationship observed when artifacts change together during software evolution. The literature leverages change coupling analysis for several purposes. For example, researchers discovered that change coupling is associated with software defects and reveals relationships between software artifacts that cannot be found by scanning code or documentation. In this paper, we empirically investigate the strongest change couplings from the Apache Aries project to characterize and identify their impact in software development. We used historical and social metrics collected from commits and issue reports to build classification models to identify strong change couplings. Historical metrics were used because change coupling is a phenomenon associated with recurrent co-changes found in the software history. In turn, social metrics were used because developers often interact with each other in issue trackers to accomplish the tasks. Our classification models showed high accuracy, with 70-99 \% F-measure and 88-99 \% AUC. Using the same set of metrics, we also predicted the number of future defects for the artifacts involved in strong change couplings. More specifically, we were able to predict 45.7 \% of defects where these strong change couplings reoccurred in the post-release. These findings suggest that developers and projects managers should detect and monitor strong change couplings, because they can be associated with defects and tend to happen again in the subsequent release.}, isbn = {978-3-319-17836-3}, doi = {10.1007/978-3-319-17837-0_1}, url = {http://dx.doi.org/10.1007/978-3-319-17837-0_1}, author = {Wiese, Igor Scaliante and Kuroda, Rodrigo Takashi and Re, Reginaldo and Oliva, Gustavo Ansaldi and Gerosa, MarcoAur{\'e}lio}, editor = {Damiani, Ernesto and Frati, Fulvio and Dirk Riehle and Wasserman, Anthony I.} } @inbook {1734, title = {Examining Usability Work and Culture in OSS}, booktitle = {Open Source Systems: Adoption and Impact}, series = {IFIP Advances in Information and Communication Technology}, volume = {451}, year = {2015}, pages = {58-67}, publisher = {Springer International Publishing}, organization = {Springer International Publishing}, abstract = {Organizational culture has been recognized as an influential factor affecting the successes and failures of usability work in organizations; however, there is a lack of research on organizational culture in open source software (OSS) development. This paper shows that there are different kinds of cultures in OSS development projects and builds propositions on the relationship between culture and usability work in OSS development projects. Partly those are derived from the literature, partly from an exploratory empirical inquiry. We speculate whether there is an ideal culture type for usability work in OSS development or whether usability work should be modified to fit the different cultures of OSS development projects. }, keywords = {culture, empirical study, open source software, Usability}, isbn = {978-3-319-17836-3}, doi = {10.1007/978-3-319-17837-0_6}, url = {http://dx.doi.org/10.1007/978-3-319-17837-0_6}, author = {Rajanen, Mikko and Iivari, Netta}, editor = {Damiani, Ernesto and Frati, Fulvio and Dirk Riehle and Wasserman, Anthony I.} } @inbook {1741, title = {First Results About Motivation and Impact of License Changes in Open Source Projects}, booktitle = {Open Source Systems: Adoption and Impact}, series = {IFIP Advances in Information and Communication Technology}, volume = {451}, year = {2015}, pages = {137-145}, publisher = {Springer International Publishing}, organization = {Springer International Publishing}, abstract = {Free and open source software is characterized by the freedoms and criteria that are warranted by specific licenses. These licenses describe the rights and duties of the licensors and licensees. However, a licensing change may be necessary in the life of an open source project to meet legal developments or to allow the implementation of new business models. This paper examines the motivations and impacts of license changes in open source projects. After a state of the art on the subject, a set of case studies where projects changed their license is presented. Then a set of motivations to change licenses, the ways to legally make this change, the problems caused by this change and a set of benefits of the license change are discussed. }, keywords = {Business model, Contributor agreement, intellectual property, license, open source}, isbn = {978-3-319-17836-3}, doi = {10.1007/978-3-319-17837-0_13}, url = {http://dx.doi.org/10.1007/978-3-319-17837-0_13}, author = {Viseur, Robert and Gregorio Robles}, editor = {Damiani, Ernesto and Frati, Fulvio and Dirk Riehle and Wasserman, Anthony I.