Menü DIPF | Leibniz-Institut für Bildungsforschung und Bildungsinformation

Suche

Wo soll gesucht werden?
Hier finden Sie weiterführende Informationen.
Erweiterte Literatursuche

Ariadne Pfad:

Inhalt

Literaturnachweis - Detailanzeige

Hier finden Sie weiterführende Informationen.
 

Trefferliste

Autor/inn/enSharman, Jonathan; Acemyan, Claudia Ziegler; Kortum, Philip; Wallach, Dan
TitelGood Examples Help; Bad Tools Hurt: Lessons for Teaching Computer Security Skills to Undergraduates
QuelleIn: International Journal of Computer Science Education in Schools, 5 (2021) 2, (14 Seiten)
PDF als Volltext kostenfreie Datei Verfügbarkeit 
Spracheenglisch
Dokumenttypgedruckt; online; Zeitschriftenaufsatz
ISSN2513-8359
SchlagwörterTeaching Methods; Computer Science Education; Undergraduate Students; Computer Software; Computer Security; Usability; Comparative Analysis; Cooperative Learning; Validity; Programming; Scoring Rubrics; Texas (Houston)
AbstractSoftware security is inevitably dependent on developers' ability to to design and implement software without security bugs. Perhaps unsurprisingly, developers often fail to do this. Our goal is to understand this from a usability perspective, identifying how we might best train developers and equip them with the right software tools. To this end, we conducted two comparatively large-scale usability studies with undergraduate CS students to assess factors that affect success rates in securing web applications against cross-site request forgery (CSRF) attacks. First, we examined the impact of providing students with example code and/or a testing tool. Next, we examined the impact of working in pairs. We found that access to relevant secure code samples gave significant benefit to security outcomes. However, access to the tool alone had no significant effect on security outcomes, and surprisingly, the same held true for the tool and example code combined. These results confirm the importance of quality example code and demonstrate the potential danger of using security tools in the classroom that have not been validated for usability. No individual differences predicted one's ability to complete the task. We also found that working in pairs had a significant positive effect on security outcomes. These results provide useful directions for teaching computer security programming skills to undergraduate students. (As Provided).
AnmerkungenInternational Journal of Computer Science Education in Schools. 83 Dollis Road, London N3 1RD, UK. 2-mail: info@ijcses.org; Web site: http://www.ijcses.org
Erfasst vonERIC (Education Resources Information Center), Washington, DC
Update2024/1/01
Literaturbeschaffung und Bestandsnachweise in Bibliotheken prüfen
Hier finden Sie weiterführende Informationen.
 
Standortgebundene Dienste:
bitte warten

Standortunabhängige Dienste
Bibliotheken, die die Zeitschrift "International Journal of Computer Science Education in Schools" besitzen:
Link zur Zeitschriftendatenbank (ZDB)

Artikellieferdienst der deutschen Bibliotheken (subito):
Übernahme der Daten in das subito-Bestellformular

Tipps zum Auffinden elektronischer Volltexte im Video-Tutorial

Trefferlisten Einstellungen
Dateien exportieren oder versenden
Exportieren der Dateien:
Versenden der Dateien:

Permalink als QR-Code

Permalink als QR-Code

Inhalt auf sozialen Plattformen teilen (nur vorhanden, wenn Javascript eingeschaltet ist)

Teile diese Seite: