Please use this identifier to cite or link to this item:
http://hdl.handle.net/10071/23076| Author(s): | Gasiba, T. E. Lechner, U. Pinto-Albuquerque, M. Mendez Fernandez, D. |
| Editor: | Wang, G., Ko, R., Bhuiyan, M. Z. A. and Pan, Y. |
| Date: | 2020 |
| Title: | Awareness of secure coding guidelines in the industry - A first data analysis |
| Pages: | 345 - 352 |
| Event title: | 19th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020 |
| ISSN: | 2324-898X |
| ISBN: | 978-1-6654-0392-4 |
| DOI (Digital Object Identifier): | 10.1109/TrustCom50675.2020.00055 |
| Keywords: | Security Secure coding Software development Best practices Security awareness Industry |
| Abstract: | Software needs to be secure, in particular when deployed to critical infrastructures. Secure coding guidelines capture practices in industrial software engineering to ensure the security of code. This study aims at assessing the level of awareness of secure coding in industrial software engineering, the skills of software developers to spot weaknesses in software code, and avoid them, as well as the organizational support to adhere to coding guidelines. The approach draws not only on well-established theories of policy compliance, neutralization theory, and security-related stress but also on the authors’ many years of experience in industrial software engineering and on lessons identified from training secure coding in the industry. The paper presents the design of the questionnaire for the online survey and the first analysis of data from the pilot study. |
| Peerreviewed: | yes |
| Access type: | Open Access |
| Appears in Collections: | ISTAR-CRI - Comunicações a conferências internacionais |
Files in This Item:
| File | Description | Size | Format | |
|---|---|---|---|---|
| conferenceobject_73439.pdf | Versão Aceite | 291,57 kB | Adobe PDF | View/Open |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.