} } @inbook {1732, title = {How Developers Acquire FLOSS Skills}, booktitle = {Open Source Systems: Adoption and Impact}, series = {IFIP Advances in Information and Communication Technology}, volume = {451}, year = {2015}, pages = {23-32}, publisher = {Springer International Publishing}, organization = {Springer International Publishing}, abstract = {With the increasing prominence of open collaboration as found in free/libre/open source software projects and other joint production communities, potential participants need to acquire skills. How these skills are learned has received little research attention. This article presents a large-scale survey (5,309 valid responses) in which users and developers of the beta release of a popular file download application were asked which learning styles were used to acquire technical and social skills. We find that the extent to which a person acquired the relevant skills through informal methods tends to be higher if the person is a free/libre/open source code contributor, while being a professional software developer does not have this effect. Additionally, younger participants proved more likely to make use of formal methods of learning. These insights will help individuals, commercial companies, educational institutions, governments and open collaborative projects decide how they promote learning. }, keywords = {competencies, Informal learning, Non-formal learning, open source, Skills, Software developer}, isbn = {978-3-319-17836-3}, doi = {10.1007/978-3-319-17837-0_3}, url = {http://dx.doi.org/10.1007/978-3-319-17837-0_3}, attachments = {https://flosshub.org/sites/flosshub.org/files/oss-2015.pdf}, author = {Barcomb, Ann and Grottke, Michael and Stauffert, Jan-Philipp and Dirk Riehle and Jahn, Sabrina}, editor = {Damiani, Ernesto and Frati, Fulvio and Dirk Riehle and Wasserman, Anthony I.} } @inbook {1733, title = {Implicit Coordination: A Case Study of the Rails OSS Project}, booktitle = {Open Source Systems: Adoption and Impact}, series = {IFIP Advances in Information and Communication Technology}, volume = {451}, year = {2015}, pages = {35-44}, publisher = {Springer International Publishing}, organization = {Springer International Publishing}, abstract = {Previous studies on coordination in OSS projects have studied explicit communication. Research has theorized on the existence of coordination without direct communication or implicit coordination in OSS projects, suggesting that it contributes to their success. However, due to the intangible nature of implicit coordination, no studies have confirmed these theories. We describe how implicit coordination can now be measured in modern collaborative development environments. Through a case study of a popular OSS GitHub-hosted project, we report on how and why features that support implicit coordination are used. }, isbn = {978-3-319-17836-3}, doi = {10.1007/978-3-319-17837-0_4}, url = {http://dx.doi.org/10.1007/978-3-319-17837-0_4}, author = {Blincoe, Kelly and Damian, Daniela}, editor = {Damiani, Ernesto and Frati, Fulvio and Dirk Riehle and Wasserman, Anthony I.} } @inbook {1738, title = {A Qualitative Study on the Adoption of Open Source Software in Information Technology Outsourcing Organizations}, booktitle = {Open Source Systems: Adoption and Impact}, series = {IFIP Advances in Information and Communication Technology}, volume = {451}, year = {2015}, pages = {103-113}, publisher = {Springer International Publishing}, organization = {Springer International Publishing}, abstract = {The purpose of this paper is to identify the influence of Outsourcing on Open source software (OSS) and further investigate the factors that impact the adoption of OSS in global Information Technology (IT) outsourcing organizations serviced by Indian IT services providers. This exploratory research adopted positivism research philosophy and qualitative approach. An in-depth interview was conducted with ten participants across IT outsourcing organizations, IT service providers, and OSS service providers. The results show that IT outsourcing was not found to have an impact on OSS adoption. However, eight factors including management support and OSS support availability was identified to influence OSS adoption. IT services providers can utilize this research model to increase their understanding of why some IT outsourcing organizations choose to adopt OSS, while seemingly similar ones facing similar market conditions do not. }, keywords = {Diffusion of innovation, Indian IT, IT outsourcing, open source software, OSS adoption, TOE}, isbn = {978-3-319-17836-3}, doi = {10.1007/978-3-319-17837-0_10}, url = {http://dx.doi.org/10.1007/978-3-319-17837-0_10}, author = {Ramanathan, Lakshmanan and Iyer, Sundaresan Krishnan}, editor = {Damiani, Ernesto and Frati, Fulvio and Dirk Riehle and Wasserman, Anthony I.