An investigation of security conversations in stack overflow : Perceptions of security and community involvement

Lopez, Tamara and Tun, Thein T. and Bandara, Arosha and Levine, Mark and Nuseibeh, Bashar and Sharp, Helen (2018) An investigation of security conversations in stack overflow : Perceptions of security and community involvement. In: SEAD '18 Proceedings of the 1st International Workshop on Security Awareness from Design to Deployment :. ACM, SWE, pp. 26-32. ISBN 9781450357272

[thumbnail of An investtigation of security conversations]
Text (An investtigation of security conversations)
An_investtigation_of_security_conversations.pdf - Accepted Version
Available under License Creative Commons Attribution-NonCommercial.

Download (1MB)

Abstract

Developers turn to Stack Overflow and other on-line sources to find solutions to security problems, but little is known about how they engage with and guide one another in these environments or the perceptions of software security this may encourage. This study joins recent calls to understand more about how developers use Internet sources to solve security problems. As a first step, the authors have analyzed a set of questions within the security channel of Stack Overflow. Preliminary findings reveal more about this community of practitioners: who are the askers and commenters, how security questions are asked and how developers frame technical information using social and experience-based perceptions of security.

Item Type:
Contribution in Book/Report/Proceedings
Additional Information:
© 2018 The Owner/Authors. This is the author's version of the work. It is posted here by permission of ACM for your personal use. Not for redistribution. The definitive version was published in SEAD '18 Proceedings of the 1st International Workshop on Security Awareness from Design to Deployment http://doi.acm.org/10.1145/3194707.3194713
Uncontrolled Keywords:
/dk/atira/pure/subjectarea/asjc/1700/1705
Subjects:
?? collaborative environmentsempirical studiessecure software developmentcomputer networks and communicationssoftwaresafety, risk, reliability and quality ??
ID Code:
134197
Deposited By:
Deposited On:
22 Jun 2019 00:55
Refereed?:
Yes
Published?:
Published
Last Modified:
15 Jan 2024 00:26