Nudging Software Developers Toward Secure Code

被引:4
|
作者
Fischer, Felix [1 ]
Grossklags, Jens [2 ]
机构
[1] Tech Univ Munich, D-80333 Munich, Germany
[2] Tech Univ Munich, Dept Informat, D-80333 Munich, Germany
来源
IEEE SECURITY & PRIVACY | 2022年 / 20卷 / 02期
关键词
D O I
10.1109/MSEC.2022.3142337
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
The prevalence of insecure code is one of the main challenges security experts are trying to solve. We study behavioral patterns among developers which largely contribute to insecure software-googling and reusing code from the Web-and apply nudge theory to harness these behaviors and help developers write more secure code.
引用
收藏
页码:76 / 79
页数:4
相关论文
共 50 条
  • [31] Challenges for software developers
    Stott, B
    COMPUTING & CONTROL ENGINEERING JOURNAL, 2002, 13 (01): : 40 - 40
  • [32] Overwhelmed Software Developers
    Michels, Lisa-Marie
    Petkova, Aleksandra
    Richter, Marcel
    Farley, Andreas
    Graziotin, Daniel
    Wagner, Stefan
    IEEE SOFTWARE, 2024, 41 (04) : 51 - 59
  • [33] Reducing Technical Debt: Using Persuasive Technology for Encouraging Software Developers to Document Code
    Shmerlin, Yulia
    Kliger, Doron
    Makabee, Hayim
    ADVANCED INFORMATION SYSTEMS ENGINEERING WORKSHOPS, 2014, 178 : 207 - 212
  • [34] Toward Efficient and Secure Code Dissemination Protocol for the Internet of Things
    Kim, Jun Young
    Hu, Wen
    Jha, Sanjay
    Shafagh, Hossein
    Kaafar, Mohamed Ali
    SENSYS'15: PROCEEDINGS OF THE 13TH ACM CONFERENCE ON EMBEDDED NETWORKED SENSOR SYSTEMS, 2015, : 425 - 426
  • [35] Software Architecture for Developers
    Johann, Sven
    IEEE SOFTWARE, 2015, 32 (05) : 93 - 96
  • [36] Licensing software developers
    Rash, JL
    COMMUNICATIONS OF THE ACM, 2000, 43 (08) : 13 - 14
  • [37] Toolkit for software developers
    不详
    NAVAL ARCHITECT, 2001, : 6 - 6
  • [38] CONTROL FOR SOFTWARE DEVELOPERS
    ESTOCK, RG
    IEEE SOFTWARE, 1989, 6 (05) : 105 - 105
  • [39] Toward a catalog of software quality metrics for infrastructure code
    Dalla Palma, Stefano
    Di Nucci, Dario
    Palomba, Fabio
    Tamburri, Damian Andrew
    JOURNAL OF SYSTEMS AND SOFTWARE, 2020, 170
  • [40] Toward accurate link between code and software documentation
    Cao, Yingkui
    Zou, Yanzhen
    Luo, Yuxiang
    Xie, Bing
    Zhao, Junfeng
    SCIENCE CHINA-INFORMATION SCIENCES, 2018, 61 (05)
12345