Ciência_Iscte Publicações Descrição Detalhada da Publicação Exportar

Exportar Publicação

A publicação pode ser exportada nos seguintes formatos: referência da APA (American Psychological Association), referência do IEEE (Institute of Electrical and Electronics Engineers), BibTeX e RIS.

Exportar Referência (APA)

Gasiba, T. E., Iosif, A.-C., Kessba, I., Amburi, S., Lechner, U. & Pinto-Albuquerque, M. (2024). May the source be with you: On ChatGPT, cybersecurity, and secure coding. Information. 15 (9)

Exportar Referência (IEEE)

T. E. Gasiba et al.,  "May the source be with you: On ChatGPT, cybersecurity, and secure coding", in Information, vol. 15, no. 9, 2024

Exportar BibTeX

@article{gasiba2024_1769499132906,
	author = "Gasiba, T. E. and Iosif, A.-C. and Kessba, I. and Amburi, S. and Lechner, U. and Pinto-Albuquerque, M.",
	title = "May the source be with you: On ChatGPT, cybersecurity, and secure coding",
	journal = "Information",
	year = "2024",
	volume = "15",
	number = "9",
	doi = "10.3390/info15090572",
	url = "https://www.mdpi.com/journal/information"
}

Exportar RIS

TY - JOUR
TI - May the source be with you: On ChatGPT, cybersecurity, and secure coding
T2 - Information
VL - 15
IS - 9
AU - Gasiba, T. E.
AU - Iosif, A.-C.
AU - Kessba, I.
AU - Amburi, S.
AU - Lechner, U.
AU - Pinto-Albuquerque, M.
PY - 2024
SN - 2078-2489
DO - 10.3390/info15090572
UR - https://www.mdpi.com/journal/information
AB - Software security is an important topic that is gaining more and more attention due to the rising number of publicly known cybersecurity incidents. Previous research has shown that one way to address software security is by means of a serious game, the CyberSecurity Challenges, which are designed to raise awareness of software developers of secure coding guidelines. This game, proven to be very successful in the industry, makes use of an artificial intelligence technique (laddering technique) to implement a chatbot for human–machine interaction. Recent advances in machine learning have led to a breakthrough, with the implementation and release of large language models, now freely available to the public. Such models are trained on a large amount of data and are capable of analyzing and interpreting not only natural language but also source code in different programming languages. With the advent of ChatGPT, and previous state-of-the-art research in secure software development, a natural question arises: to what extent can ChatGPT aid software developers in writing secure software? In this work, we draw on our experience in the industry, and also on extensive previous work to analyze and reflect on how to use ChatGPT to aid secure software development. Towards this, we conduct two experiments with large language models. Our engagements with ChatGPT and our experience in the field allow us to draw conclusions on the advantages, disadvantages, and limitations of the usage of this new technology.
ER -