Secure Coding in C and C++: Of Strings and Integers
IEEE Security and Privacy
Secure programming with static analysis
Secure programming with static analysis
Security in computer literacy: a model for design, dissemination, and assessment
Proceedings of the 42nd ACM technical symposium on Computer science education
Proceedings of the 16th annual joint conference on Innovation and technology in computer science education
Benefits and barriers of user evaluation in software engineering research
Proceedings of the 2011 ACM international conference on Object oriented programming systems languages and applications
Mitigating program security vulnerabilities: Approaches and challenges
ACM Computing Surveys (CSUR)
A study on improving static analysis tools: why are we not using them?
Proceedings of the 34th International Conference on Software Engineering
On the Effective Use of Security Test Patterns
SERE '12 Proceedings of the 2012 IEEE Sixth International Conference on Software Security and Reliability
Teaching secure coding: the myths and the realities
Proceeding of the 44th ACM technical symposium on Computer science education
Why don't software developers use static analysis tools to find bugs?
Proceedings of the 2013 International Conference on Software Engineering
| Hi-index | 0.00 |
Our experiences show that the earlier students learn secure coding concepts, even at the same time as they first learn to write code, the better they will continue using secure coding practices. In this paper, modules for teaching secure coding practices to STEM students are built and those modules are ready for most common programming courses for STEM students. Those modules will provide the essential and fundamental skills to programmers and application developers in secure programming. In addition, most of the modules will use static-analysis tools to help with detecting vulnerabilities in any given code. In addition, some survey's results are reposted here.