@bachelorthesis{CloudTechnologyDecisionsinSoftwareProducingOrganizations,
title = {Cloud Technology Decisions in Software Producing Organizations},
author = {R.B.J. Schippers, Dr. S. Jansen, Dr. S. Farshidi},
url = {https://secureseco.org/ozp-reinier-schippers-2023-2/},
year  = {2023},
date = {2023-03-28},
urldate = {2023-03-28},
abstract = {Software Producing Organizations have increasingly been using cloud technology
in their product development and deployment. The decision-making process is difficult, and there is a risk of vendor lock-in. This research presents the Cloud Technology Provider Selection Decision method. It contributes (1) an overview of cloud technology decisions by small SPOs in the Netherlands, and (2) a cloud technology provider selection decision method based on literature and evaluated by industry experts. With the CTPS method, SPOs can be guided in their selection decision process. Researchers can use this method to design, update and evaluate cloud technology decisions in other scopes, domains, or periods.},
keywords = {},
pubstate = {published},
tppubtype = {bachelorthesis}
}
@bachelorthesis{IndispensableRoleofSoftwareEcosystem,
title = {The Indispensable Role of Software Ecosystem Services},
author = {L.S.M. Lausberg and C. van Schothorst and S. Jansen and S. Brinkkemper},
url = {The Indispensable Role of Software Ecosystem Serviceshttps://secureseco.org/wp-content/uploads/2023/03/The-Indispensable-Role-of-Software-Ecosystem-Services-1.pdf},
year  = {2023},
date = {2023-02-23},
urldate = {2023-02-23},
abstract = {Software ecosystems are sets of actors that collaboratively serve a market for software and services. There are services that, while not providing direct value for customers, are essential for enabling flows of software and value within the ecosystem, such as payment providers, software repositories, and application stores. Currently, there is insufficient understanding of this concept in literature, which hampers insight into these essential software ecosystem services. In this work, using a systematic literature study, we clarify the concept and identify the characteristics of software ecosystem services. With the results of this work, we can further the field of software ecosystems with a definition of such an essential building block.},
key = {Software ecosystem, Software ecosystem services, Literature Review},
keywords = {},
pubstate = {published},
tppubtype = {bachelorthesis}
}
@bachelorthesis{JuriSchotOZP-2022,
title = {Setting Up a Decentralized Autonomous Organization},
author = {Juri Schot, Slinger Jansen, Sergio Espana},
url = {https://secureseco.org/wp-content/uploads/2022/09/OZP-Juri-Schot-Setting-up-a-Decentralized-Autonomous-Organization-3.pdf},
year  = {2022},
date = {2022-09-15},
keywords = {},
pubstate = {published},
tppubtype = {bachelorthesis}
}
@workshop{nokey,
title = {FAIRSECO: An infrastructure for measuring impact of research software},
author = {Slinger Jansen and Elena Banimeneh and Siamak Farshidi },
year  = {2022},
date = {2022-09-15},
urldate = {2022-09-15},
publisher = {BENEVOL 2022: The 21st Belgium-Netherlands Software Evolution Workshop},
abstract = {Finding research software is a complex task, as research software engineers regularly search for algorithms and methods deeply embedded in large software packages during the creation of research software. Furthermore, they go through lengthy evaluation and extraction processes to find one particular algorithm relevant to their research project. Additionally, for creators of research software, it is hard to show the impact that their code has made on the field, and only very course measures exist for evaluating the success of research software. This study introduces the concept of FAIRSECO, which aims to enable research software engineers to rapidly find and extract relevant software fragments from the worldwide research software ecosystem. Research software engineers from all fields can transplant these source code fragments, maintain the provenance of source code, and easily credit the original authors of the software. Simultaneously, the platform also enables research software engineers to report on their software’s impact. With FAIRSECO, we introduce a platform for research software engineers that creates a “method economy”, ie, where smaller granularity reuse becomes possible while increasing FAIRness (Findable, Accessible, Interoperable, and Reusable) of the worldwide research software ecosystem.},
keywords = {},
pubstate = {published},
tppubtype = {workshop}
}
@workshop{nokey,
title = {Benchmarking the Vulnerability Detection Capabilities of Software Analysis Tools},
author = {Elena Banimeneh and Slinger Jansen},
year  = {2022},
date = {2022-09-15},
urldate = {2022-09-15},
publisher = {BENEVOL 2022: The 21st Belgium-Netherlands Software Evolution Workshop},
abstract = {Code cloning and copy-pasting code fragments is common practice in software engineering. If security vulnerabilities exist in a cloned code segment, those vulnerabilities may spread in the related software, potentially leading to security incidents. Code similarity is one effective approach to detect vulnerabilities hidden in software projects. However, due to the complexity, size, and diversity of source code, current methods suffer from low accuracy, and poor performance. Moreover, most existing clone detection techniques focus on a limited set of programming languages in the detection process. We propose to solve these problems using SearchSECO, a software analysis tool that detects vulnerabilities in multiple programming languages.},
