The Open UniversitySkip to content
 

Taking the Middle Path: Learning about Security Through Online Social Interaction

Lopez, Tamara; Tun, Thein; Bandara, Arosha; Levine, Mark; Nuseibeh, Bashar and Sharp, Helen (2019). Taking the Middle Path: Learning about Security Through Online Social Interaction. IEEE Software (Early access).

Full text available as:
[img]
Preview
PDF (Accepted Manuscript) - Requires a PDF viewer such as GSview, Xpdf or Adobe Acrobat Reader
Download (320kB) | Preview
DOI (Digital Object Identifier) Link: https://doi.org/10.1109/MS.2019.2945300
Google Scholar: Look up in Google Scholar

Abstract

As software-intensive digital systems become an integral part of modern life, ensuring that these systems are developed to satisfy security and privacy requirements is an increasingly important societal concern. Integrating security into software development involves more than learning security principles or applying techniques. Security in practice is shaped through experience. It can be integrated into software development by following a middle path, through which developers draw together formal knowledge and software development techniques. Social interactions facilitate this process. This article recommends four strategies developers can use to maximise security in practice using online communities like Stack Overflow, including approaching security from within specific tasks, critically assessing content in posts, actively participating, and bringing online information into real-world situations.

Item Type: Journal Item
Copyright Holders: 2019 IEEE
ISSN: 0740-7459
Project Funding Details:
Funded Project NameProject IDFunding Body
Motivating Jenny to write secure code: community and culture of codingNot SetNCSC National Cyber Security Centre
Keywords: social learning techniques; support for security; software construction
Academic Unit/School: Faculty of Science, Technology, Engineering and Mathematics (STEM) > Computing and Communications
Faculty of Science, Technology, Engineering and Mathematics (STEM)
Research Group: Centre for Research in Computing (CRC)
Software Engineering and Design (SEAD)
Item ID: 67180
Depositing User: Tamara Lopez
Date Deposited: 08 Oct 2019 09:30
Last Modified: 15 Nov 2019 17:06
URI: http://oro.open.ac.uk/id/eprint/67180
Share this page:

Metrics

Altmetrics from Altmetric

Citations from Dimensions

Download history for this item

These details should be considered as only a guide to the number of downloads performed manually. Algorithmic methods have been applied in an attempt to remove automated downloads from the displayed statistics but no guarantee can be made as to the accuracy of the figures.

Actions (login may be required)

Policies | Disclaimer

© The Open University   contact the OU