In 2014, we launched our open-access repository which offers full text access to conference proceedings from many of our events including the INC and HAISA series. These papers are free to access and distribute (subject to citing the source).
Eleventh International Symposium on Human Aspects of Information Security & Assurance (HAISA 2017)
Title: Secure Coding Practices in the Software Development Capstone Projects
Author(s): Vuyolwethu Sizoli Mdunyelwa, Johannes Frederick Van Niekerk, Lynn Ann Futcher
Keywords: Secure Coding, Web Application Security, OWASP, Capstone Project, Knowledge, Behaviour
Abstract: Web applications play an important role in many organisations, but could also expose these organisations to cyber security risks. Organisations use a variety of cyber security controls to mitigate risks. Currently, most organisational security spending focus on reducing network security related risks. However, most attacks focuses on vulnerabilities existing at the web application layer. Security breaches in web applications are mostly caused by programmers’ failure to adhere to secure coding practices, such as those recommended by the Open Web Application Security Project. The purpose of this paper is to determine whether software development students know about secure coding practices and whether they implement them when developing web applications as part of their capstone projects.
Download count: 975
How to get this paper:
PDF copy of this paper is free to download. You may distribute this copy providing you cite this page as the source.