Usable security puts the users into the center of cyber security developments. Software developers are a very specific user group in this respect, since their points of contact with security are application programming interfaces (APIs). In contrast to APIs providing functionalities of other domains than security, security APIs are not approachable by habitual means. Learning by doing exploration exercises is not well supported. Reasons for this range from missing documentation, tutorials and examples to lacking tools and impenetrable APIs, that makes this complex matter accessible. In this paper we study what abstraction level of security APIs is more suitable to meet common developers’ needs and expectations. For this purpose, we firstly ...
textToday's systems abstract the implementation details of common services such as secure client-ser...
In the modern Internet era, web applications are typically driven by web services (WS). Web services...
Abstract — Application-level web security refers to obligation inherent in the code of a web-applica...
Usable security puts the users into the center of cyber security developments. Software developers a...
Application Programming Interfaces (APIs) are a vital link between software components as well as be...
The aim of our project is to gather empirical evidence on the security impacts of language and Appli...
A security API is an Application Program Interface that allows untrusted code to access sensitive re...
This thesis introduces the newly-born field of Security API research, and lays the foundations for f...
Cryptographic API misuse is responsible for a large number of software vulnerabilities. In many case...
We argue that application developers, while often viewed as allies in the effort to create software ...
Programmers use security APIs to embed security into the applications they develop. Security vulnera...
Software developers build complex systems using plenty of third-party libraries. Documentation is ke...
Rather than recognizing software engineers' limitations, modern security practice has created an adv...
Security Application Programming Interfaces (APIs) play a major role in the software development pro...
textToday's systems abstract the implementation details of common services such as secure client-ser...
In the modern Internet era, web applications are typically driven by web services (WS). Web services...
Abstract — Application-level web security refers to obligation inherent in the code of a web-applica...
Usable security puts the users into the center of cyber security developments. Software developers a...
Application Programming Interfaces (APIs) are a vital link between software components as well as be...
The aim of our project is to gather empirical evidence on the security impacts of language and Appli...
A security API is an Application Program Interface that allows untrusted code to access sensitive re...
This thesis introduces the newly-born field of Security API research, and lays the foundations for f...
Cryptographic API misuse is responsible for a large number of software vulnerabilities. In many case...
We argue that application developers, while often viewed as allies in the effort to create software ...
Programmers use security APIs to embed security into the applications they develop. Security vulnera...
Software developers build complex systems using plenty of third-party libraries. Documentation is ke...
Rather than recognizing software engineers' limitations, modern security practice has created an adv...
Security Application Programming Interfaces (APIs) play a major role in the software development pro...
textToday's systems abstract the implementation details of common services such as secure client-ser...
In the modern Internet era, web applications are typically driven by web services (WS). Web services...
Abstract — Application-level web security refers to obligation inherent in the code of a web-applica...