keywords = {},
pubstate = {published},
tppubtype = {workshop}
}
@workshop{nokey,
title = {A code search engine for software ecosystems},
author = {Chris Pfaff and Elena Banimeneh and Siamak Farshidi and Slinger Jansen},
year  = {2022},
date = {2022-09-15},
urldate = {2022-09-15},
publisher = {BENEVOL 2022: The 21st Belgium-Netherlands Software Evolution Workshop},
abstract = {Searching and reusing source code play an increasingly significant role in the daily tasks of software developers. While code repositories, such as GitHub and Stackoverflow, may provide some results, a code search engine is generally considered most helpful when searching for code snippets as they typically crawl data from a wide range of code repositories. Code search engines enable software developers to search for code snippets using search terms. The accuracy of the search results can be increased if the searchers’ intent can be modeled and predicted correctly. This study proposes a novel code search engine to model user intents through a dialogue system and then suggests a ranked list of code snippets that can meet user requirements.},
keywords = {},
pubstate = {published},
tppubtype = {workshop}
}
@article{TrustSECO-SLR-2022,
title = {A Systematic Literature Review on Trust in the Software Ecosystem},
author = {Fang Hou, Slinger Jansen},
url = {https://secureseco.org/wp-content/uploads/2022/09/TrustSECO-SLR-EMSE-Draft.pdf},
year  = {2022},
date = {2022-09-09},
journal = {Empirical Software Engineering},
keywords = {},
pubstate = {published},
tppubtype = {article}
}
@bachelorthesis{AshotGrigorian2022,
title = {A Competition Analysis of Software Assurance Tools},
author = {Ashot Grigorian},
editor = {Slinger Jansen
Gerard Wagenaar},
url = {https://secureseco.org/wp-content/uploads/2022/08/OZP___Ashot_Grigorian-A-Competition-Analysis-of-Software-Assurance-Platforms-1-1.pdf},
year  = {2022},
date = {2022-08-18},
urldate = {2022-08-18},
keywords = {},
pubstate = {published},
tppubtype = {bachelorthesis}
}
@bachelorthesis{WinsomeKurniawan2022,
title = {Voting Mechanism Selection for Decentralized Autonomous Organizations},
author = {Winsome Kurniawan},
editor = {Slinger Jansen
Jan Martijn van der Werg},
url = {https://secureseco.org/wp-content/uploads/2022/08/Voting_Mechanism_Selection_for_Decentralized_Autonomous_Organizations-3-1.pdf},
year  = {2022},
date = {2022-08-18},
urldate = {2022-08-18},
keywords = {},
pubstate = {published},
tppubtype = {bachelorthesis}
}
@misc{deVries-Interview2021,
title = {An Interview Study on the Value Proposition of a Platform for Software Trust},
author = {Arthur de Vries and Slinger Jansen and Fang Hou},
url = {https://www.dropbox.com/s/xcqy78u0pipl0tp/OZP___Arthur_de_Vries%20%282%29.pdf?dl=0},
year  = {2021},
date = {2021-07-07},
abstract = {The software ecosystem is a trust-rich part of the world. Collaboratively, software engineers trust major hubs in the ecosystem, such as package managers, repository services, and programming language ecosystems. This trust, however, is often broken by vulnerabilities, ransomware, and abuse from malignant actors. Organizations that deal with software trust aim at finding a way to secure the software ecosystem.  In this paper is discussed what the value proposition of such an organization is. An interview study is conducted among domain experts to identify these. By analyzing the results from the interviews we can conclude that that organizations that deal with software trust should focus on software development companies. The value is in assisting these in complying with existing regulations. In this study we contribute a business model canvas and persona for the TrustSECO project.},
keywords = {Business Modeling, Interview, trustSECO, Value Proposition},
pubstate = {published},
tppubtype = {misc}
}
@misc{Slikker2021,
title = {Designing a Cybersecurity Risk Assessment Method for Distributed Ledger Technology Applications},
author = {Marre Slikker and Slinger Jansen and Elena Banimeneh},
url = {https://www.dropbox.com/s/3umjnn065xcenod/Bachelor_Thesis_Marre_Slikker___DLT___SSI_security%20%282%29.pdf?dl=1},
year  = {2021},
date = {2021-07-07},