} } @inbook {1743, title = {The Right to a Contribution: An Exploratory Survey on How Organizations Address It}, booktitle = {Open Source Systems: Adoption and Impact}, series = {IFIP Advances in Information and Communication Technology}, volume = {451}, year = {2015}, pages = {157-167}, publisher = {Springer International Publishing}, organization = {Springer International Publishing}, abstract = {Free and Open Source Software (FOSS) projects are characterized by the opportunity to attract external contributors, where contributions can be in any form of copyrightable material, such as code or documentation. In most of them it is understood that contributions would be licensed in similar or compatible terms than the project{\textquoteright}s license. Some projects require a copyright transfer from the contributor to an organization for the work contributed to a project, such documents are known as copyright assignment agreements. In a way, it is similar to the copyright transfer than some researchers grant to a publisher. In this work we present an exploratory survey of the multiple visions of copyright assignments, and aggregate them in a work that researchers and practitioners could use to get informed of the alternatives available in the literature. We expect that our findings help inform practitioners on legal concerns when receiving external contributions. }, isbn = {978-3-319-17836-3}, doi = {10.1007/978-3-319-17837-0_15}, url = {http://dx.doi.org/10.1007/978-3-319-17837-0_15}, author = {Poo-Caama{\~n}o, Germ{\'a}n and German, DanielM.}, editor = {Damiani, Ernesto and Frati, Fulvio and Dirk Riehle and Wasserman, Anthony I.} } @inbook {1740, title = {The RISCOSS Platform for Risk Management in Open Source Software Adoption}, booktitle = {Open Source Systems: Adoption and Impact}, series = {IFIP Advances in Information and Communication Technology}, volume = {451}, year = {2015}, pages = {124-133}, publisher = {Springer International Publishing}, organization = {Springer International Publishing}, abstract = {Managing risks related to OSS adoption is a must for organizations that need to smoothly integrate OSS-related practices in their development processes. Adequate tool support may pave the road to effective risk management and ensure the sustainability of such activity. In this paper, we present the RISCOSS platform for managing risks in OSS adoption. RISCOSS builds upon a highly configurable data model that allows customization to several types of scopes. It implements two different working modes: exploration, where the impact of decisions may be assessed before making them; and continuous assessment, where risk variables (and their possible consequences on business goals) are continuously monitored and reported to decision-makers. The blackboard-oriented architecture of the platform defines several interfaces for the identified techniques, allowing new techniques to be plugged in. }, keywords = {Open source adoption, Open Source Projects, open source software, OSS, Risk Management, Software platform}, isbn = {978-3-319-17836-3}, doi = {10.1007/978-3-319-17837-0_12}, url = {http://dx.doi.org/10.1007/978-3-319-17837-0_12}, author = {Franch, X. and Kenett, R. and Mancinelli, F. and Susi, A. and Ameller, D. and Annosi, M.C. and Ben-Jacob, R. and Blumenfeld, Y. and Franco, O.H. and Gross, D. and Lopez, L. and Morandini, M. and Oriol, M. and Siena, A.}, editor = {Damiani, Ernesto and Frati, Fulvio and Dirk Riehle and Wasserman, Anthony I.} } @inbook {1731, title = {Scaling and Internationalizing an Agile FOSS Project: Lessons Learned}, booktitle = {Open Source Systems: Adoption and Impact}, series = {IFIP Advances in Information and Communication Technology}, volume = {451}, year = {2015}, pages = {13-22}, publisher = {Springer International Publishing}, organization = {Springer International Publishing}, abstract = {This paper describes problems that arose with the scaling and internationalization of the open source project Catrobat. The problems we faced were the lack of a centralized user management, insufficient scaling of our communication channels, and the necessity to adapt agile development techniques to remote collaboration. To solve the problems we decided to use a mix of open source tools (Git, IRC, LDAP) and commercial solutions (Jira, Confluence, GitHub) because we believe that this mix best fits our needs. Other projects can benefit from the lessons we learned during the reorganization of our knowledge base and communication tools, as infrastructure changes can be very labor-intensive and time-consuming.}, keywords = {Agile development, communication, Distributed software development, Documentation management, Internationalization, kanban, Scaling}, isbn = {978-3-319-17836-3}, doi = {10.1007/978-3-319-17837-0_2}, url = {http://dx.doi.org/10.1007/978-3-319-17837-0_2}, author = {Fellhofer, Stephan and Harzl, Annemarie and Slany, Wolfgang}, editor = {Damiani, Ernesto and Frati, Fulvio and Dirk Riehle and Wasserman, Anthony I.