Using ai assistants in software development: A qualitative study on security practices and concerns
Following the recent release of AI assistants, such as OpenAI's ChatGPT and GitHub
Copilot, the software industry quickly utilized these tools for software development tasks, eg …
Copilot, the software industry quickly utilized these tools for software development tasks, eg …
Engaging Company Developers in Security Research Studies: A Comprehensive Literature Review and Quantitative Survey
Previous research demonstrated that company developers excel compared to freelancers
and computer science students, with the corporate environment significantly influencing …
and computer science students, with the corporate environment significantly influencing …
[PDF][PDF] How WEIRD is Usable Privacy and Security Research?
In human factor fields such as human-computer interaction (HCI) and psychology,
researchers have been concerned that participants mostly come from WEIRD (Western …
researchers have been concerned that participants mostly come from WEIRD (Western …
A Usability Evaluation of AFL and libFuzzer with CS Students
S Plöger, M Meier, M Smith - Proceedings of the 2023 CHI Conference …, 2023 - dl.acm.org
In top-tier companies and academia, fuzzing has established itself as a valuable tool for
finding bugs. It is a tool created by experts for experts, and a lot of research is being invested …
finding bugs. It is a tool created by experts for experts, and a lot of research is being invested …
Write, Read, or Fix? Exploring Alternative Methods for Secure Development Studies
When studying how software developers perform security tasks, researchers often ask
participants to write code. These studies can be challenging because programming can be …
participants to write code. These studies can be challenging because programming can be …
How WEIRD is Usable Privacy and Security Research?(Extended Version)
In human factor fields such as human-computer interaction (HCI) and psychology,
researchers have been concerned that participants mostly come from WEIRD (Western …
researchers have been concerned that participants mostly come from WEIRD (Western …
ChatGPT-Resistant Screening Instrument for Identifying Non-Programmers
To ensure the validity of software engineering and IT security studies with professional
programmers, it is essential to identify participants without programming skills. Existing …
programmers, it is essential to identify participants without programming skills. Existing …
NERDS: A Non-invasive Environment for Remote Developer Studies
J Lewis, KR Fulton - Proceedings of the 17th Cyber Security …, 2024 - dl.acm.org
Given the difficulties of secure development, studying software developers remains pivotal.
However, conducting these studies remains a pain point for the security community as …
However, conducting these studies remains a pain point for the security community as …
How to Conduct Security Studies with Software Developers
A Danilova - 2022 - bonndoc.ulb.uni-bonn.de
As our everyday life depends on software and its security, studies with software developers
become ever more important. Motivated by multiple security breaches caused by issues …
become ever more important. Motivated by multiple security breaches caused by issues …
On the Usability of Coverage-Based Fuzzing of C/C++ Programs
S Plöger - 2024 - bonndoc.ulb.uni-bonn.de
Even though the foundations for fuzzing were laid more than 30 years ago, it did not play a
role in industry or academia for a long time. Interestingly, the popularity of fuzzing has risen …
role in industry or academia for a long time. Interestingly, the popularity of fuzzing has risen …