Rights statement: © ACM, 2020. This is the author's version of the work. It is posted here by permission of ACM for your personal use. Not for redistribution. The definitive version was published in ICSEW'20: Proceedings of the IEEE/ACM 42nd International Conference on Software Engineering Workshops, 2020, https://dl.acm.org/doi/10.1145/3387940.3392230
Accepted author manuscript, 153 KB, PDF document
Available under license: CC BY-NC: Creative Commons Attribution-NonCommercial 4.0 International License
Final published version
Research output: Contribution in Book/Report/Proceedings - With ISBN/ISSN › Conference contribution/Paper › peer-review
Research output: Contribution in Book/Report/Proceedings - With ISBN/ISSN › Conference contribution/Paper › peer-review
}
TY - GEN
T1 - Security but not for security’s sake
T2 - The impact of social considerations on app developers’ choices
AU - Rauf, Irum
AU - van der Linden, Dirk
AU - Levine, Mark
AU - Towse, John
AU - Nuseibeh, Bashar
AU - Rashid, Awais
N1 - © ACM, 2020. This is the author's version of the work. It is posted here by permission of ACM for your personal use. Not for redistribution. The definitive version was published in ICSEW'20: Proceedings of the IEEE/ACM 42nd International Conference on Software Engineering Workshops, 2020, https://dl.acm.org/doi/10.1145/3387940.3392230
PY - 2020/6/24
Y1 - 2020/6/24
N2 - We explore a dataset of app developer reasoning to better under- stand the reasons that may inadvertently promote or demote app developers’ prioritization of security. We identify a number of rea- sons: caring vs. fear of users, the impact of norms, and notions of ‘otherness’ and ‘self’ in terms of belonging to groups. Based on our preliminary findings, we propose an interdisciplinary research agenda to explore the impact of social identity (a psychological theory) on developers’ security rationales, and how this could be leveraged to guide developers towards making more secure choices.
AB - We explore a dataset of app developer reasoning to better under- stand the reasons that may inadvertently promote or demote app developers’ prioritization of security. We identify a number of rea- sons: caring vs. fear of users, the impact of norms, and notions of ‘otherness’ and ‘self’ in terms of belonging to groups. Based on our preliminary findings, we propose an interdisciplinary research agenda to explore the impact of social identity (a psychological theory) on developers’ security rationales, and how this could be leveraged to guide developers towards making more secure choices.
U2 - 10.1145/3387940.3392230
DO - 10.1145/3387940.3392230
M3 - Conference contribution/Paper
SP - 141
EP - 144
BT - ICSEW'20
PB - Association for Computing Machinery (ACM)
CY - New York
ER -