Edinburgh Research Explorer

A Survey on Developer-Centred Security

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Related Edinburgh Organisations

Open Access permissions



Original languageEnglish
Title of host publication2019 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)
Number of pages10
Publication statusAccepted/In press - 5 Apr 2019
Event4th European Workshop on Usable Security - Stockholm, Sweden
Duration: 20 Jun 201920 Jun 2019


Workshop4th European Workshop on Usable Security
Abbreviated titleEuroUSEC 2019
Internet address


Software developers are key players in the security ecosystem as they produce code that runs on millions of devices. Yet we continue to see insecure code being developed and deployed on a regular basis despite the existence of support infrastructures, tools, and research into common errors. This work provides a systematised overview of the relatively new field of Developer-Centred Security which aims to understand the context in which developers produce security-relevant code as well as provide tools and processes that that better support both developers and secure code production. We report here on a systematic literature review of 49 publications on security studies with software developer participants. We provide an overview of both the types of methodologies currently being used as well as the current research in the area. Finally, we also provide recommendations for future work in Developer-Centred Security.

    Research areas

  • usable security and privacy, developer centered security, developers, software development, human factors, human computer interaction, Computer Security, systematic literature review, survey


4th European Workshop on Usable Security


Stockholm, Sweden

Event: Workshop

ID: 82574885