UCL logo

UCL Discovery

UCL home » Library Services » Electronic resources » UCL Discovery

Light-Touch Interventions to Improve Software Development Security

Weir, CAF; Blair, L; Noble, J; Becker, I; Sasse, MA; (2018) Light-Touch Interventions to Improve Software Development Security. In: Doyle, Dinara and Lerner, Lee W, (eds.) Proceedings of the IEEE Cybersec Developmental Conference (SecDev '18). IEEE Xplore: Piscataway, NJ, USA. Green open access

[img]
Preview
Text
WeirSecDev2018.pdf - ["content_typename_Accepted version" not defined]

Download (568kB) | Preview

Abstract

Many software developers still have little interest in software security. To change this, we need 'interventions' to development teams to motivate and help them towards security improvement. An intervention costing less than two days' effort from a facilitator plus half a day of team effort can significantly improve that team's software security. This case study describes how this approach was used with one commercial team, and identifies its impact using Participative Action Research. With suitable improvements, the approach has the potential to help many other development teams.

Type: Proceedings paper
Title: Light-Touch Interventions to Improve Software Development Security
ISBN-13: 978-1-5386-7662-2
Open access status: An open access version is available from UCL Discovery
DOI: 10.1109/SecDev.2018.00019
Publisher version: https://doi.org/10.1109/SecDev.2018.00019
Language: English
Additional information: This version is the author accepted manuscript. For information on re-use, please refer to the publisher’s terms and conditions.
Keywords: Developer centered security; case study; software security; software developer; intervention; action research
UCL classification: UCL > Provost and Vice Provost Offices
UCL > Provost and Vice Provost Offices > UCL BEAMS
UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science
UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science > Dept of Computer Science
UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science > Dept of Security and Crime Science
URI: http://discovery.ucl.ac.uk/id/eprint/10057557
Downloads since deposit
78Downloads
Download activity - last month
Download activity - last 12 months
Downloads by country - last 12 months

Archive Staff Only

View Item View Item