Security-Compliance and Accountability: How AI Coding Interface Cues Shape Developers’ Security Verification

Presenter Information

Alaa Nehme, Mississippi State UniversityFollow
Sara Memarian Esfahani, University of Texas at TylerFollow
Mumin Abubakre, Loughborough UniversityFollow
Seung Hyun Kim, Yonsei UniversityFollow

Keywords

AI-assisted coding; security verification; interface cues; accountability; security-compliance labels; heuristic–systematic model; secure software development

Abstract

AI coding assistants can improve developer productivity, yet AI-generated code may contain vulnerabilities, creating a tradeoff between speed and security. Drawing on the Heuristic–Systematic Model (HSM), this paper develops a research model of how AI interface cues help organizations in balancing productivity with minimum verification needed to avoid insecure code adoption. First, we theorize that security-compliance labels (e.g., “OWASP-compliant”) can be beneficial by enabling quick judgments that support productivity; however, when over relied on, they function as heuristic endorsements that reduce security verification. Second, we theorize that accountability cues can reinstate balance by shifting developers toward systematic processing and attenuating the verification-reducing effect of security-compliance labels. We propose a controlled experiment using an AI coding assistant with a 2×2 manipulation of security-compliance and accountability cues. The study advances research on AI interface cueing, security behavior, and HSM in AI-assisted coding.

Recommended Citation

Nehme, Alaa; Memarian Esfahani, Sara; Abubakre, Mumin; and Kim, Seung Hyun, "Security-Compliance and Accountability: How AI Coding Interface Cues Shape Developers’ Security Verification" (2025). ICIS 2025 Proceedings. 3.
https://aisel.aisnet.org/icis2025/paperathon/paperathon/3