Published January 29, 2025 | Version v2
Other Open

An industry Study of Software Signing for Software Supply Chain

Authors/Creators

Description

The spreadsheet contains the codebook and similar analysis sheets for the paper "An Industry Interview Study of Software Signing for Supply Chain Security" (The paper is available at Arxiv:2406.08198). Our codebook describes the definition of codes and shows what codes make up our higher group of categories and themes. We also present sheets that show codes per subject, inter-rater reliability sheets, codebook evolution, etc. We also note that we included our interview protocol in the appendix of our paper (Technical report linked above) so we do not include it here.

To cite this artifact, use the BibTeX: 

@inproceedings{usenix_2025_signing_interview_kalu,
    author = {Kalu, Kelechi G and Singla, Tanmay and Okafor, Chinenye and Torres-Arias, Santiago and Davis, James C},
    booktitle = {34th USENIX Security Symposium (USENIX Security 25)},
    title = {An Industry Interview Study of Software Signing for Supply Chain Security},
    year = {2025},
    publisher = {USENIX Association},
    address = {Seattle, WA, USA},
    month = {aug},
}


or (in APA):

Kalu, K. G., Singla, T., Okafor, C., Torres-Arias, S., & Davis, J. C. (2025, August). An industry interview study of software signing for supply chain security. In 34th USENIX Security Symposium (USENIX Security 25). USENIX Association. Seattle, WA, USA.

Files

Files (54.0 kB)

Additional details

Dates

Available
2025-01-29