bth.se
EnglishSvenskaNorsk
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Awareness of secure coding guidelines in the industry - A first data analysis
Siemens AG, DEU.
Universität der Bundeswehr München, DEU.
Instituto Universitário de Lisboa (ISCTE-IUL), PRT.
Blekinge Institute of Technology, Faculty of Computing, Department of Software Engineering.ORCID iD: 0000-0003-0619-6027
2020 (English)In: Proceedings - 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020 / [ed] Wang G.,Ko R.,Bhuiyan M.Z.A.,Pan Y., Institute of Electrical and Electronics Engineers Inc. , 2020, p. 345-352Conference paper, Published paper (Refereed)
Abstract [en]

Software needs to be secure, in particular, when deployed to critical infrastructures. Secure coding guidelines capture practices in industrial software engineering to ensure the security of code. This study aims to assess the level of awareness of secure coding in industrial software engineering, the skills of software developers to spot weaknesses in software code, avoid them, and the organizational support to adhere to coding guidelines. The approach draws on well-established theories of policy compliance, neutralization theory, and security-related stress and the authors' many years of experience in industrial software engineering and on lessons identified from training secure coding in the industry. The paper presents the questionnaire design for the online survey and the first analysis of data from the pilot study. © 2020 IEEE.
Place, publisher, year, edition, pages
Institute of Electrical and Electronics Engineers Inc. , 2020. p. 345-352
Keywords [en]
Best Practices, Industry, Secure Coding, Security, Security Awareness, Software Development, Codes (symbols), Computation theory, Information analysis, Network security, Software engineering, Surveys, Analysis of data, Lessons identified, Online surveys, Organizational support, Policy compliance, Questionnaire design, Software codes, Software developer, Privacy by design
National Category
Software Engineering
Identifiers
URN: urn:nbn:se:bth-21181DOI: 10.1109/TrustCom50675.2020.00055ISI: 000671077600041Scopus ID: 2-s2.0-85101275922ISBN: 9780738143804 OAI: oai:DiVA.org:bth-21181DiVA, id: diva2:1534398
Conference
19th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020, Guangzhou, China, 29 December 2020 through 1 January 2021
Part of project
SERT- Software Engineering ReThought, Knowledge FoundationAvailable from: 2021-03-05 Created: 2021-03-05 Last updated: 2021-09-03Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full textScopus

Authority records

Mendez, Daniel

Search in DiVA

By author/editor
Mendez, Daniel
By organisation
Department of Software Engineering
Software Engineering

Search outside of DiVA

GoogleGoogle Scholar

doi
isbn
urn-nbn

Altmetric score

doi
isbn
urn-nbn
Total: 22 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
v. 2.40.0
|
WCAG
|
BTH Library
|
Publish/Register
|
How to publish/register
|
Diva portal
|
SwePub
|
Uppsök