Weir, Charles and Rashid, Awais and Noble, James (2016) Early Report: How to Improve Programmers' Expertise at App Security? In: Proceedings of the 1st International Workshop on Innovations in Mobile Privacy and Security : co-located with the International Symposium on Engineering Secure Software and Systems (ESSoS 2016). CEUR-WS.org, GBR, pp. 49-50.
CharlesWeir_SecurityLancaster_IMPS2016_Final.pdf - Accepted Version
Available under License Creative Commons Attribution.
Download (276kB)
Abstract
Apps present a significant security risk. Developer inexperience of security is a major contributor to this risk. Based on interviews with a dozen app security experts we identify that most app programmers simply do not care about security. Only by working on the factors influencing programmers’ motivation, and afterwards developing their whole system security skills, shall we shall we begin to see the kind of secure apps that industry needs.