Table 5 Questions for surveys S1, S2 and S3
From: Sifu - a cybersecurity awareness platform with challenge assessment and intelligent coach
Survey | QID | T | TC | Question |
|---|---|---|---|---|
S1 | Q1 | - | - | Please give an overall rating to the challenge |
| Â | Q2 | - | - | How well could you recognize the vulnerability in the code? |
| Â | Q3 | - | - | How well can you fix this problem in production code? |
S2 | F1 | HP | My overall experience with the platform was positive | |
| Â | F2 | BE | The Sifu platform helps me to improve my secure coding skills | |
| Â | F3 | PE | Solving challenges in the Sifu platform helps me in recognizing | |
| Â | Â | Â | Â | vulnerable code |
| Â | F4 | PR | Solving challenges in the Sifu platform helps me in understanding | |
| Â | Â | Â | Â | consequences of exploiting vulnerable code |
| Â | F5 | HP | Solving challenges in the Sifu platform makes me overall happy | |
| Â | F6 | BE | Challenges in the Sifu platform help me to practice secure coding | |
| Â | Â | Â | Â | guidelines |
| Â | F7 | HP | I find the Sifu platform adequate as a means to raise awareness | |
| Â | Â | Â | Â | on secure coding |
| Â | F8 | HP | The examples in the Sifu platform are clearly presented | |
| Â | F9 | HP | It is fun to solve challenges in the Sifu platform | |
S3 | X1 | PE | I have learned new techniques and principles related to secure | |
| Â | Â | Â | Â | software development |
| Â | X2 | PR | The challenges help me to understand possible consequences of | |
| Â | Â | Â | Â | security breaches |
| Â | X3 | BE | I feel I am better prepared to handle secure coding-related issues | |
| Â | Â | Â | Â | at work |
| Â | X4 | BE | The challenges help me to understand the need to have a well | |
| Â | Â | Â | Â | defined secure software development lifecycle activities |
|  | X5 | PE | I’ve learned about new issues related to security that can occur | |
| Â | Â | Â | Â | during software development through playing the challenges |
| Â | X6 | HP | The help from the coaches was adequate | |
| Â | X7 | - | WK | I feel more prepared to understand the output of static |
| Â | Â | Â | Â | application security testing tools |
| Â | X8 | - | WK | Through playing the challenges, I know where I can find |
| Â | Â | Â | Â | information about secure coding guidelines |
| Â | X9 | PR | Through playing the challenges I understand the importance of | |
| Â | Â | Â | Â | using secure coding guidelines |
| Â | X10 | BE | Through playing the challenges I feel my practical secure coding | |
| Â | Â | Â | Â | skills have improved |
| Â | X11 | HP | The challenges are related with my daily work in my company |