Motivational Company’s Characteristics to Secure Software

Alghamdi, Fatimah

doi:10.1109/iccais48893.2020.9096815

Cited by 5 publications

(6 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…30 Moderator factors of software security and performance verification [105] The purpose of this article is to identify the moderating factors that impact security and performance verification, as well as propose actions to encourage their improvement. 31 Motivational Company's Characteristics to Secure Software [106] The objective of this study is to examine the attributes of organizations that influence the adoption of security practices in software development. 32 New hybrid methodology for secure systems [107] This article presents NHMSS, a novel secure methodology designed to ensure that security receives the necessary focus from the development team.…”

Section: N Article Citementioning

confidence: 99%

Analysis of Strategies for the Integration of Security Practices in Agile Software Development: A Sustainable SME Approach

Valdés-Rodríguez,

Hochstetter-Diez,

Diéguez-Rebolledo

et al. 2024

IEEE Access

View full text Add to dashboard Cite

Incorporating security into software development in small and medium-sized enterprises (SMEs) is an increasingly relevant challenge and a crucial necessity, especially in an uncertain and fast-paced environment like that of an agile setting. Given the growing threat of cyberattacks, it is imperative to address this issue. This article examines and subsequently analyzes existing strategies in the literature regarding secure software development in the context of SMEs employing agile methodologies. The study initiates a systematic literature review to identify strategies employed in this context. The findings reveal that 57.9% of the studies present strategies to tackle security in agile software development, with 20.2% specifically focusing on SMEs. Subsequently, practices demonstrating success in integrating security measures into the software development lifecycle (SDLC) are analyzed and categorized. The results underscore the necessity of addressing security in the agile environment, as it remains a significant challenge in software development. Effective approaches are also required for small businesses to ensure application protection and long-term sustainability.INDEX TERMS agile development; security practices; secure development; SMEs; sustainability

show abstract

Section: N Article Citementioning

confidence: 99%

Analysis of Strategies for the Integration of Security Practices in Agile Software Development: A Sustainable SME Approach

Valdés-Rodríguez,

Hochstetter-Diez,

Diéguez-Rebolledo

et al. 2024

IEEE Access

View full text Add to dashboard Cite

show abstract

“…Software SME SSDLC adoption remains inadequate. Alghamdi [44] revealed that only 51 percent of software SMEs that develop software in-house adopted secure software practices during all phases of the SDLC. The reasons noted for the low SSDLC adoption in software SMEs are summarized as follows.…”

Section: Ssdlc Adoption Challenges In Smesmentioning

confidence: 99%

“…2) Complexity and cost: SSDLC is complex and costly to implement and practice leading to management overhead and lack of management support [14], [44], [45].…”

Section: Ssdlc Adoption Challenges In Smesmentioning

confidence: 99%

See 1 more Smart Citation

Secure Software Development Lifecycle: A Case for Adoption in Software Smes

Umeugo¹

2023

ijarcs

View full text Add to dashboard Cite

Software is widely deployed and used for managing critical daily domestic, social, and economic activities. Due to software’s economic value, software is a high-value target of malicious actors and a primary source of many information security vulnerabilities. Software must be engineered to be secure because of its value. Traditional approaches to software security treat software as an addon and have been proven inadequate at producing secure software. Practicing the secure software development lifecycle (SSDLC) is recommended in academic literature. Software SMEs must adopt and practice the SSDLC for increased security of published software. This paper explores the SSDLC and makes a case for its adoption with the goal of informing security decision-makers of Software SMEs.

show abstract

“…Various literature examining software security processes in organizations have considered traditional software security, which is focused on post-deployment security, to be inadequate, advocating instead for practicing a secure software development lifecycle (SSDLC) [7]- [9]. However, there is insufficient adoption of secure software practices throughout the SDLC, pronounced in SMEs that develop software in-house [10].…”

Section: Introductionmentioning

confidence: 99%

Factors Affecting the Adoption of Secure Software Practices in Small and Medium Enterprises That Build Software in-House

Umeugo¹

2023

ijarcs

View full text Add to dashboard Cite

Software has grown enormously in value because of its wide use for domestic, public, and economic activities. Software must be secure because exploited software vulnerabilities can negatively affect individuals’ and organizations' financial, health, and economic well-being. Various authors recommended practicing a secure software development lifecycle (SSDLC) to ensure that software is released secured. Software small and medium enterprises (SMEs), the dominant software publishers, have not widely adopted the SSDLC. This study approached the problem of software SMEs’ inadequate adoption of SSDLC from an innovation adoption perspective based on the diffusion of innovation theoretical framework (DOI). Five DOI factors, relative advantage, compatibility, complexity, trialability, and observability, were assessed for significance to software SMEs’ intention to adopt SSDLC. A random sample of 200 participants from a population of software security decision-makers of software SMEs based in the United States that develop software in-house were surveyed via an online close-ended questionnaire. Relative advantage, compatibility, and trialability were statistically significant to SME SSDLC adoption intention. Complexity and observability were not statistically significant to SME SSDLC adoption intention. Trialability was the strongest predictor of SME SSDLC adoption intention. SME software security decision-makers may find that the results of this study help to determine the factors they should consider when deciding to introduce the SSDLC into their software development process. The result of the study has implications for practice and social change because increased SME SSDLC adoption potentially results in the development of more secure software and fewer software security incidents.

show abstract

Motivational Company’s Characteristics to Secure Software

Cited by 5 publications

References 12 publications

Analysis of Strategies for the Integration of Security Practices in Agile Software Development: A Sustainable SME Approach

Analysis of Strategies for the Integration of Security Practices in Agile Software Development: A Sustainable SME Approach

Secure Software Development Lifecycle: A Case for Adoption in Software Smes

Factors Affecting the Adoption of Secure Software Practices in Small and Medium Enterprises That Build Software in-House

Contact Info

Product

Resources

About