} } @inbook {1737, title = {Smart Route Planning Using Open Data and Participatory Sensing}, booktitle = {Open Source Systems: Adoption and Impact}, series = {IFIP Advances in Information and Communication Technology}, volume = {451}, year = {2015}, pages = {91-100}, publisher = {Springer International Publishing}, organization = {Springer International Publishing}, abstract = {Smart cities are not merely the infusion of technology into a city{\textquoteright}s infrastructure, but also require citizens interacting with their urban environment in a smart and informed manner. Transportation is key aspect of smart cities. In this paper, we present a smart route planning open-source system; SMART-GH utilizes open data and participatory sensing, where citizens actively participate in collecting data about the city in their daily environment, e.g., noise, air pollution, etc. SMART-GH then augments the routing logic with sensor data to answer queries such as {\textquoteleft}return the least noisy route{\textquoteright}. SMART-GH enables citizens to make smarter decisions about their daily commute, and subsequently improve their quality of life. }, keywords = {Open-data, open-source, Participatory sensing, Smart-city-routing}, isbn = {978-3-319-17836-3}, doi = {10.1007/978-3-319-17837-0_9}, url = {http://dx.doi.org/10.1007/978-3-319-17837-0_9}, attachments = {https://flosshub.org/sites/flosshub.org/files/nallur15.pdf}, author = {Nallur, Vivek and Elgammal, Amal and Clarke, Siobh{\'a}n}, editor = {Damiani, Ernesto and Frati, Fulvio and Dirk Riehle and Wasserman, Anthony I.} } @inbook {1739, title = {Surveying the Adoption of FLOSS by Public Administration Local Organizations}, booktitle = {Open Source Systems: Adoption and Impact}, series = {IFIP Advances in Information and Communication Technology}, volume = {451}, year = {2015}, pages = {114-123}, publisher = {Springer International Publishing}, organization = {Springer International Publishing}, abstract = {Background. The introduction of Open Source Software technologies in the Public Administration plays a key role in the spread of Open Source Software. The state of the art in the adoption of Open Source Software solutions in the Public Administration is not very well known even in areas like Lombardy, which is Italy{\textquoteright}s largest and most developed region. Goal. The goal of the investigation documented in this paper is to obtain a clear picture about the introduction of Open Source Software technologies in the Public Administration, the obstacles to their adoption, and the willingness of stakeholders to proceed with their introduction. Method. We carried out a qualitative and quantitative survey that was submitted to a representative part of the Public Administrations in Lombardy. Results. The analysis of the qualitative and quantitative information shows that several Public Administrations are already using Open Source Software technologies, though not in all application areas. The savings are one frequently cited incentive to the adoption of Open Source Software. However, one obstacle is the fact that a comprehensive law on software in the Public Administration has not yet been approved. Conclusions. Our analysis provides results that indicate a common understanding of incentives, obstacles, and opportunities for Open Source Software technologies in Public Administrations.}, keywords = {FLOSS adoption, Italy, Public administrations, Survey}, isbn = {978-3-319-17836-3}, doi = {10.1007/978-3-319-17837-0_11}, url = {http://dx.doi.org/10.1007/978-3-319-17837-0_11}, author = {Tosi, Davide and Lavazza, Luigi and Morasca, Sandro and Chiappa, Marco}, editor = {Damiani, Ernesto and Frati, Fulvio and Dirk Riehle and Wasserman, Anthony I.} } @inbook {1736, title = {A Systematic Approach for Evaluating BPM Systems: Case Studies on Open Source and Proprietary Tools}, booktitle = {Open Source Systems: Adoption and Impact}, series = {IFIP Advances in Information and Communication Technology}, volume = {451}, year = {2015}, pages = {81-90}, publisher = {Springer International Publishing}, organization = {Springer International Publishing}, abstract = {Business Process Management Systems (BPMS) provide support for modeling, developing, deploying, executing and evaluating business processes in an organization. Selecting a BPMS is not a trivial task, not only due to the many existing alternatives, both in the open source and proprietary realms, but also because it requires a thorough evaluation of its capabilities, contextualizing them in the organizational environment in which they will be used. In this paper we present a methodology to guide the systematic evaluation of BPMS that takes into account the specific needs of each organization. It provides a list of key characteristics of BPMS which are ranked by the organization and evaluated using test cases and quantitative criteria. We also present case studies of open source and proprietary BPMS evaluations following our proposal. }, keywords = {Business Process Management Systems (BPMS), Evaluation methodology, Open source and proprietary BPMS, Systematic approach}, isbn = {978-3-319-17836-3}, doi = {10.1007/978-3-319-17837-0_8}, url = {http://dx.doi.org/10.1007/978-3-319-17837-0_8}, author = {Delgado, Andrea and Calegari, Daniel and Milanese, Pablo and Falcon, Renatta and Garc{\'\i}a, Esteban}, editor = {Damiani, Ernesto and Frati, Fulvio and Dirk Riehle and Wasserman, Anthony I.