Browsing NTNU Open by Author "Wen, Shao-Fang"
Now showing items 1-20 of 25
-
AI Legal Assistant: Enhancing GDPR Compliance with Large Language Models
Bjerknes, Emil Farstad; Bjørneng, Paul Røkke; Bliksvær, Torje Grimstad (Bachelor thesis, 2024)Futurize AS er et oppstartsselskap som spesialiserer seg i utviklingen av innovative løsninger for den juridiske bransjen gjennom integrasjon av KI i arbeidsflyten. De søker ny innsikt og perspektiv på utviklingen av AI ... -
An Empirical Study of Security Culture in Open Source Software Communities
Wen, Shao-Fang; Kianpour, Mazaher; Kowalski, Stewart James (Chapter, 2019)Open source software (OSS) is a core part of virtually all software applications today. Due to the rapidly growing impact of OSS on society and the economy, the security aspect has attracted researchers' attention to ... -
An Empirical Study on Security Knowledge Sharing and Learning in Open Source Software Communities
Wen, Shao-Fang (Journal article; Peer reviewed, 2018)pen source software (OSS) security has been the focus of the security community and practitioners over the past decades. However, the number of new vulnerabilities keeps increasing in today’s OSS systems. With today’s ... -
Context-Based Support to Enhance Developers’ Learning of Software Security
Wen, Shao-Fang (Peer reviewed; Journal article, 2023)Software security is an ongoing problem, largely due to a lack of security knowledge among software developers from diverse backgrounds. To counter this, security experts are attempting to offer a broad range of knowledge ... -
Cyber Security Megagame Platform
Innvær, Brynjar; Haug, Kevin; Kjelaas, Marie (Bachelor thesis, 2024)Den økende kompleksiteten av cybertrusler krever innovative pedagogiske verktøy. Cyber Security Technopoly (C.S. Technopoly), et konsept fremmet av Interactive ICS AS og GSTSG AB , er en omfattende spillplattform designet ... -
Developing Security Assurance Metrics to Support Quantitative Security Assurance Evaluation
Wen, Shao-Fang; Shukla, Ankur; Katt, Basel (Journal article; Peer reviewed, 2022)Security assurance (SA) is a technique that helps organizations to appraise the trust and confidence that a system can be operated correctly and securely. To foster effective SA, there must be systematic techniques to ... -
Development of Ontology-Based Software Security Learning System with Contextualized Learning Approach
Wen, Shao-Fang; Katt, Basel (Journal article; Peer reviewed, 2019)Learning software security is one of the most challenging tasks in the information technology sector due to the vast amount of security knowledge and the difficulties in understanding the practical applications. The ... -
Escaperom - et effektivt læringsverktøy?
Hatlem, Thea Fritzvold; Rønningstad, Emma; Øverstad, Anett Voldheim (Bachelor thesis, 2022)"Escaperom - et effektivt læringsverktøy?" handler om hvorvidt det er mulig å utforme escaperom - et hovedsaklig fysisk fenomen, til å bli et effektiv virtuelt læringsverktøy for Helsetjenestens driftsorganisasjon for ... -
Exploring the role of assurance context in system security assurance evaluation: a conceptual model
Wen, Shao-Fang; Katt, Basel (Peer reviewed; Journal article, 2023)Purpose Security assurance evaluation (SAE) is a well-established approach for assessing the effectiveness of security measures in systems. However, one aspect that is often overlooked in these evaluations is the assurance ... -
Learning Secure Programming in Open Source Software Communities: A Socio-Technical View
Wen, Shao-Fang (Chapter, 2018)In open source software (OSS) communities, volunteers collaborate and integrate expertise to develop the software online via the Internet in a decentralized, highly interactive and knowledge-intensive process. Development ... -
Learning Software Security in Context: An Evaluation in Open Source Software Development Environment
Wen, Shao-Fang; Katt, Basel (Chapter, 2019)Learning software security has become a complex and difficult task today than it was even a decade ago. With the increased complexity of computer systems and a variety of applications, it is hard for software developers ... -
Managing Software Security Knowledge in Context: An Ontology Based Approach
Wen, Shao-Fang; Katt, Basel (Journal article; Peer reviewed, 2019)Knowledge of software security is highly complex since it is quite context-specific and can be applied in diverse ways. To secure software development, software developers require not only knowledge about general security ... -
A Metamodel for Web Application Security Evaluation
Wen, Shao-Fang; Katt, Basel (Chapter, 2023)In the digital era, web applications have become a prevalent tool for businesses. As the number of web applications continues to grow, they become enticing targets for malicious actors seeking to exploit potential security ... -
A Multi-Discipline Approach for Enhancing Developer Learning in Software Security
Wen, Shao-Fang (Doctoral theses at NTNU;2020:151, Doctoral thesis, 2020)Building secure software is challenging. Developers should possess proper security knowledge and skills so that they can resist security attacks and implement security countermeasures effectively. However, the lack of ... -
An Ontology-Based Context Model for Managing Security Knowledge in Software Development
Wen, Shao-Fang; Katt, Basel (Chapter, 2018)Software security has been the focus of the security community and practitioners over the past decades. Much security information is widely available in books, open literature or on the internet. We argue that the generated ... -
Ontology-Based Metrics Computation for System Security Assurance Evaluation
Wen, Shao-Fang; Katt, Basel (Journal article; Peer reviewed, 2022)Security assurance evaluation (SAE) is a technique that helps organizations to appraise the trust and confidence that a system can be operated correctly and securely. This paper contributes to the research on quantitative ... -
Ontology-Based Scenario Modeling for Cyber Security Exercise
Wen, Shao-Fang; Yamin, Muhammad Mudassar; Katt, Basel (Chapter, 2021)The growing demand for cyber security professionals with practical knowledge is boosting the development and conduct of cyber security exercises around the world. Scenarios stand a central position of the exercise, which ... -
Preliminary Evaluation of an Ontology-Based Contextualized Learning System for Software Security
Wen, Shao-Fang; Katt, Basel (Chapter, 2019)Learning software security is a big challenging task in the information technology sector due to the vast amount of security knowledge and the difficulties in understanding the practical applications. The traditional ... -
A Quantitative Security Evaluation and Analysis Model for Web Applications Based on OWASP Application Security Verification Standard
Wen, Shao-Fang; Katt, Basel (Peer reviewed; Journal article, 2023)In today's digital world, web applications are popular tools used by businesses. As more and more applications are deployed on the web, they are seen as increasingly attractive targets by malicious actors eager to exploit ... -
SAEOn: An Ontological Metamodel for Quantitative Security Assurance Evaluation
Wen, Shao-Fang; Katt, Basel (Chapter, 2023)Security assurance is a critical aspect in determining the trustworthiness of information and communication technology systems. Security assurance evaluation (SAE) is the process responsible for gathering assurance shreds ...