Utilize este identificador para referenciar este registo:
http://hdl.handle.net/10071/29455Registo completo
| Campo DC | Valor | Idioma |
|---|---|---|
| dc.contributor.author | Iosif, A.-C. | - |
| dc.contributor.author | Gasiba, T. E. | - |
| dc.contributor.author | Lechner, U. | - |
| dc.contributor.author | Pinto-Albuquerque, M. | - |
| dc.contributor.editor | Falk, R., and Chan, S. | - |
| dc.date.accessioned | 2023-10-18T11:11:34Z | - |
| dc.date.available | 2023-10-18T11:11:34Z | - |
| dc.date.issued | 2023 | - |
| dc.identifier.citation | Iosif, A.-C., Gasiba, T. E., Lechner, U., & Pinto-Albuquerque, M. (2023). Raising awareness in the industry on secure code review practices. In R. Falk, & S. Chan (Eds.), CYBER 2023: The Eighth International Conference on Cyber-Technologies and Cyber-Systems (pp. 62-68). IARIA. https://www.thinkmind.org/index.php?view=instance&instance=CYBER+2023 | - |
| dc.identifier.isbn | 978-1-68558-113-8 | - |
| dc.identifier.issn | 2519-8599 | - |
| dc.identifier.uri | http://hdl.handle.net/10071/29455 | - |
| dc.description.abstract | As products and services become increasingly digital and software increasingly complex, all aspects of an industrial software development lifecycle must contribute to quality. Code review serves as a means to address software quality and fosters knowledge exchange across teams. Nonetheless, code review practices require resources and often require more resources than planned, while the benefit of a code review to code quality is less tangible. In our work, we address the effectiveness and efficiency of code review practices and develop an understanding of what is a good and valuable code review practice as part of a software development lifecycle. Our focus is code reviews meant to identify and address security weaknesses in an industrial context. This work presents a design study on how to design a workshop on code review. We conducted and evaluated three workshops with 37 industrial software developers. The findings of our work reveal that presenting constructive code review practices can contribute to raising awareness of secure coding and software lifecycle practices among software development professionals. This contributes to the quality and, in particular, security of software. | eng |
| dc.language.iso | eng | - |
| dc.publisher | IARIA | - |
| dc.relation | info:eu-repo/grantAgreement/FCT/6817 - DCRRNI ID/UIDB%2F04466%2F2020/PT | - |
| dc.relation | 13N16585 | - |
| dc.relation | 13N16581 | - |
| dc.relation | info:eu-repo/grantAgreement/FCT/6817 - DCRRNI ID/UIDP%2F04466%2F2020/PT | - |
| dc.relation.ispartof | CYBER 2023: The Eighth International Conference on Cyber-Technologies and Cyber-Systems | - |
| dc.rights | openAccess | - |
| dc.subject | Code review | eng |
| dc.subject | Cybersecurity | eng |
| dc.subject | Compliance | eng |
| dc.subject | Development lifecycle | eng |
| dc.subject | Quality | eng |
| dc.subject | Standards | eng |
| dc.title | Raising awareness in the industry on secure code review practices | eng |
| dc.type | conferenceObject | - |
| dc.event.title | CYBER 2023: The Eighth International Conference on Cyber-Technologies and Cyber-Systems | - |
| dc.event.type | Conferência | pt |
| dc.event.location | Porto, Portugal | eng |
| dc.event.date | 2023 | - |
| dc.pagination | 62 - 68 | - |
| dc.peerreviewed | yes | - |
| dc.date.updated | 2023-10-18T12:10:18Z | - |
| dc.description.version | info:eu-repo/semantics/publishedVersion | - |
| iscte.identifier.ciencia | https://ciencia.iscte-iul.pt/id/ci-pub-98269 | - |
| Aparece nas coleções: | ISTAR-CRI - Comunicações a conferências internacionais | |
Ficheiros deste registo:
| Ficheiro | Tamanho | Formato | |
|---|---|---|---|
| conferenceobject_98269.pdf | 162,19 kB | Adobe PDF | Ver/Abrir |
Todos os registos no repositório estão protegidos por leis de copyright, com todos os direitos reservados.