1. Repositório do Iscte – Instituto Universitário de Lisboa
  2. Escola de Tecnologias e Arquitetura
  3. ISTAR-Iscte - Information Sciences and Technologies and Architecture Research Center
  4. ISTAR-CRI - Comunicações a conferências internacionais
Please use this identifier to cite or link to this item: http://hdl.handle.net/10071/29454
Author(s): Lourenço, M.
Gasiba, T. E.
Pinto-Albuquerque, M.
Editor: Falk, R., and Chan, S.
Date: 2023
Title: You are doing it wrong: On vulnerabilities in low code development platforms
Book title/volume: CYBER 2023: The Eighth International Conference on Cyber-Technologies and Cyber-Systems
Pages: 12 - 18
Event title: CYBER 2023: The Eighth International Conference on Cyber-Technologies and Cyber-Systems
Reference: Lourenço, M., Gasiba, T. E., & Pinto-Albuquerque, M. (2023). You are doing it wrong: On vulnerabilities in low code development platforms. In R. Falk, & S. Chan (Eds.), CYBER 2023: The Eighth International Conference on Cyber-Technologies and Cyber-Systems (pp. 12-18). IARIA. https://www.thinkmind.org/index.php?view=instance&instance=CYBER+2023
ISSN: 2519-8599
ISBN: 978-1-68558-113-8
Keywords: Low code
Software development
Web applications
Cybersecurity
Industry
Low code development platforms
Vulnerabilities
Abstract: Low-Code Development Platforms (LCDPs) are gaining more and more traction, even in the industrial context, as a means for anyone with less coding experience to develop and deploy applications. However, little is known about the vulnerabilities resulting from this new software development model. This paper aims to understand vulnerabilities in applications developed and deployed on these platforms. We show that these vulnerabilities can be considered from three perspectives: platform, developer, and plugins. We determine the top three vulnerabilities for each perspective based on a review of the literature and expert interviews. Our results contribute to understanding LCDP applications’ security and raise awareness of industry practitioners by providing typical LCDP security pitfalls.
Peerreviewed: yes
Access type: Open Access
Appears in Collections:ISTAR-CRI - Comunicações a conferências internacionais

Files in This Item:
File SizeFormat 
conferenceobject_98268.pdf271,71 kBAdobe PDFView/Open
Show full item record


FacebookTwitterDeliciousLinkedInDiggGoogle BookmarksMySpaceOrkut
Formato BibTex mendeley Endnote Logotipo do DeGóis Logotipo do Orcid 

Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.