Research output per year
Research output per year
Description
This is the dataset that accompanies the chapter in Tolga Ünlü's PhD thesis titled "Questionnaire-based Survey on Developers’ Attack-Awareness".
Additionally, a subset of the data was presented in the following manuscript: Sahin, M., Ünlü, T., Hébert, C., Shepherd, L.A., Coull, N. and Mc Lean, C., 2022, May. Measuring developers’ web security awareness from attack and defense perspectives. In 2022 IEEE Security and Privacy Workshops (SPW) (pp. 31-43). IEEE
A Questionnaire-based survey was conducted, including three sections of questions covering demographics, participants familiarity with security controls, especially input validation controls, whether they understand attack attempts and what part of a HTTP request is under a clients’ control. A scenario was provided to evaluate the participants’ awareness of attack attempts indicated by input validation failures. The participants’ responses have been analysed to understand how various aspects of input validation controls (e.g., the type of validations performed, the parts of a HTTP request that are validated) are considered which can impact how and whether developers can integrate attack-awareness capabilities.
Additionally, a subset of the data was presented in the following manuscript: Sahin, M., Ünlü, T., Hébert, C., Shepherd, L.A., Coull, N. and Mc Lean, C., 2022, May. Measuring developers’ web security awareness from attack and defense perspectives. In 2022 IEEE Security and Privacy Workshops (SPW) (pp. 31-43). IEEE
A Questionnaire-based survey was conducted, including three sections of questions covering demographics, participants familiarity with security controls, especially input validation controls, whether they understand attack attempts and what part of a HTTP request is under a clients’ control. A scenario was provided to evaluate the participants’ awareness of attack attempts indicated by input validation failures. The participants’ responses have been analysed to understand how various aspects of input validation controls (e.g., the type of validations performed, the parts of a HTTP request that are validated) are considered which can impact how and whether developers can integrate attack-awareness capabilities.
| Date made available | 17 Nov 2023 |
|---|---|
| Publisher | Figshare |
| Date of data production | 2020 - 2022 |
Research output
- 1 Conference contribution
-
Measuring developers’ web security awareness from attack and defense perspectives
Sahin, M., Ünlü, T., Hebert, C., Shepherd, L. A., Coull, N. & McLean, C., 25 Jul 2022, 43rd IEEE Symposium on Security and Privacy Workshops, SPW 2022: proceedings. O'Conner, L. (ed.). Piscataway, NJ: IEEE , p. 31-43 13 p. 9833858. (IEEE Security and Privacy Workshops).Research output: Chapter in Book/Report/Conference proceeding › Conference contribution
Open AccessFile7 Citations (Scopus)669 Downloads (Pure)
Student theses
-
Investigating attack-aware web applications
Ünlü, T. (Author), Shepherd, L. (Supervisor), Coull, N. (Supervisor) & McLean, C. (Supervisor), 1 Mar 2024Student thesis: Doctoral Thesis