"There were Sacrifices to reach that Deadline": Security Challenges in Game Development

"There were Sacrifices to reach that Deadline": Security Challenges in Game Development

Stage 4 - Alibaba Cloud Stage - Level 1
-All-ProductionResearch & EducationTech & Coding

Information

Security knowledge is power! In today's game development processes, providers and developers must consider factors beyond game functionality to encompass availability, authentication, monetization, and data protection, emphasizing the critical need for robust security and privacy measures. However, the games industry is notoriously plagued by security incidents and a lack of knowledge on how to deal with them. In this talk, we will draw on our scientific publications and wider security research findings to provide insights into the key areas of the industry that are particularly relevant to security, analyze security incidents and provide actionable recommendations on how security can be improved in the future by linking knowledge from research to the game development industry. We want to uncover where security knowledge exists in the industry (and where it doesn't) to sensitize every developer, QA professional, security analyst, manager and publisher of video games to the importance of security and empower everyone to develop secure video games and environments and spread this knowledge.
Target Audiences
Game developers, QA professionals, security staff, managers, producers, publishers
Experience Level
Beginner
Key Take Aways
We'll introduce the concept of usable security and share our research findings on secure software development within the game industry. We'll explore real-world security incidents, discussing how they arose and delve into our study where we engaged with industry experts worldwide. Our discussion will cover key security topics affecting developers, QA professionals, security analysts, managers, and more. We'll highlight industry challenges and propose improvements in development, management, coding practices, networking, anti-cheating measures, and privacy concerns. Alongside industry limitations, we'll present both existing and potential solutions, contrasting them with typical software development security processes.
Session Type
Talk

Log in