Utilize este identificador para referenciar este registo:
http://hdl.handle.net/10071/23076
Autoria: | Gasiba, T. E. Lechner, U. Pinto-Albuquerque, M. Mendez Fernandez, D. |
Editor: | Wang, G., Ko, R., Bhuiyan, M. Z. A. and Pan, Y. |
Data: | 2020 |
Título próprio: | Awareness of secure coding guidelines in the industry - A first data analysis |
Paginação: | 345 - 352 |
Título do evento: | 19th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020 |
ISSN: | 2324-898X |
ISBN: | 978-1-6654-0392-4 |
DOI (Digital Object Identifier): | 10.1109/TrustCom50675.2020.00055 |
Palavras-chave: | Security Secure coding Software development Best practices Security awareness Industry |
Resumo: | Software needs to be secure, in particular when deployed to critical infrastructures. Secure coding guidelines capture practices in industrial software engineering to ensure the security of code. This study aims at assessing the level of awareness of secure coding in industrial software engineering, the skills of software developers to spot weaknesses in software code, and avoid them, as well as the organizational support to adhere to coding guidelines. The approach draws not only on well-established theories of policy compliance, neutralization theory, and security-related stress but also on the authors’ many years of experience in industrial software engineering and on lessons identified from training secure coding in the industry. The paper presents the design of the questionnaire for the online survey and the first analysis of data from the pilot study. |
Arbitragem científica: | yes |
Acesso: | Acesso Aberto |
Aparece nas coleções: | ISTAR-CRI - Comunicações a conferências internacionais |
Ficheiros deste registo:
Ficheiro | Descrição | Tamanho | Formato | |
---|---|---|---|---|
conferenceobject_73439.pdf | Versão Aceite | 291,57 kB | Adobe PDF | Ver/Abrir |
Todos os registos no repositório estão protegidos por leis de copyright, com todos os direitos reservados.