Why do some developers produce secure code, but others do not?
What potentially configurable elements impact code quality and security?
Software is written by people, and their actions and decisions ultimately affect the security of the code they produce.
This presentation, originally given during AppSec Amsterdam 2019, explores research conducted to find out what human factors affect the development of secure—or insecure—code.
These factors are widely varied, and include elements such as team composition and size, environmental distractions, and “code crunches.” This presentation details which researched human factors had the greatest impact and which didn’t—and what you can do to create the best environment for producing secure code.