Nudging Software Developers Toward Secure Code

被引:4
|
作者
Fischer, Felix [1 ]
Grossklags, Jens [2 ]
机构
[1] Tech Univ Munich, D-80333 Munich, Germany
[2] Tech Univ Munich, Dept Informat, D-80333 Munich, Germany
来源
IEEE SECURITY & PRIVACY | 2022年 / 20卷 / 02期
关键词
D O I
10.1109/MSEC.2022.3142337
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
The prevalence of insecure code is one of the main challenges security experts are trying to solve. We study behavioral patterns among developers which largely contribute to insecure software-googling and reusing code from the Web-and apply nudge theory to harness these behaviors and help developers write more secure code.
引用
收藏
页码:76 / 79
页数:4
相关论文
共 50 条
  • [1] Raising Secure Coding Awareness for Software Developers in the Industry
    Gasiba, Tiago
    Lechner, Ulrike
    2019 IEEE 27TH INTERNATIONAL REQUIREMENTS ENGINEERING CONFERENCE WORKSHOPS (REW 2019), 2019, : 141 - 143
  • [2] "Think secure from the beginning": A Survey with Software Developers
    Assal, Hala
    Chiasson, Sonia
    CHI 2019: PROCEEDINGS OF THE 2019 CHI CONFERENCE ON HUMAN FACTORS IN COMPUTING SYSTEMS, 2019,
  • [3] MATCHING PROGRAM CODE GENERATORS TO SOFTWARE DEVELOPERS NEEDS
    RUSHINEK, A
    RUSHINEK, S
    OMEGA-INTERNATIONAL JOURNAL OF MANAGEMENT SCIENCE, 1990, 18 (03): : 315 - 327
  • [4] Call for Code: Developers tackle natural disasters with software
    Krook, D.
    Malaika, S.
    IBM JOURNAL OF RESEARCH AND DEVELOPMENT, 2020, 64 (1-2) : 1 - 2
  • [5] A Stitch in Time: Supporting Android Developers in Writing Secure Code
    Duc Cuong Nguyen
    Wermke, Dominik
    Acar, Yasemin
    Backes, Michael
    Weir, Charles
    Fahl, Sascha
    CCS'17: PROCEEDINGS OF THE 2017 ACM SIGSAC CONFERENCE ON COMPUTER AND COMMUNICATIONS SECURITY, 2017, : 1065 - 1077
  • [6] Nudging Students Toward Better Software Engineering Behaviors
    Brown, Chris
    Parnin, Chris
    2021 IEEE/ACM THIRD INTERNATIONAL WORKSHOP ON BOTS IN SOFTWARE ENGINEERING (BOTSE 2021), 2021, : 11 - 15
  • [7] Teaching secure software engineering: Writing secure code
    Yu, Huiming
    Jones, Nadia
    Bullock, Gina
    Yuan, Xiaohong Yuan
    2011 7th Central and Eastern European Software Engineering Conference, CEE-SECR 2011, 2011,
  • [8] Toward More Secure Software
    Denning, Dorothy E.
    COMMUNICATIONS OF THE ACM, 2015, 58 (04) : 24 - 26
  • [9] Toward Enhancing Software Developers' Persuasion and Engagement in Gamification
    Tsunoda, Masateru
    Suto, Hidetsugu
    Yamada, Takeshi
    PROCEEDINGS OF THE 2023 30TH ASIA-PACIFIC SOFTWARE ENGINEERING CONFERENCE, APSEC 2023, 2023, : 564 - 568
  • [10] Toward an understanding of the motivation of open source software developers
    Ye, YW
    Kishida, K
    25TH INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING, PROCEEDINGS, 2003, : 419 - 429
12345