We stand with Ukraine  

Nusrat Zahan

Orcid: 0000-0002-2738-4118

According to our database1, Nusrat Zahan authored at least 23 papers between 2018 and 2025.

Collaborative distances:
  • Dijkstra number2 of four.
  • Erdős number3 of four.

Timeline

Legend:

Book 
In proceedings 
Article 
PhD thesis 
Dataset
Other 

Links

On csauthors.net:

Bibliography

2025
Research Directions in Software Supply Chain Security.
[BibTeX]
[DOI]
Laurie A. Williams
,
Giacomo Benedetti
,
Sivana Hamer
,
Ranindya Paramitha
,
Imranur Rahman
,
Mahzabin Tamanna
,
Greg Tystahl
,
Nusrat Zahan
,
Patrick Morrison
,
Yasemin Acar
,
Michel Cukier
,
Christian Kästner
,
Alexandros Kapravelos
,
Dominik Wermke
,
William Enck
ACM Trans. Softw. Eng. Methodol., June, 2025

Comparing effectiveness and efficiency of Interactive Application Security Testing (IAST) and Runtime Application Self-Protection (RASP) tools in a large java-based system.
[BibTeX]
[DOI]
Aishwarya Seth
,
Saikath Bhattacharya
,
Sarah Elder
,
Nusrat Zahan
,
Laurie A. Williams
Empir. Softw. Eng., June, 2025

Prioritizing Security Practice Adoption: Empirical Insights on Software Security Outcomes in the npm Ecosystem.
[BibTeX]
[DOI]
Nusrat Zahan
,
Laurie A. Williams
CoRR, April, 2025

Can the Rising Tide of Software Supply Chain Attacks Raise All Software Engineering Boats?
[BibTeX]
[DOI]
Laurie A. Williams
,
Sivana Hamer
,
Nusrat Zahan
Proceedings of the 33rd ACM International Conference on the Foundations of Software Engineering, 2025

Leveraging Large Language Models to Detect NPM Malicious Packages.
[BibTeX]
[DOI]
Nusrat Zahan
,
Philipp Burckhardt
,
Mikola Lysenko
,
Feross Aboukhadijeh
,
Laurie A. Williams
Proceedings of the 47th IEEE/ACM International Conference on Software Engineering, 2025

2024
S3C2 Summit 2023-11: Industry Secure Supply Chain Summit.
[BibTeX]
[DOI]
Nusrat Zahan
,
Yasemin Acar
,
Michel Cukier
,
William Enck
,
Christian Kästner
,
Alexandros Kapravelos
,
Dominik Wermke
,
Laurie A. Williams
CoRR, 2024

Characterizing Dependency Update Practice of NPM, PyPI and Cargo Packages.
[BibTeX]
[DOI]
Imranur Rahman
,
Nusrat Zahan
,
Stephen Magill
,
William Enck
,
Laurie A. Williams
CoRR, 2024

Shifting the Lens: Detecting Malware in npm Ecosystem with Large Language Models.
[BibTeX]
[DOI]
Nusrat Zahan
,
Philipp Burckhardt
,
Mikola Lysenko
,
Feross Aboukhadijeh
,
Laurie A. Williams
CoRR, 2024

MalwareBench: Malware samples are not enough.
[BibTeX]
[DOI]
Nusrat Zahan
,
Philipp Burckhardt
,
Mikola Lysenko
,
Feross Aboukhadijeh
,
Laurie A. Williams
Proceedings of the 21st IEEE/ACM International Conference on Mining Software Repositories, 2024

2023
Software Bills of Materials Are Required. Are We There Yet?
[BibTeX]
[DOI]
Nusrat Zahan
,
Elizabeth Lin
,
Mahzabin Tamanna
,
William Enck
,
Laurie A. Williams
IEEE Secur. Priv., 2023

OpenSSF Scorecard: On the Path Toward Ecosystem-Wide Automated Security Metrics.
[BibTeX]
[DOI]
Nusrat Zahan
,
Parth Kanakiya
,
Brian Hambleton
,
Shohanuzzaman Shohan
,
Laurie A. Williams
IEEE Secur. Priv., 2023

