TY - GEN
T1 - Developers Need Protection, Too
T2 - 16th IEEE/ACM International Conference on Cooperative and Human Aspects of Software Engineering, CHASE 2023
AU - Ferreyra, Nicolás E.Díaz
AU - Imine, Abdessamad
AU - Vidoni, Melina
AU - Scandariato, Riccardo
N1 - Publisher Copyright:
© 2023 IEEE.
PY - 2023
Y1 - 2023
N2 - Social Coding Platforms (SCPs) like GitHub have become central to modern software engineering thanks to their collaborative and version-control features. Like in mainstream Online Social Networks (OSNs) such as Facebook, users of SCPs are subjected to privacy attacks and threats given the high amounts of personal and project-related data available in their profiles and software repositories. However, unlike in OSNs, the privacy concerns and practices of SCP users have not been extensively explored nor documented in the current literature. In this work, we present the preliminary results of an online survey (N=105) addressing developers' concerns and perceptions about privacy threats steaming from SCPs. Our results suggest that, although users express concern about social and organisational privacy threats, they often feel safe sharing personal and project-related information on these platforms. Moreover, attacks targeting the inference of sensitive attributes are considered more likely than those seeking to re-identify source-code contributors. Based on these findings, we propose a set of recommendations for future investigations addressing privacy and identity management in SCPs.
AB - Social Coding Platforms (SCPs) like GitHub have become central to modern software engineering thanks to their collaborative and version-control features. Like in mainstream Online Social Networks (OSNs) such as Facebook, users of SCPs are subjected to privacy attacks and threats given the high amounts of personal and project-related data available in their profiles and software repositories. However, unlike in OSNs, the privacy concerns and practices of SCP users have not been extensively explored nor documented in the current literature. In this work, we present the preliminary results of an online survey (N=105) addressing developers' concerns and perceptions about privacy threats steaming from SCPs. Our results suggest that, although users express concern about social and organisational privacy threats, they often feel safe sharing personal and project-related information on these platforms. Moreover, attacks targeting the inference of sensitive attributes are considered more likely than those seeking to re-identify source-code contributors. Based on these findings, we propose a set of recommendations for future investigations addressing privacy and identity management in SCPs.
KW - privacy concerns
KW - privacy engineering
KW - social coding platforms
KW - usable security
UR - http://www.scopus.com/inward/record.url?scp=85165207859&partnerID=8YFLogxK
U2 - 10.1109/CHASE58964.2023.00019
DO - 10.1109/CHASE58964.2023.00019
M3 - Conference contribution
T3 - Proceedings - 2023 IEEE/ACM 16th International Conference on Cooperative and Human Aspects of Software Engineering, CHASE 2023
SP - 105
EP - 110
BT - Proceedings - 2023 IEEE/ACM 16th International Conference on Cooperative and Human Aspects of Software Engineering, CHASE 2023
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 14 May 2023 through 15 May 2023
ER -