Taking the Middle Path: Learning about Security Through Online Social Interaction

Tamara Lopez, Thein Tun, Arosha Bandara, Mark Levine, Bashar Nuseibeh, Helen Sharp
2019 IEEE Software  
As software-intensive digital systems become an integral part of modern life, ensuring that these systems are developed to satisfy security and privacy requirements is an increasingly important societal concern. Integrating security into software development involves more than learning security principles or applying techniques. Security in practice is shaped through experience. It can be integrated into software development by following a middle path, through which developers draw together
more » ... al knowledge and software development techniques. Social interactions facilitate this process. This article recommends four strategies developers can use to maximise security in practice using online communities like Stack Overflow, including approaching security from within specific tasks, critically assessing content in posts, actively participating, and bringing online information into real-world situations.
doi:10.1109/ms.2019.2945300 fatcat:xufgfebwbzd3tpabiglk7btktu