Do Software Security Practices Yield Fewer Vulnerabilities?
[BibTeX]
[DOI]
Nusrat Zahan
,
Shohanuzzaman Shohan
,
Dan Harris
,
Laurie A. Williams
Proceedings of the 45th IEEE/ACM International Conference on Software Engineering: Software Engineering in Practice, 2023

Software Supply Chain Risk Assessment Framework.
[BibTeX]
[DOI]
Nusrat Zahan
Proceedings of the 45th IEEE/ACM International Conference on Software Engineering: ICSE 2023 Companion Proceedings, 2023

Advancing Safety Through IoT: Gas Detection and Automation Systems.
[BibTeX]
[DOI]
Tasmina Akter Rupina
,
Pusmita Barua
,
Israt Binteh Habib
,
Tanjim Mahmud
,
Lutfun Nahar
,
Nusrat Zahan
,
Mohammad Shahadat Hossain
,
Karl Andersson
ICO (2), 2023

2022
Do I really need all this work to find vulnerabilities?
[BibTeX]
[DOI]
Sarah Elder
,
Nusrat Zahan
,
Rui Shu
,
Monica Metro
,
Valeri Kozarev
,
Tim Menzies
,
Laurie A. Williams
Empir. Softw. Eng., 2022

PREPRINT: Do OpenSSF Scorecard Practices Contribute to Fewer Vulnerabilities?
[BibTeX]
[DOI]
Nusrat Zahan
,
Shohanuzzaman Shohan
,
Dan Harris
,
Laurie A. Williams
CoRR, 2022

PREPRINT: Can the OpenSSF Scorecard be used to measure the security posture of npm and PyPI?
[BibTeX]
[DOI]
Nusrat Zahan
,
Parth Kanakiya
,
Brian Hambleton
,
Shohanuzzaman Shohan
,
Laurie A. Williams
CoRR, 2022

Do I really need all this work to find vulnerabilities? An empirical case study comparing vulnerability detection techniques on a Java application.
[BibTeX]
[DOI]
Sarah Elder
,
Nusrat Zahan
,
Rui Shu
,
Monica Metro
,
Valeri Kozarev
,
Tim Menzies
,
Laurie A. Williams
CoRR, 2022

What are Weak Links in the npm Supply Chain?
[BibTeX]
[DOI]
Nusrat Zahan
,
Thomas Zimmermann
,
Patrice Godefroid
,
Brendan Murphy
,
Chandra Shekhar Maddila
,
Laurie A. Williams
Proceedings of the 44th IEEE/ACM International Conference on Software Engineering: Software Engineering in Practice, 2022

2021
Structuring a Comprehensive Software Security Course Around the OWASP Application Security Verification Standard.
[BibTeX]
[DOI]
Sarah Elder
,
Nusrat Zahan
,
Valeri Kozarev
,
Rui Shu
,
Tim Menzies
,
Laurie A. Williams
Proceedings of the 43rd IEEE/ACM International Conference on Software Engineering: Software Engineering Education and Training, 2021

Breast Cancer Prediction with Gaussian Process Using Anthropometric Parameters.
[BibTeX]
[DOI]
Sheikh Tonmoy
,
Habiba Khan Hiya
,
Md. Zahid Hasan
,
K. M. Zubair Hasan
,
Nusrat Zahan
Proceedings of the 12th International Conference on Computing Communication and Networking Technologies, 2021

A Multi-attribute Decision Making Approach for Trauma Center Site Selection.
[BibTeX]
[DOI]
Kaniz Fatema
,
Md. Awlad Hossen Rony
,
Nusrat Zahan
,
Md. Zahid Hasan
Proceedings of the 12th International Conference on Computing Communication and Networking Technologies, 2021

2018
A CNN-Based Classification Model for Recognizing Visual Bengali Font.
[BibTeX]
[DOI]
Md. Zahid Hasan
,
Kh. Tanzila Rahman
,
Rokeya Islam Riya
,
K. M. Zubair Hasan
,
Nusrat Zahan
Proceedings of International Joint Conference on Computational Intelligence, 2018


  Loading...