Please use this identifier to cite or link to this item:
http://hdl.handle.net/10071/21730| Author(s): | Gasiba, Tiago Lechner, Ulrike Pinto-Albuquerque, M. Zouitni, Alae |
| Editor: | Shepperd M., Brito e Abreu F., Rodrigues da Silva A., Pérez-Castillo R. |
| Date: | 2020 |
| Title: | Design of secure coding challenges for cybersecurity education in the industry |
| Volume: | 1266 |
| Event title: | 13th International Conference on the Quality of Information and Communications Technology. QUATIC 2020. |
| ISSN: | 1865-0929 |
| ISBN: | 978-3-030-58793-2 |
| DOI (Digital Object Identifier): | 10.1007/978-3-030-58793-2_18 |
| Keywords: | Teaching Cybersecurity Capture-the-flag Challenges Automation Coaching Secure Coding Programming |
| Abstract: | To minimize the possibility of introducing vulnerabilities in source code, software developers in the industry may attend security awareness and secure coding training. One promising novel approach to raise awareness is to use cybersecurity challenges in a capture-the-flag event. In order for this to be effective, the types of challenges must be adequately designed to address the target group. In this work we look at how to design challenges for software developers in an industrial context, based on survey given to security experts by gathering their experience on the field. While our results show that traditional methods seem to be adequate, they also reveal a new class of challenges based on code entry and interaction with an automated coach. |
| Peerreviewed: | yes |
| Access type: | Open Access |
| Appears in Collections: | ISTAR-CRI - Comunicações a conferências internacionais |
Files in This Item:
| File | Description | Size | Format | |
|---|---|---|---|---|
| FINAL_Challenge_Design_QUATIC_2020.pdf | Versão Aceite | 532,07 kB | Adobe PDF | View/Open |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.