Edinburgh Research Explorer

A Survey on Developer-Centred Security

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Related Edinburgh Organisations

Open Access permissions

Open

Documents

Original languageEnglish
Title of host publication2019 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)
Number of pages10
Publication statusAccepted/In press - 5 Apr 2019
Event4th European Workshop on Usable Security - Stockholm, Sweden
Duration: 20 Jun 201920 Jun 2019
https://eusec.cs.uchicago.edu/

Workshop

Workshop4th European Workshop on Usable Security
Abbreviated titleEuroUSEC 2019
CountrySweden
CityStockholm
Period20/06/1920/06/19
Internet address

Abstract

Software developers are key players in the security ecosystem as they produce code that runs on millions of devices. Yet we continue to see insecure code being developed and deployed on a regular basis despite the existence of support infrastructures, tools, and research into common errors. This work provides a systematised overview of the relatively new field of Developer-Centred Security which aims to understand the context in which developers produce security-relevant code as well as provide tools and processes that that better support both developers and secure code production. We report here on a systematic literature review of 49 publications on security studies with software developer participants. We provide an overview of both the types of methodologies currently being used as well as the current research in the area. Finally, we also provide recommendations for future work in Developer-Centred Security.

    Research areas

  • usable security and privacy, developer centered security, developers, software development, human factors, human computer interaction, Computer Security, systematic literature review, survey

Event

4th European Workshop on Usable Security

20/06/1920/06/19

Stockholm, Sweden

Event: Workshop

ID: 82574885