City Research Online

Security Responses in Software Development

Lopez, T., Sharp, H., Bandara, A. , Tun, T., Levine, M. & Nuseibeh, B. ORCID: 0000-0002-3476-053X (2023). Security Responses in Software Development. ACM Transactions on Software Engineering and Methodology, 32(3), pp. 1-29. doi: 10.1145/3563211

Abstract

The pressure on software developers to produce secure software has never been greater. But what does security look like in environments that do not produce security-critical software? In answer to this question, this multi-sited ethnographic study characterizes security episodes and identifies five typical behaviors in software development. Using theory drawn from information security and motivation research in software engineering, this article characterizes key ways in which individual developers form security responses to meet the demands of particular circumstances, providing a framework managers and teams can use to recognize, understand, and alter security activity in their environments.

Publication Type: Article
Additional Information: © Authors | ACM 2023. This is the author's version of the work. It is posted here for your personal use. Not for redistribution. The definitive Version of Record was published in ACM Transactions on Software Engineering and Methodology, http://dx.doi.org/10.1145/3563211
Subjects: H Social Sciences > HD Industries. Land use. Labor > HD61 Risk Management
Q Science > QA Mathematics > QA75 Electronic computers. Computer science
Q Science > QA Mathematics > QA76 Computer software
Departments: School of Science & Technology
SWORD Depositor:
[thumbnail of TOSEM-2021-0135.FinalSubmission.pdf]
Preview
PDF - Accepted Version
Download (3MB) | Preview

Export

Add to AnyAdd to TwitterAdd to FacebookAdd to LinkedinAdd to PinterestAdd to Email

Downloads

Downloads per month over past year

View more statistics

Actions (login required)

Admin Login Admin Login