The pages of the University of Cologne are optimized to be viewed with JavaScript activated. To use all of the features of this site, please enable JavaScript in your browser.
Publications
Using AI Assistants in Software Development: A Qualitative Study on Security Practices and Concerns In Proceedings of the 2024 ACM SIGSAC Conference on Computer and Communications Security (CCS 2024) Defying the Odds: Solana’s Unexpected Resilience in Spite of the Security Challenges Faced by Developers In Proceedings of the 2024 ACM SIGSAC Conference on Computer and Communications Security (CCS 2024) Engaging Company Developers in Security Research Studies: A Comprehensive Literature Review and Quantitative Survey USENIX Security Symposium (USENIX 2024) ChatGPT-Resistant Screening Instrument for Identifying Non-Programmers In Proceedings of the 46th International Conference on Software Engineering 2024 (ICSE 2024) Supplementary Material „Those things are written by lawyers, and programmers are reading that.“ Mapping the Communication Gap Between Software Developers and Privacy Experts Privacy Enhancing Technologies Symposium (PETS 2024) On the Recruitment of Company Developers for Security Studies: Results from a Qualitative Interview Study Raphael Serafini, Marco Gutfleisch, Stefan Albert Horstmann, Alena Naiakshina Symposium on Usable Privacy and Security (SOUPS 2023) Let’s Hash: Helping Developers with Password Security (Distinguished Paper Award) Symposium on Usable Privacy and Security (SOUPS 2022) Testing Screener Questions for Software Developer Studies with Time Limits International Conference on Software Engineering (ICSE 2022) Do you really code? Designing and Evaluating Screening Questions for Online Surveys with Programmers In Proceedings of the 43rd International Conference on Software Engineering 2021 (ICSE 2021) Code Reviewing as Methodology for Online Security Studies with Developers – A Case Study with Freelancers on Password Storage Symposium on Usable Privacy and Security (SOUPS 2021) On Conducting Security Developer Studies with CS Students: Examining a Password-Storage Study with CS Students, Freelancers, and Company Developers In Proceedings of the 2020 CHI Conference on Human Factors in Computing Systems (CHI 2020) One Size Does Not Fit All: A Grounded Theory and Online Survey Study of Developer Preferences for Security Warning Types In Proceedings of the 42nd International Conference on Software Engineering 2020 (ICSE 2020) Replication: On the Ecological Validity of Online Security Developer Studies: Exploring Deception in a Password-Storage Study with Freelancers Symposium on Usable Privacy and Security (SOUPS 2020) If you want, I can store the encrypted password.” A Password-Storage Field Study with Freelance Developers (Honorable Mention) In Proceedings of the 2019 CHI Conference on Human Factors in Computing Systems (CHI 2019) “In Encryption We Don’t Trust: The Effect of End-To-End Encryption to the Masses on User Perception” IEEE European Symposium on Security and Privacy (Euro S&P 2019) Deception Task Design in Developer Password Studies: Exploring a Student Sample Symposium on Usable Privacy and Security (SOUPS 2018) Why Do Developers Get Password Storage Wrong? A Qualitative Usability Study In Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security (CCS 2017) Obstacles to the Adoption of Secure Communication Tools IEEE Symposium on Security and Privacy (S&P 2017)