| You get where you're looking for: The impact of information sources on code security Y Acar, M Backes, S Fahl, D Kim, ML Mazurek, C Stransky 2016 IEEE Symposium on Security and Privacy (SP), 289-305, 2016 | 176 | 2016 |
| Comparing the usability of cryptographic apis Y Acar, M Backes, S Fahl, S Garfinkel, D Kim, ML Mazurek, C Stransky 2017 IEEE Symposium on Security and Privacy (SP), 154-171, 2017 | 144 | 2017 |
| Stack overflow considered harmful? the impact of copy&paste on android application security F Fischer, K Böttinger, H Xiao, C Stransky, Y Acar, M Backes, S Fahl 2017 IEEE Symposium on Security and Privacy (SP), 121-136, 2017 | 143 | 2017 |
| Vccfinder: Finding potential vulnerabilities in open-source projects to assist code audits H Perl, S Dechand, M Smith, D Arp, F Yamaguchi, K Rieck, S Fahl, Y Acar Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications …, 2015 | 122 | 2015 |
| On the ecological validity of a password study S Fahl, M Harbach, Y Acar, M Smith Proceedings of the Ninth Symposium on Usable Privacy and Security, 1-13, 2013 | 116 | 2013 |
| Keep me updated: An empirical study of third-party library updatability on android E Derr, S Bugiel, S Fahl, Y Acar, M Backes Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications …, 2017 | 85 | 2017 |
| Sok: Lessons learned from android security research for appified software platforms Y Acar, M Backes, S Bugiel, S Fahl, P McDaniel, M Smith 2016 IEEE Symposium on Security and Privacy (SP), 433-451, 2016 | 82 | 2016 |
| A stitch in time: Supporting android developers in writingsecure code DC Nguyen, D Wermke, Y Acar, M Backes, C Weir, S Fahl Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications …, 2017 | 67 | 2017 |
| You are not your developer, either: A research agenda for usable security and privacy research beyond end users Y Acar, S Fahl, ML Mazurek 2016 IEEE Cybersecurity Development (SecDev), 3-8, 2016 | 63 | 2016 |
| Security Developer Studies with GitHub Users: Exploring a Convenience Sample Y Acar, C Stransky, D Wermke, M Mazurek, S Fahl Symposium on Usable Privacy and Security (SOUPS), 2017 | 61 | 2017 |
| Developers need support, too: A survey of security advice for software developers Y Acar, C Stransky, D Wermke, C Weir, ML Mazurek, S Fahl 2017 IEEE Cybersecurity Development (SecDev), 22-26, 2017 | 52 | 2017 |
| To Pin or Not to Pin—Helping App Developers Bullet Proof Their {TLS} Connections M Oltrogge, Y Acar, S Dechand, M Smith, S Fahl 24th {USENIX} Security Symposium ({USENIX} Security 15), 239-254, 2015 | 52 | 2015 |
| A large scale investigation of obfuscation use in google play D Wermke, N Huaman, Y Acar, B Reaves, P Traynor, S Fahl Proceedings of the 34th Annual Computer Security Applications Conference …, 2018 | 47 | 2018 |
| Why Eve and Mallory (also) love webmasters: A study on the root causes of SSL misconfigurations S Fahl, Y Acar, H Perl, M Smith Proceedings of the 9th ACM symposium on Information, computer and …, 2014 | 44 | 2014 |
| An empirical study of textual key-fingerprint representations S Dechand, D Schürmann, K Busse, Y Acar, S Fahl, M Smith 25th {USENIX} Security Symposium ({USENIX} Security 16), 193-208, 2016 | 40 | 2016 |
| A summary of survey methodology best practices for security and privacy researchers EM Redmiles, Y Acar, S Fahl, ML Mazurek | 36 | 2017 |
| Developers Deserve Security Warnings, Too: On the Effect of Integrated Security Advice on Cryptographic {API} Misuse PL Gorski, LL Iacono, D Wermke, C Stransky, S Möller, Y Acar, S Fahl Fourteenth Symposium on Usable Privacy and Security ({SOUPS} 2018), 265-281, 2018 | 30 | 2018 |
| The rise of the citizen developer: Assessing the security impact of online app generators M Oltrogge, E Derr, C Stransky, Y Acar, S Fahl, C Rossow, G Pellegrino, ... 2018 IEEE Symposium on Security and Privacy (SP), 634-647, 2018 | 25 | 2018 |
| How internet resources might be helping you develop faster but less securely Y Acar, M Backes, S Fahl, D Kim, ML Mazurek, C Stransky IEEE Security & Privacy 15 (2), 50-60, 2017 | 21 | 2017 |
| Lessons learned from using an online platform to conduct large-scale, online controlled security experiments with software developers C Stransky, Y Acar, DC Nguyen, D Wermke, D Kim, EM Redmiles, ... 10th {USENIX} Workshop on Cyber Security Experimentation and Test ({CSET} 17), 2017 | 17 | 2017 |
Sascha FahlCISPA Helmholtz Center for Information Security and Leibniz University Hannover, GermanyVerified email at cispa.de
