A Survey on Developer-Centred Security

Mohammad Tahaei, Kami Vaniea

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract / Description of output

Software developers are key players in the security ecosystem as they produce code that runs on millions of devices. Yet we continue to see insecure code being developed and deployed on a regular basis despite the existence of support infrastructures, tools, and research into common errors. This work provides a systematised overview of the relatively new field of Developer-Centred Security which aims to understand the context in which developers produce security-relevant code as well as provide tools and processes that that better support both developers and secure code production. We report here on a systematic literature review of 49 publications on security studies with software developer participants. We provide an overview of both the types of methodologies currently being used as well as the current research in the area. Finally, we also provide recommendations for future work in Developer-Centred Security.
Original languageEnglish
Title of host publication2019 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)
Place of PublicationStockholm, Sweden
PublisherInstitute of Electrical and Electronics Engineers (IEEE)
Pages129-138
Number of pages10
ISBN (Electronic)978-1-7281-3026-2
ISBN (Print)978-1-7281-3027-9
DOIs
Publication statusPublished - 19 Aug 2019
Event4th European Workshop on Usable Security - Stockholm, Sweden
Duration: 20 Jun 201920 Jun 2019
https://eusec.cs.uchicago.edu/

Workshop

Workshop4th European Workshop on Usable Security
Abbreviated titleEuroUSEC 2019
Country/TerritorySweden
CityStockholm
Period20/06/1920/06/19
Internet address

Keywords / Materials (for Non-textual outputs)

  • usable security and privacy
  • developer centered security
  • developers
  • software development
  • human factors
  • human computer interaction
  • Computer Security
  • systematic literature review
  • survey

Fingerprint

Dive into the research topics of 'A Survey on Developer-Centred Security'. Together they form a unique fingerprint.

Cite this