![[img]](https://epub.uni-regensburg.de/style/images/fileicons/application_pdf.png) | Veröffentlichte Version Download ( PDF | 2MB) | Lizenz: Creative Commons Namensnennung 4.0 International |
Insecure by design? A human-centric security perspective on AI-assisted software development
Glas, Magdalena
, Nirschl, Christoph, Lanyado, Bar und van Niekerk, Johan
(2026)
Insecure by design? A human-centric security perspective on AI-assisted software development.
Computers & Security 164, S. 104842.
Veröffentlichungsdatum dieses Volltextes: 03 Feb 2026 07:00
Artikel
DOI zum Zitieren dieses Dokuments: 10.5283/epub.78556
Zusammenfassung
Generative artificial intelligence (AI) tools are increasingly used in software development, improving the efficiency of software developers. However, this adoption introduces notable security challenges. AI/generated code is not secure by default, as it is often based on large-scale training data that includes open-source code of varying quality and trustworthiness. Developers using these tools ...
Generative artificial intelligence (AI) tools are increasingly used in software development, improving the efficiency of software developers. However, this adoption introduces notable security challenges. AI/generated code is not secure by default, as it is often based on large-scale training data that includes open-source code of varying quality and trustworthiness. Developers using these tools may be unaware of the associated risks or may place excessive trust in the security of the output. This briefing paper outlines the key security risks associated with generative AI and offers human-centered strategies for mitigation. Since these risks arise not only from how generative AI models are built but also from how humans interact with them, we adopt a human-centric perspective. To this end, we provide recommendations for individuals, organizations, and educators to help harness the potential of generative AI in software development while effectively managing the associated security risks.
Alternative Links zum Volltext
Beteiligte Einrichtungen
Details
| Dokumentenart | Artikel | ||||
| Titel eines Journals oder einer Zeitschrift | Computers & Security | ||||
| Verlag: | Elsevier | ||||
|---|---|---|---|---|---|
| Band: | 164 | ||||
| Seitenbereich: | S. 104842 | ||||
| Datum | 23 Januar 2026 | ||||
| Institutionen | Wirtschaftswissenschaften > Institut für Wirtschaftsinformatik > Lehrstuhl für Wirtschaftsinformatik I - Informationssysteme (Prof. Dr. Günther Pernul) Informatik und Data Science > Fachbereich Wirtschaftsinformatik > Lehrstuhl für Wirtschaftsinformatik I - Informationssysteme (Prof. Dr. Günther Pernul) | ||||
| Identifikationsnummer |
| ||||
| Stichwörter / Keywords | Artificial intelligence, Software development, AI-assistance, Security, Coding | ||||
| Dewey-Dezimal-Klassifikation | 000 Informatik, Informationswissenschaft, allgemeine Werke > 004 Informatik 300 Sozialwissenschaften > 330 Wirtschaft | ||||
| Status | Veröffentlicht | ||||
| Begutachtet | Ja, diese Version wurde begutachtet | ||||
| An der Universität Regensburg entstanden | Zum Teil | ||||
| URN der UB Regensburg | urn:nbn:de:bvb:355-epub-785566 | ||||
| Dokumenten-ID | 78556 |
Bibliographische Daten exportieren
Nur für Besitzer und Autoren: Kontrollseite des Eintrags
Downloadstatistik
Downloadstatistik