A within-subject study of 12 developers found that security training reduced validated weaknesses by 31.5% and critical issues by 79.2% in LLM-assisted backend coding.
Using AI assistants in software development: A qualitative study on security practices and concerns
3 Pith papers cite this work. Polarity classification is still indexing.
3
Pith papers citing it
citation-role summary
background 1
citation-polarity summary
fields
cs.CR 3years
2026 3roles
background 1polarities
background 1representative citing papers
FIDO2 passkeys largely remain phishing-resistant because implemented attacks like infected authenticators and browser deception demand far more effort and resources than traditional password phishing.
Empirical tests show open-source LLM agents underperform the Bandit SAST tool and are not ready to replace it for security scanning.
citing papers explorer
-
A Quasi-Experimental Developer Study of Security Training in LLM-Assisted Web Application Development
A within-subject study of 12 developers found that security training reduced validated weaknesses by 31.5% and critical issues by 79.2% in LLM-assisted backend coding.
-
An Analysis of Attack Vectors Against FIDO2 Authentication
FIDO2 passkeys largely remain phishing-resistant because implemented attacks like infected authenticators and browser deception demand far more effort and resources than traditional password phishing.
-
Can Open-Source LLM Agents Replace Static Application Security Testing Tools? An Empirical Assessment
Empirical tests show open-source LLM agents underperform the Bandit SAST tool and are not ready to replace it for security scanning.