面向操作系统可靠性保障的开源软件供应链
作者:
作者单位:

作者简介:

梁冠宇(1988-),男,硕士,主要研究领域为云计算,操作系统,智能化运维.
武延军(1979-),男,博士,博士生导师,CCF高级会员,主要研究领域为操作系统,系统安全.
吴敬征(1982-),男,博士,CCF专业会员,主要研究领域为系统安全,漏洞挖掘,操作系统.
赵琛(1967-),男,博士,博士生导师,CCF高级会员,主要研究领域为编译技术,操作系统,网络软件.

通讯作者:

武延军,E-mail:yanjun@iscas.ac.cn

中图分类号:

基金项目:

中国科学院战略性科技先导专项(XDC05040100);国家重点研发计划(2017YFB0801900);中国科学院前沿科学重点研究计划(ZDBS-LY-JSC038);国家自然科学基金(61772507)


Open Source Software Supply Chain for Reliability Assurance of Operating Systems
Author:
Affiliation:

Fund Project:

Bulletin of Chinese Academy of Sciences (XDC05040100); National Key Research and Development Program of China (2017YFB0801900); Key Research Program of Frontier Sciences, Chinese Academy of Sciences (ZDBS-LY-JSC038); National Natural Science Foundation of China (61772507)

  • 摘要
  • |
  • 图/表
  • |
  • 访问统计
  • |
  • 参考文献
  • |
  • 相似文献
  • |
  • 引证文献
  • |
  • 资源附件
  • |
  • 文章评论
    摘要:

    软件可靠性是软件工程领域中的研究热点之一,故障率分析是软件可靠性的典型研究方法.然而,软件构建模式已从单体模式演进到以开源软件为代表的规模化协作模式,操作系统作为代表性产物之一,所含开源软件之间通过组合关系和依赖关系,形成了一个包含上万节点的供应关系网络.典型方法缺乏对供应关系的考量,无法准确识别和评估因此而引入的软件可靠性问题.把供应链概念体系拓展到开源软件领域,提出一种基于知识的面向开源协作模式下软件供应可靠性的管理方法:面向开源软件生态进行本体设计,构建开源软件知识图谱,实现知识的提取、存储和管理,以知识为驱动,结合传统的供应链管理方法,提出一组面向开源软件供应链的可靠性管理方法,构成一套开源软件供应链管理系统.实验以Linux操作系统发行版的构建为例,展示了开源软件供应链对操作系统可靠性的支撑能力.结果表明,开源软件供应链将有助于理清和评估大型复杂系统软件的可靠性风险.

    Abstract:

    Software reliability is one of the research hotspots in the field of software engineering, and failure rate analysis is a typical research method for software reliability. However, the software construction mode has evolved from a single mode to a large-scale collaborative model represented by open source software. As one of the representative products, the operating system included open source software connected through combining relationships and dependencies has formed a supply network of tens of thousands of nodes. Typical methods lack consideration of supply relationships and cannot accurately identify and evaluate the software reliability issues introduced as a result. This article extends the concept of supply chain to the field of open source software, proposes a knowledge-based management method for software supply reliability in collaborative model: design the ontological body for the open source software ecosystem firstly, and then construct the knowledge graph of open source software to achieve the extraction, storage and management of knowledge; driven by knowledge, combined with traditional supply chain management methods, A set of reliability management methods for open source software supply chain is proposed, which constitutes a set of open source software supply chain management system. Taking the construction of a Linux operating system distribution as an example in experiment, it demonstrates how the open source software supply chain will support the reliability of the operating system. Results show that the open source software supply chain will help to clarify and evaluate the reliability risk of large complex system software.

    参考文献
    相似文献
    引证文献
引用本文

梁冠宇,武延军,吴敬征,赵琛.面向操作系统可靠性保障的开源软件供应链.软件学报,2020,31(10):3056-3073

复制
分享
文章指标
  • 点击次数:
  • 下载次数:
  • HTML阅读次数:
  • 引用次数:
历史
  • 收稿日期:2020-02-16
  • 最后修改日期:2020-04-04
  • 录用日期:
  • 在线发布日期: 2020-06-11
  • 出版日期: 2020-10-06
您是第位访问者
版权所有:中国科学院软件研究所 京ICP备05046678号-3
地址:北京市海淀区中关村南四街4号,邮政编码:100190
电话:010-62562563 传真:010-62562533 Email:jos@iscas.ac.cn
技术支持:北京勤云科技发展有限公司

京公网安备 11040202500063号