} } @inbook {1742, title = {On the Variability of the BSD and MIT Licenses}, booktitle = {Open Source Systems: Adoption and Impact}, series = {IFIP Advances in Information and Communication Technology}, volume = {451}, year = {2015}, pages = {146-156}, publisher = {Springer International Publishing}, organization = {Springer International Publishing}, abstract = {The MIT/X11 and the BSD are two of the most important family of Free and Open Source (FOSS) licenses. Because these licenses are to be inserted into the files that use it, and because they are expected to be changed by those who use them, their text has suffered alterations over time. Some of this variability is the result of licenses containing template fields which allow the license to be customized to include information such as the copyright holder name. Other variability can be attributed to changes in spelling, punctuation, and adding or removing conditions. This study empirically evaluated the extent that the BSD and MIT/X11 family of licenses are varied, and the manner and frequency in which license texts vary from the original definition. The study found that the BSD family has little variability, with a significant proportion fitting the common standard. The MIT/X11 family of licenses exhibited significantly more variation, with a higher propensity to customize the license text. In addition, the MIT/X11 license has spawned several specialized variants which likely constitute different legal meanings. Based on these findings, recommendations are proposed on what variability needs to be accommodated by the Software Package Data Exchange (SPDX) which is in the process of standardizing the allowed variability of both licenses. }, isbn = {978-3-319-17836-3}, doi = {10.1007/978-3-319-17837-0_14}, url = {http://dx.doi.org/10.1007/978-3-319-17837-0_14}, author = {Maryka, Trevor and German, DanielM. and Poo-Caama{\~n}o, Germ{\'a}n}, editor = {Damiani, Ernesto and Frati, Fulvio and Dirk Riehle and Wasserman, Anthony I.} } @conference {605, title = {Assurance Evaluation for OSS Adoption in a Telco Context}, booktitle = {OSS2009: Open Source Ecosystems: Diverse Communities Interacting (IFIP 2.13)}, series = {IFIP Advances in Information and Communication Technology }, volume = {299/2009}, year = {2009}, month = {2009///}, pages = {363 - 363}, publisher = {Springer}, organization = {Springer}, chapter = {37}, abstract = {Software Assurance (SwA) is a complex concept that involves different stages of a software development process and may be defined differently depending on its focus, as for instance software quality, security, or dependability. In Computer Science, the term assurance is referred to all activities necessary to provide enough confidence that a software product will satisfy its users{\textquoteright} functional and non-functional requirements. }, issn = {978-3-642-02031-5}, doi = {http://dx.doi.org/10.1007/978-3-642-02032-2_37}, attachments = {https://flosshub.org/sites/flosshub.org/files/Assurance\%20Evaluation\%20for\%20OSS.pdf}, author = {Ardagna, Claudio and Banzi, Massimo and Damiani, Ernesto and El Ioini, Nabil and Frati, Fulvio} } @conference {532, title = {PMLite: An Open Source Solution for Process Monitoring}, booktitle = {OSS2008: Open Source Development, Communities and Quality (IFIP 2.13)}, series = {IFIP International Federation for Information Processing}, volume = {275/2008}, year = {2008}, month = {2008///}, pages = {57 - 68}, publisher = {Springer}, organization = {Springer}, chapter = {5}, abstract = {Process Monitoring represents a big challenge for organizations that aim to manage software projects adopting different development paradigms. In fact, across-process enterprise-level measurement campaigns can be difficult to enact since process attributes to retrieve are semantically diverse and may be difficult to integrate. In this paper, we present PMLite (Process Monitoring Lite) an open source solution to this problem. PMLite is based on an open metamodel and paves the way to the definition of ad-hoc open monitoring frameworks. }, issn = {978-0-387-09683-4}, doi = {http://dx.doi.org/10.1007/978-0-387-09684-1_5}, attachments = {https://flosshub.org/sites/flosshub.org/files/PMLite.pdf}, author = {Colombo, Alberto and Damiani, Ernesto and Frati, Fulvio} } @conference {669, title = {FOCSE: An OWA-based Evaluation Framework for OS Adoption in Critical Environments}, booktitle = {OSS2007: Open Source