What is Security in the Community?
This is a set of guides to teach developers how to learn security from online services like Stack Overflow.
Why should I use this?
Developers can find it hard to engage with security; it’s typically taught in terms of checklists and things that can go wrong, and that's hard to relate to. Especially when there are no security experts available, developers—especially programmers—have few options other than to learn from the web, and services like Stack Overflow have a worrying reputation for delivering poor security advice.
These materials show how your developers can learn effective security from such services, by selecting good advice and engaging with other users.
How can it be used?
All three versions contain much the same information, though the video is simplified. We suggest you make them all available to the developers in your team, to use in their own time:
- When they have five minutes, using the web version;
- As poster to read in the coffee break; or
- As a video displayed on an open screen.
This activity might be right for you if you want:
- A simple way to help developers;
- Continued education in the workplace; or
- To bring online security conversations into your team discussions and practice.
How do I access the guides?
Click the appropriate button below to access the online guide, the online video, or the poster.
The short open-access paper Taking the Middle Path: Learning about Security Through Online Social Interaction outlines the research and reasons behind this advice. Click here for the full reference.
For the future
If you use these materials, please would you help us develop them for you and others in future? Please email us at firstname.lastname@example.org with quick answers to the following questions:
- How many people took part?
- What did you find worked well?
- What did you feel needed improvement?
Thank you very much for your help
- The Motivating Jenny Team