Security Responses in Software Development
Lopez, T., Sharp, H., Bandara, A. , Tun, T., Levine, M. & Nuseibeh, B.
ORCID: 0000-0002-3476-053X (2023).
Security Responses in Software Development.
ACM Transactions on Software Engineering and Methodology, 32(3),
pp. 1-29.
doi: 10.1145/3563211
Abstract
The pressure on software developers to produce secure software has never been greater. But what does security look like in environments that do not produce security-critical software? In answer to this question, this multi-sited ethnographic study characterizes security episodes and identifies five typical behaviors in software development. Using theory drawn from information security and motivation research in software engineering, this article characterizes key ways in which individual developers form security responses to meet the demands of particular circumstances, providing a framework managers and teams can use to recognize, understand, and alter security activity in their environments.
| Publication Type: | Article |
|---|---|
| Additional Information: | © Authors | ACM 2023. This is the author's version of the work. It is posted here for your personal use. Not for redistribution. The definitive Version of Record was published in ACM Transactions on Software Engineering and Methodology, http://dx.doi.org/10.1145/3563211 |
| Subjects: | H Social Sciences > HD Industries. Land use. Labor > HD61 Risk Management Q Science > QA Mathematics > QA75 Electronic computers. Computer science Q Science > QA Mathematics > QA76 Computer software |
| Departments: | School of Science & Technology |
| SWORD Depositor: |
Download (3MB) | Preview
Export
Downloads
Downloads per month over past year
Metadata
Metadata