Development, Adoption and Innovation (IFIP 2.13)}, series = {IFIP International Federation for Information Processing }, volume = {234/2007}, year = {2007}, pages = {3-16}, publisher = {Springer}, organization = {Springer}, chapter = {1}, abstract = {While the vast majority of European and US companies increasingly use open source software for non-key applications, a much smaller number of companies have deployed it in critical areas such as security and access control. This is partly due to residual difficulties in performing and documenting the selection process of open source solutions. In this paper we describe the FOCSE metrics framework, supporting a specific selection process for security-related open source code. FOCSE is based on a set of general purpose metrics suitable for evaluating open source frameworks in general; however, it includes some specific metrics expressing security solutions{\textquoteright} capability of responding to continuous change in threats. We show FOCSE at work in two use cases about selecting two different types of security-related open source solutions, i.e. Single Sign-On and Secure Shell applications. }, issn = {978-0-387-72485-0}, doi = {http://dx.doi.org/10.1007/978-0-387-72486-7_1}, attachments = {https://flosshub.org/sites/flosshub.org/files/FOCSE\%20\%20an\%20\%20OWA.pdf}, author = {Ardagna, Claudio and Damiani, Ernesto and Frati, Fulvio} } @conference {679, title = {Adopting Open Source for Mission-Critical Applications: A Case Study on Single Sign-On}, booktitle = {OSS2006: Open Source Systems (IFIP 2.13)}, series = {IFIP International Federation for Information Processing}, year = {2006}, pages = {209 - 220}, publisher = {Springer}, organization = {Springer}, abstract = {In this paper, we describe a specific selection process for security-related open source code, based on a methodology aimed at evaluating open source security frameworks in general and Single-Sign-On (SSO) systems in particular. Our evaluation criteria for open source security-related software include the community{\textquoteright}s timeliness of reaction against newly discovered vulnerabilities or incidents. }, doi = {http://dx.doi.org/10.1007/0-387-34226-5_21}, attachments = {https://flosshub.org/sites/flosshub.org/files/Adapting\%20OS\%20for\%20Mission-critical\%20Applications.pdf}, author = {Ardagna, Claudio and Damiani, Ernesto and Frati, Fulvio and Reale, Salvatore} } @article {1234, title = {Open Source in Web-Based Applications}, journal = {International Journal of Information Technology and Web Engineering}, volume = {1}, year = {2006}, month = {33/2006}, pages = {81 - 94}, abstract = {Business and recreational activities on the global communication infrastructure are increasingly based on the use of remote resources and services, and on the interaction between different, remotely located parties. In such a context, Single Sign-On technologies simplify the log-on process allowing automatic access to secondary domains through a unique log-on operation to the primary domain. In this article, we evaluate different Single Sign-On implementations focusing on the central role of Open Source in the development of Web-based systems. We outline requirements for Single Sign-On systems and evaluate four existing Open Source implementations in terms of degree of fulfilment of those requirements. Finally we compare those Open Source systems with respect to some specific Open Source community patterns.}, issn = {1554-1053}, doi = {10.4018/jitwe.2006070106}, author = {Ardagna, Claudio Agostino and Frati, Fulvio and Gabriele Gianini} } @conference {742, title = {Using Open Source Middleware for Securing e-Gov Applications}, booktitle = {OSS2005: Open Source Systems }, year = {2005}, pages = {172-178}, abstract = {Nowadays, a global information infrastructure connects remote parties through the use of large scale networks, and many companies focus on developing e-services based on remote resources and on interaction between remote parties. In such a context, e-Government (e-Gov) systems became of paramount importance for the Public Administration, and many ongoing development projects are targeted on their implementation and release. For open source software to play an important role in this scenario, two main technological requirements must be fulfilled: (i) the identification and optimization of de facto standards for building e-Gov open source software components and (ii) a standard integration strategy of these components into an open source middleware layer, capable of conveying a completely open-source e-Gov solution. In this paper, we argue that e-Gov systems should be constructed on a open source middleware layer, providing full public responsibility in its development. W...}, url = {http://pascal.case.unibz.it/handle/2038/1553}, author = {Ardagna, Claudio Agostino and Damiani, Ernesto and Frati, Fulvio and Montel, Martin} }