Exportar Publicação
A publicação pode ser exportada nos seguintes formatos: referência da APA (American Psychological Association), referência do IEEE (Institute of Electrical and Electronics Engineers), BibTeX e RIS.
Lourenço, M., Gasiba, T. E. & Pinto-Albuquerque, M. (2023). You are doing it wrong: On vulnerabilities in low code development platforms. In Falk, R., and Chan, S. (Ed.), CYBER 2023: The Eighth International Conference on Cyber-Technologies and Cyber-Systems. (pp. 12-18). Porto, Portugal: IARIA.
M. Lourenço et al., "You are doing it wrong: On vulnerabilities in low code development platforms", in CYBER 2023: The 8th Int. Conf. on Cyber-Technologies and Cyber-Systems, Falk, R., and Chan, S., Ed., Porto, Portugal, IARIA, 2023, pp. 12-18
@inproceedings{lourenço2023_1734893386226, author = "Lourenço, M. and Gasiba, T. E. and Pinto-Albuquerque, M.", title = "You are doing it wrong: On vulnerabilities in low code development platforms", booktitle = "CYBER 2023: The Eighth International Conference on Cyber-Technologies and Cyber-Systems", year = "2023", editor = "Falk, R., and Chan, S.", volume = "", number = "", series = "", pages = "12-18", publisher = "IARIA", address = "Porto, Portugal", organization = "IARIA", url = "https://www.thinkmind.org/index.php?view=instance&instance=CYBER+2023" }
TY - CPAPER TI - You are doing it wrong: On vulnerabilities in low code development platforms T2 - CYBER 2023: The Eighth International Conference on Cyber-Technologies and Cyber-Systems AU - Lourenço, M. AU - Gasiba, T. E. AU - Pinto-Albuquerque, M. PY - 2023 SP - 12-18 SN - 2519-8599 CY - Porto, Portugal UR - https://www.thinkmind.org/index.php?view=instance&instance=CYBER+2023 AB - Low-Code Development Platforms (LCDPs) are gaining more and more traction, even in the industrial context, as a means for anyone with less coding experience to develop and deploy applications. However, little is known about the vulnerabilities resulting from this new software development model. This paper aims to understand vulnerabilities in applications developed and deployed on these platforms. We show that these vulnerabilities can be considered from three perspectives: platform, developer, and plugins. We determine the top three vulnerabilities for each perspective based on a review of the literature and expert interviews. Our results contribute to understanding LCDP applications’ security and raise awareness of industry practitioners by providing typical LCDP security pitfalls. ER -