"It Works on My Machine": The Psychology of Bad Code
13 days ago
- #Developer Behavior
- #Behavioral Economics
- #Software Security
- Exploration of bad developer behaviors leading to insecure software.
- Application of behavioral economics to understand and improve developer decisions.
- Personal reflection on understanding human behavior and decision-making.
- Introduction to behavioral economics as a tool for improving software security.
- List of 10 known bad developer behaviors that result in insecure code.
- Belief that developers care about security but face too many competing priorities.
- Explanation of cognitive biases and heuristics in decision-making.
- Three actionable ideas to improve AppSec programs: technical nudges, incentive shifts, and cultural changes.
- Upcoming blog series detailing each of the 10 bad behaviors and solutions.
- Call for community input on creating nudges, improving incentives, and culture change.