Incentivizing Deep Fixes in Software Economies

An important question in a software economy is how to incentivize deep rather than shallow fixes. A deep fix corrects the root cause of a bug instead of suppressing the symptoms. This paper initiates the study of the problem of incentive design for open workflows in fixing code. We model the dynamics of the software ecosystem and introduce subsumption mechanisms. These mechanisms only make use of externally observable information in determining payments and promote competition between workers. We use a mean field equilibrium methodology to evaluate the performance of these mechanisms, demonstrating in simulation that subsumption mechanisms perform robustly across various environment configurations and satisfy important criteria for market design.

[1]  Claire Le Goues,et al.  The case for software evolution , 2010, FoSER '10.

[2]  Ross J. Anderson Why information security is hard - an economic perspective , 2001, Seventeenth Annual Computer Security Applications Conference.

[3]  Manu Sridharan,et al.  Software economies , 2010, FoSER '10.

[4]  Alan MacCormack,et al.  Exploring the Structure of Complex Software Designs: An Empirical Study of Open Source and Proprietary Code , 2006, Manag. Sci..

[5]  Rainer Böhme,et al.  The Economics of Mandatory Security Breach Reporting to Authorities , 2016, WEIS.

[6]  Glenn Ellison,et al.  Dynamics of Open Source Movements , 2010, SSRN Electronic Journal.

[7]  Daron Acemoglu,et al.  Author's Personal Copy Games and Economic Behavior Aggregate Comparative Statics , 2022 .

[8]  David C. Parkes,et al.  A Framework for Incentivizing Deep Fixes , 2014, AAAI 2014.

[9]  Manu Sridharan,et al.  Predicting your own effort , 2012, AAMAS.

[10]  Mukund Sundararajan,et al.  Mean Field Equilibria of Dynamic Auctions with Learning , 2014, Manag. Sci..

[11]  Michael I. Jordan,et al.  Bug isolation via remote program sampling , 2003, PLDI.

[12]  Claire Le Goues,et al.  A systematic study of automated program repair: Fixing 55 out of 105 bugs for $8 each , 2012, 2012 34th International Conference on Software Engineering (ICSE).

[13]  Arun Sundararajan,et al.  Optimal Design of Crowdsourcing Contests , 2009, ICIS.

[14]  Jia Yuan Yu,et al.  Mean field equilibria of multi armed bandit games , 2012, 2012 50th Annual Allerton Conference on Communication, Control, and Computing (Allerton).

[15]  Justin P. Johnson Open Source Software: Private Provision of a Public Good , 2002 .

[16]  B. Moldovanu,et al.  The Optimal Allocation of Prizes in Contests , 2001 .

[17]  C. L. Benkard,et al.  Markov Perfect Industry Dynamics with Many Firms , 2005 .

[18]  Rahul Telang,et al.  Market for Software Vulnerabilities? Think Again , 2005, Manag. Sci..

[19]  Michael W. Godfrey,et al.  A Market-Based Bug Allocation Mechanism Using Predictive Bug Lifetimes , 2012, 2012 16th European Conference on Software Maintenance and Reengineering.

[20]  Yishay Mansour,et al.  A Sparse Sampling Algorithm for Near-Optimal Planning in Large Markov Decision Processes , 1999, Machine Learning.

[21]  Peter E. Caines,et al.  Social Optima in Mean Field LQG Control: Centralized and Decentralized Strategies , 2012, IEEE Transactions on Automatic Control.

[22]  Gregory Tassey,et al.  Prepared for what , 2007 .

[23]  Sandra Slaughter,et al.  Understanding the Motivations, Participation, and Performance of Open Source Software Developers: A Longitudinal Study of the Apache Projects , 2006, Manag. Sci..

[24]  Adam Croom,et al.  Roads and Bridges: The Unseen Labor Behind Our Digital Infrastructure / Ford Foundation , 2016 .

[25]  Malvika Rao Incentives Design in the Presence of Externalities , 2015 .

[26]  A. Bodoh-Creed Approximation of Large Dynamic Games , 2012 .

[27]  Benny Moldovanu,et al.  Contest architecture , 2006, J. Econ. Theory.

[28]  Tyler Moore,et al.  The Economics of Information Security , 2006, Science.

[29]  Stuart E. Schechter Toward econometric models of the security risk from remote attacks , 2005, IEEE Security & Privacy.

[30]  Mark Harman,et al.  A survey of the use of crowdsourcing in software engineering , 2017, J. Syst. Softw..

[31]  E SchechterStuart Toward Econometric Models of the Security Risk from Remote Attack , 2005, S&P 2005.

[32]  Rocco A. Servedio,et al.  Proceedings of the Twenty-third Annual ACM-SIAM Symposium on Discrete Algorithms , 2012 .

[33]  K. Lakhani,et al.  The Principles of Distributed Innovation , 2007, Innovations: Technology, Governance, Globalization.

[34]  Balasubramanian Sivan,et al.  Optimal Crowdsourcing Contests , 2011, Encyclopedia of Algorithms.

[35]  Yashodhan Kanoria,et al.  Managing congestion in decentralized matching markets , 2014, EC.

[36]  G. Tullock Efficient Rent Seeking , 2001 .

[37]  Milan Vojnovic,et al.  Crowdsourcing and all-pay auctions , 2009, EC '09.

[38]  Ramesh Johari,et al.  Equilibria of Dynamic Games with Many Players: Existence, Approximation, and Market Structure , 2010, J. Econ. Theory.

[39]  Claire Le Goues,et al.  Automatic program repair with evolutionary computation , 2010, Commun. ACM.

[40]  Tanveer A. Zia,et al.  A Quantitative Analysis into the Economics of Correcting Software Bugs , 2011, CISIS.

[41]  Josh Lerner,et al.  The Dynamics of Open-Source Contributors , 2006 .

[42]  P. Lions,et al.  Mean field games , 2007 .

[43]  Justin P. Johnson,et al.  Collaboration, Peer Review and Open Source Software , 2004, Inf. Econ. Policy.

[44]  Kevin Crowston,et al.  C OLLABORATION T HROUGH O PEN S UPERPOSITION : A T HEORY OF THE O PEN S OURCE W AY 1 , 2016 .

[45]  Ramesh Johari,et al.  Mean field equilibrium in dynamic games with complementarities , 2010, 49th IEEE Conference on Decision and Control (CDC).

[46]  A. Ozment,et al.  Bug Auctions: Vulnerability Markets Reconsidered , 2004 .

[47]  Ignacio Cofone,et al.  The Value of Privacy: Keeping the Money Where the Mouth is , 2015, WEIS.

[48]  Gail C. Murphy,et al.  Who should fix this bug? , 2006, ICSE.

[49]  Ignacio N. Cofone The Value of Privacy: Keep the Money Where the Mouth Is , 2014 .

[50]  Peter E. Caines,et al.  Large population stochastic dynamic games: closed-loop McKean-Vlasov systems and the Nash certainty equivalence principle , 2006, Commun. Inf. Syst..