abstract = {There is an absence of a risk assessment method for distributed ledger applications. Information about cybersecurity risks of distributed ledger technology is very fragmented, while its adoption increases daily. Distributed ledger technology is an umbrella term for multiple variations of the technology that utilize a shared distributed ledger, for instance blockchain technology. Self-sovereign identity is another example of an application of distributed ledger technology, which is in essence an identity management system which allows individuals to fully own and manage their digital identity. Understanding the risks that come with the use of distributed ledger technology is a first step towards realizing its full potential, and for that reason, this study aims to raise awareness on the cyber security domain of distributed ledger technology, by designing a risk assessment method for distributed ledger technology applications that use self-sovereign identity, through conducting a literature research, method engineering and performing a case study. To discover how such a method could be developed, which is the main research question in this study, a literature research was performed to provide a strong theoretical base. During the method engineering process, the method was designed. This designed method was tested through a case study. Finally, the method was evaluated and it was concluded that the method is effective for conducting cyber security risk assessments for distributed ledger applications. It also led to the creation of a comprehensive risk database for the technology, and to the introduction of a new cyber security risk, the Tyranny attack.},
keywords = {Cybersecurity, Distributed Ledger Technology, Risk Assessment},
pubstate = {published},
tppubtype = {misc}
}
@mastersthesis{Peirs2021,
title = {Agent-based modeling as a tool to support decision making rules used by smart contracts in DLT based communities},
author = {Tom Peirs and Slinger Jansen},
url = {https://www.dropbox.com/s/b3zazjw0iw6p6h4/Thesis-Peirs-2021.pdf?dl=1},
year  = {2021},
date = {2021-06-03},
abstract = {Various issues are surrounding the relatively new area of smart contract design. 
These problems are very diverse in nature ranging from performance issues to exploiting of contracts.
The concerns stem from the transformation of domain information to smart contract immutability to developers coding insecure smart contracts.
Hence, there is a compelling need to study smart contracts to find and address vulnerabilities before deployment on a ledger due to its immutability. 
This study aims to support the design of a code search community platform through agent-based modeling by simulating systems requirements.
In this paper we present an abstract replication of institutional emergence patterns. We used the ADICO grammar of institutions as the basic structure to model system requirements. We establish a common pool resource of institutional statements through a standardized method, which is then used to simulate smart contracts through agent-based modeling.
We demonstrated through a case study the usage of the ADICO framework. We observe common institutional patterns which are used to study smart contract design in an agent-based environment.
Institutions made a major contribution to the governance of common-pool resource systems in a simplified environment.
In addition, we show how different domain concepts regarding agent-based modeling and smart contract design can be mapped.
Furthermore, this study generates open-source software to simulate a decentralized system as an agent-based model through Repast Simphony, from which insights regarding sustainability can be gathered.
We conclude that agent-based modeling is a foundational tool for designing smart contracts in new DLT based communities.},
keywords = {agent-based modeling, decentralized autonomous organizations, simulation},
pubstate = {published},
tppubtype = {mastersthesis}
}
@article{Farshidi2021,
title = {A decision model for programming language ecosystem selection: Seven industry case studies},
author = {Siamak Farshidi and Slinger Jansen and Mahdi Deldar},
url = {https://www.sciencedirect.com/science/article/pii/S0950584921001051},
doi = {https://doi.org/10.1016/j.infsof.2021.106640},
issn = {0950-5849},
year  = {2021},
date = {2021-05-05},
journal = {Information and Software Technology},
volume = {139},
pages = {106640},
abstract = {Context:
Software development is a continuous decision-making process that mainly relies on the software engineer’s experience and intuition. One of the essential decisions in the early stages of the process is selecting the best fitting programming language ecosystem based on the project requirements. A significant number of criteria, such as developer availability and consistent documentation, in addition to the number of available options in the market, lead to a challenging decision-making process. As the selection of programming language ecosystems depends on the application to be developed and its environment, a decision model is required to analyze the selection problem using systematic identification and evaluation of potential alternatives for a development project.

Method:
Recently, we introduced a framework to build decision models for technology selection problems in software production. Furthermore, we designed and implemented a decision support system that uses such decision models to support software engineers with their decision-making problems. This study presents a decision model based on the framework for the programming language ecosystem selection problem.

Results:
The decision model has been evaluated through seven real-world case studies at seven software development companies. The case study participants declared that the approach provides significantly more insight into the programming language ecosystem selection process and decreases the decision-making process’s time and cost.

