How Could Serious Games Support Secure Programming? Designing a Study Replication and Intervention

Manuel Maarek, Leon McGregor, Sandy Louchart, Ross McMenemy

Research output: Chapter in Book/Report/Conference proceedingConference contribution

35 Downloads (Pure)

Abstract

While developing and deploying software continue to be more broadly accessible, so is the problem caused by these systems' security not being considered enough by their developers and maintainers. We propose to address this developer-centred security issue with serious games (games for which entertainment is not the main purpose) as a means to motivate developers to consider security threats when developing. We have developed a serious game around secure and non-secure programming exercises to investigate if serious gamification helps to improve attitudes or ability with secure programming. We detail the design choices of the game and how it relates to the programming tasks. In particular we present the design choices we made with the intention to replicate a prior study and discuss the tension that arose between replication and intervention. We discuss the results of a pilot study we conducted and present the steps we plan to take going forward into larger studies.
Original languageEnglish
Title of host publication2019 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)
PublisherIEEE
Pages139-148
Number of pages10
ISBN (Electronic)9781728130262
DOIs
Publication statusPublished - 19 Aug 2019
EventEuroUSEC European Workshop on Usable Security 2019 - Stockholm, Sweden
Duration: 20 Jun 201920 Jun 2019
Conference number: 4
https://eusec.cs.uchicago.edu/

Workshop

WorkshopEuroUSEC European Workshop on Usable Security 2019
Abbreviated titleEuroUSEC 2019
CountrySweden
CityStockholm
Period20/06/1920/06/19
Internet address

Keywords

  • Developer centred security
  • Secure programming
  • Serious game intervention
  • Serious games
  • Study replication

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Information Systems and Management
  • Safety, Risk, Reliability and Quality

Fingerprint Dive into the research topics of 'How Could Serious Games Support Secure Programming? Designing a Study Replication and Intervention'. Together they form a unique fingerprint.

  • Cite this

    Maarek, M., McGregor, L., Louchart, S., & McMenemy, R. (2019). How Could Serious Games Support Secure Programming? Designing a Study Replication and Intervention. In 2019 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW) (pp. 139-148). IEEE. https://doi.org/10.1109/EuroSPW.2019.00022