Copy the page URI to the clipboard
Lopez, Tamara; Tun, Thein; Bandara, Arosha; Levine, Mark; Nuseibeh, Bashar and Sharp, Helen
(2020).
DOI: https://doi.org/10.1109/MS.2019.2945300
Abstract
As software-intensive digital systems become an integral part of modern life, ensuring that these systems are developed to satisfy security and privacy requirements is an increasingly important societal concern. Integrating security into software development involves more than learning security principles or applying techniques. Security in practice is shaped through experience. It can be integrated into software development by following a middle path, through which developers draw together formal knowledge and software development techniques. Social interactions facilitate this process. This article recommends four strategies developers can use to maximise security in practice using online communities like Stack Overflow, including approaching security from within specific tasks, critically assessing content in posts, actively participating, and bringing online information into real-world situations.
Viewing alternatives
Download history
Metrics
Public Attention
Altmetrics from AltmetricNumber of Citations
Citations from DimensionsItem Actions
Export
About
- Item ORO ID
- 67180
- Item Type
- Journal Item
- ISSN
- 0740-7459
- Project Funding Details
-
Funded Project Name Project ID Funding Body Motivating Jenny to write secure code: community and culture of coding Not Set NCSC National Cyber Security Centre - Keywords
- social learning techniques; support for security; software construction
- Academic Unit or School
-
Faculty of Science, Technology, Engineering and Mathematics (STEM)
Faculty of Science, Technology, Engineering and Mathematics (STEM) > Computing and Communications - Research Group
-
Centre for Research in Computing (CRC)
Software Engineering and Design (SEAD) - Copyright Holders
- © 2019 IEEE
- Depositing User
- Tamara Lopez
CORE (COnnecting REpositories)
CORE (COnnecting REpositories)