Software security continues to be a matter of concern for both end-users and developers, with the cost of potential lapses expected to become larger as software plays a larger role in society. Despite investments in secure coding training programmes, organisations are not achieving the expected success rate. An often overlooked reason for this among many others is that current training programmes are not tailored to consider the diversity among software developers as it relates to human aspects. In this research, data was gathered from software developers of various backgrounds on their perceptions of secure coding training, their expectations from and challenges with such a training program. The findings suggest that developers with personality traits of agreeableness tend to ignore secure coding standards. Additionally, developers with higher work experience tend to demand storage management, responsible use of privileges, security and privacy laws and testing topics to be included in the secure coding training. Furthermore, in terms of training structure, developers with higher openness tend to demand hands-on training to be included. The study’s findings seek to inform future researchers and organisations on factors to consider when designing adaptive secure coding programs that would address the needs of developers from different backgrounds.
Mon 11 SepDisplayed time zone: Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna change
14:20 - 15:00 | |||
14:20 20mTalk | Towards Developer-Centered Secure Coding Training [Workshop] HCSE-CS Vladislav Pikulin Monash University, Daiki Kubo Monash University, Kaveesha Nissanka Monash University, Sadeeptha Bandara Monash University, Muhammad Aiman Shamsiemon Monash University, Arissha Yasmin Monash University, Asangi Jayatilaka University of Adelaide, Anuradha Madugalla Monash University, Australia, Tanjila Kanij Monash University DOI | ||
14:40 20mTalk | DoS Attacks, Human Factors, and Evidence Extraction for the Industrial Internet of Things (IIoT) Paradigm [Workshop] HCSE-CS Sri Harsha Mekala Deakin University, Zubair Baig Deakin University, Adnan Anwar Deakin University, Naeem Syed Deakin University DOI |