An exploratory analysis of security on data transmission on relevant software engineering discussion sites

2017 4th International Conference on Networking, Systems and Security (NSysS) Pub Date : 2017-12-01 DOI:10.1109/NSYSS2.2017.8267784

S. Jahan, Mehjabin Rahman, Anindya Iqbal, Tishna Sabrina

{"title":"An exploratory analysis of security on data transmission on relevant software engineering discussion sites","authors":"S. Jahan, Mehjabin Rahman, Anindya Iqbal, Tishna Sabrina","doi":"10.1109/NSYSS2.2017.8267784","DOIUrl":null,"url":null,"abstract":"The Question and Answer (Q&A) sites are very popular nowadays for discussion on technological issues. Among the most prominent topics of these sites, posts related to security are widely visited. Security discussions may be classified broadly into two categories: application and infrastructure security. In this research, we studied several community Q&A sites to analyze the characteristics of requirements and difficulties to implement security in data transmission, one of the most dominant topics of infrastructure security. To the best of our knowledge, this is the first study of this kind. Our findings are expected to make it easier for the interested people to acquire knowledge about recent threats and security issues of data transmission in a methodical way and also to understand the trends of relevant technologies. We found that Transport Layer Security (TLS) is the most discussed technique over the years and Cross-Site Scripting (XSS) attack is the primary concern for the developers.","PeriodicalId":144799,"journal":{"name":"2017 4th International Conference on Networking, Systems and Security (NSysS)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2017 4th International Conference on Networking, Systems and Security (NSysS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/NSYSS2.2017.8267784","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

Abstract

The Question and Answer (Q&A) sites are very popular nowadays for discussion on technological issues. Among the most prominent topics of these sites, posts related to security are widely visited. Security discussions may be classified broadly into two categories: application and infrastructure security. In this research, we studied several community Q&A sites to analyze the characteristics of requirements and difficulties to implement security in data transmission, one of the most dominant topics of infrastructure security. To the best of our knowledge, this is the first study of this kind. Our findings are expected to make it easier for the interested people to acquire knowledge about recent threats and security issues of data transmission in a methodical way and also to understand the trends of relevant technologies. We found that Transport Layer Security (TLS) is the most discussed technique over the years and Cross-Site Scripting (XSS) attack is the primary concern for the developers.

查看原文本刊更多论文

相关软件工程讨论网站对数据传输安全性的探索性分析

问答(Q&A)网站现在非常流行，用于讨论技术问题。在这些网站最突出的主题中，与安全相关的帖子被广泛访问。安全性讨论可以大致分为两类:应用程序安全性和基础设施安全性。在本研究中，我们研究了几个社区问答网站，以分析数据传输安全的需求特征和实现困难，这是基础设施安全的最主要主题之一。据我们所知，这是第一次这样的研究。我们的研究结果有望使有兴趣的人更容易有条不紊地获取有关数据传输的最新威胁和安全问题的知识，并了解相关技术的趋势。我们发现传输层安全(TLS)是近年来讨论最多的技术，而跨站脚本攻击(XSS)是开发人员最关心的问题。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2017 4th International Conference on Networking, Systems and Security (NSysS)

自引率

0.00%

发文量