Dazed and Confused: What’s Wrong with Crypto Libraries? — Conclusions

This content originally appeared on HackerNoon and was authored by CryptoColumns

:::info Authors:

(1) Mohammadreza Hazhirpasand, University of Bern, Bern, Switzerland;

(2) Oscar Nierstrasz, University of Bern, Bern, Switzerland;

(3) Mohammad Ghafari, University of Auckland, Auckland, New Zealand.

:::

Table of Links

• Abstract and I. Introduction
• II. Methodology
• III. Results and Discussion
• IV. Threats to Validity
• V. Related Work
• VI. Conclusions
• VII. Acknowledgments and References

VI. CONCLUSIONS

There have been numerous studies to investigate why crypto APIs are hard to use for developers. Such studies examined the issues from the developer’s point of view as well as the usability of crypto APIs. We were curious to observe what technical problems are common among different crypto libraries. We selected 25 discussions from 20 crypto libraries on Stack Overflow and to the best of our knowledge, we did not find any study in which 20 crypto libraries were considered. We identified 10 themes in the discussions and the majority of libraries were involved in more than five themes. There exist 0.04% of questions concerning attacks against cryptography, whereas 112 questions were related to encryption/decryption issues. The developers also asked questions mostly about library installation, digital certificates, crypto keys, and library interoperability. The implications of these findings can assist security and software professionals to correctly guide their team members when dealing with cryptography, and especially crypto libraries. Further work is certainly required to disentangle the problematic commonalities among various crypto libraries.

\

:::info This paper is available on arxiv under CC BY 4.0 DEED license.

:::

\

This content originally appeared on HackerNoon and was authored by CryptoColumns

Print Share Comment Cite Upload Translate Updates

APA

CryptoColumns | Sciencx (2024-06-15T20:00:24+00:00) Dazed and Confused: What’s Wrong with Crypto Libraries? — Conclusions. Retrieved from https://www.scien.cx/2024/06/15/dazed-and-confused-whats-wrong-with-cryptolibraries-conclusions/

MLA

" » Dazed and Confused: What’s Wrong with Crypto Libraries? — Conclusions." CryptoColumns | Sciencx - Saturday June 15, 2024, https://www.scien.cx/2024/06/15/dazed-and-confused-whats-wrong-with-cryptolibraries-conclusions/

HARVARD

CryptoColumns | Sciencx Saturday June 15, 2024 » Dazed and Confused: What’s Wrong with Crypto Libraries? — Conclusions., viewed ,<https://www.scien.cx/2024/06/15/dazed-and-confused-whats-wrong-with-cryptolibraries-conclusions/>

VANCOUVER

CryptoColumns | Sciencx - » Dazed and Confused: What’s Wrong with Crypto Libraries? — Conclusions. [Internet]. [Accessed ]. Available from: https://www.scien.cx/2024/06/15/dazed-and-confused-whats-wrong-with-cryptolibraries-conclusions/

CHICAGO

" » Dazed and Confused: What’s Wrong with Crypto Libraries? — Conclusions." CryptoColumns | Sciencx - Accessed . https://www.scien.cx/2024/06/15/dazed-and-confused-whats-wrong-with-cryptolibraries-conclusions/

IEEE

" » Dazed and Confused: What’s Wrong with Crypto Libraries? — Conclusions." CryptoColumns | Sciencx [Online]. Available: https://www.scien.cx/2024/06/15/dazed-and-confused-whats-wrong-with-cryptolibraries-conclusions/. [Accessed: ]

rf:citation

» Dazed and Confused: What’s Wrong with Crypto Libraries? — Conclusions | CryptoColumns | Sciencx | https://www.scien.cx/2024/06/15/dazed-and-confused-whats-wrong-with-cryptolibraries-conclusions/ |

Please log in to upload a file.

There are no updates yet.
Click the Upload button above to add an update.

You must be logged in to translate posts. Please log in or register.