Utilize este identificador para referenciar este registo:
http://hdl.handle.net/10071/21730
Autoria: | Gasiba, Tiago Lechner, Ulrike Pinto-Albuquerque, M. Zouitni, Alae |
Editor: | Shepperd M., Brito e Abreu F., Rodrigues da Silva A., Pérez-Castillo R. |
Data: | 2020 |
Título próprio: | Design of secure coding challenges for cybersecurity education in the industry |
Volume: | 1266 |
Título do evento: | 13th International Conference on the Quality of Information and Communications Technology. QUATIC 2020. |
ISSN: | 1865-0929 |
ISBN: | 978-3-030-58793-2 |
DOI (Digital Object Identifier): | 10.1007/978-3-030-58793-2_18 |
Palavras-chave: | Teaching Cybersecurity Capture-the-flag Challenges Automation Coaching Secure Coding Programming |
Resumo: | To minimize the possibility of introducing vulnerabilities in source code, software developers in the industry may attend security awareness and secure coding training. One promising novel approach to raise awareness is to use cybersecurity challenges in a capture-the-flag event. In order for this to be effective, the types of challenges must be adequately designed to address the target group. In this work we look at how to design challenges for software developers in an industrial context, based on survey given to security experts by gathering their experience on the field. While our results show that traditional methods seem to be adequate, they also reveal a new class of challenges based on code entry and interaction with an automated coach. |
Arbitragem científica: | yes |
Acesso: | Acesso Aberto |
Aparece nas coleções: | ISTAR-CRI - Comunicações a conferências internacionais |
Ficheiros deste registo:
Ficheiro | Descrição | Tamanho | Formato | |
---|---|---|---|---|
FINAL_Challenge_Design_QUATIC_2020.pdf | Versão Aceite | 532,07 kB | Adobe PDF | Ver/Abrir |
Todos os registos no repositório estão protegidos por leis de copyright, com todos os direitos reservados.