News
RISCS Annual Report 2019
We are delighted to present the 2019 RISCS Annual Report. The Report brings you progress updates of the RISCS projects, informs of recent changes at RISCS and shares our plans for 2020. Download the report here.
Publications
An Investigation of Security Conversations in Stack Overflow: Perceptions of Security and Community Involvement
Developers turn to Stack Overflow and other on-line sources to find solutions to security problems, but little is known about how they engage with and guide one another in these environments or the perceptions of software security this may encourage. This study joins recent calls to understand more about how Read more…
Publications
Taking the Middle Path: Learning about Security Through Online Social Interaction
Abstract As software-intensive digital systems become an integral part of modern life, ensuring that these systems are developed to satisfy security and privacy requirements is an increasingly important societal concern. Integrating security into software development involves more than learning security principles or applying techniques. Security in practice is shaped through Read more…
Publications
An Anatomy of Security Conversations in Stack Overflow
Abstract As software-intensive digital systems become an integral part of modern life, ensuring that these systems are developed to satisfy security and privacy requirements is an increasingly important societal concern. This paper examines how secure coding practice is supported on Stack Overflow. Although there are indications that on-line environments are Read more…
Publications
Talking about Security with Professional Developers
Abstract This paper describes materials developed to engage professional developers in discussions about security. First, the work is framed in the context of ethnographic studies of software development, highlighting how the method is used to explore and investigate research aims for the Motivating Jenny research project. A description is given Read more…