Conclusion:
With the decision model, software engineers can more rapidly evaluate and select programming language ecosystems. Having the knowledge in the decision model readily available supports software engineers in making more efficient and effective decisions that meet their requirements and priorities. Furthermore, such reusable knowledge can be employed by other researchers to develop new concepts and solutions for future challenges.},
keywords = {programming language selection, technology selection},
pubstate = {published},
tppubtype = {article}
}
@misc{FlorisJansen2021,
title = {TrustSECO: An Interview Survey into Software Trust},
author = {Floris Jansen and Slinger Jansen and Fang Hou},
url = {https://arxiv.org/abs/2101.06138},
year  = {2021},
date = {2021-01-29},
howpublished = {Arxiv},
keywords = {trustSECO},
pubstate = {published},
tppubtype = {misc}
}
@workshop{nokey,
title = {TrustSECO: A Distributed Infrastructure for Providing Trust in the Software Ecosystem.},
author = {Fang Hou and Siamak Farshidi and Slinger Jansen},
url = {https://secureseco.org/wp-content/uploads/2022/02/TrustSECO_Intro___BC4IS-draft.pdf},
year  = {2021},
date = {2021-01-01},
urldate = {2021-01-01},
abstract = {The software ecosystem is a trust-rich part of the world. Collaboratively, software engineers trust major hubs in the ecosystem, such as package managers, repository services, and programming language ecosystems. However, trust entails the assumption of risks. In this paper, we lay out the risks we are taking by blindly trusting these hubs when using information systems. Secondly, we present a vision for a trust-recording mechanism in the software ecosystem that mitigates the presented risks. This vision is realized in TrustSECO: a distributed infrastructure that collects, stores, and discloses trust facts about information systems. If our community manages to implement this mechanism, we can create an urgently needed healthy and secure software ecosystem. Finally, we report on the current status of the project.},
howpublished = {Proceedings of the Workshop on Blockchain for Information Systems Workshop},
keywords = {trustSECO},
pubstate = {published},
tppubtype = {workshop}
}
@inproceedings{vanderBruntink2020,
title = {SearchSECO: A Worldwide Index of the Open Source Software Ecosystem.},
author = {Slinger Jansen and Siamak Farshidi and Georgios Gousios and Joost Visser and Tijs van der Storm and Magiel Bruntink},
url = {https://secureseco.org/wp-content/uploads/2020/11/SearchSECO_Benevol_2020_Camera_ready.pdf},
year  = {2020},
date = {2020-11-19},
booktitle = {Proceedings of the 19th Belgium-Netherlands Software Evolution Workshop},
abstract = {Repository mining research is a data-intensive domain with a focus on source code. There are many ways to search
for code in the worldwide software ecosystem, but these search
methods are inefficient and only cover small parts of the software
ecosystem. One of the problems is granularity: it is possible to
search through code on a file-level and cover a significant part
of the software ecosystem or search for a line of code and only
cover a small part of the software ecosystem, but not both.
We propose SearchSECO: a language-agnostic search engine
and research platform that searches through abstract representations of source code methods. We use SearchSECO to search
across the worldwide software ecosystem and index the encountered methods. With SearchSECO, the field is advanced because
it (1) provides finer-grained and more efficient searches, (2) covers
more of the software ecosystem than other search mechanisms,
and (3) provides mechanisms for source code provenance.},
keywords = {Repository Mining},
pubstate = {published},
tppubtype = {inproceedings}
}
@conference{0c,
title = {A framework for designing self-sustaining ecosystems with Blockchain},
author = {Swayam Shah and Slinger Jansen},
url = {https://secureseco.org/wp-content/uploads/2020/11/A_framework_for_designing_self_sustaining_ecosystems___ISCOB1-1.pdf},
year  = {2020},
date = {2020-11-18},
booktitle = {The 11th International Conference on Software Business (ICSOB)},
keywords = {Distributed Ledger TechnologyBlockchain, Self-Sustaining Ecosystem, Socio-technical system, Token Engineering},
pubstate = {published},
tppubtype = {conference}
}
@article{pelt2020defining,
title = {Defining Blockchain Governance: A Framework for Analysis and Comparison},
author = {Rowan van Pelt and Slinger Jansen and Djuri Baars and Sietse Overbeek},
url = {https://slingerjansen.files.wordpress.com/2020/03/defining-blockchain-governance-a-framework-for-analysis-and-comparison.pdf},
year  = {2020},
date = {2020-01-01},
journal = {Information Systems Management},
pages = {1--21},
publisher = {Taylor & Francis},
keywords = {},
pubstate = {published},
tppubtype = {article}
}
@article{farshidi2020decision,
title = {Decision support for blockchain platform selection: Three industry case studies},
author = {Siamak Farshidi and Slinger Jansen and Sergio Espa{~n}a and Jacco Verkleij},
url = {https://slingerjansen.files.wordpress.com/2019/12/blockchain_selection__tem__v1__deadline__27_07_2019.pdf},
year  = {2020},
date = {2020-01-01},
journal = {IEEE Transactions on Engineering Management},
publisher = {IEEE},
keywords = {},
pubstate = {published},
tppubtype = {article}
}