EnglishSvenskaNorsk
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Guidelines for Supporting Software Engineers in Developing Secure Web Applications
Chalmers University of Technology, Sweden; University of Gothenburg, Sweden.
Chalmers University of Technology, Sweden; University of Gothenburg, Sweden.
RISE Research Institutes of Sweden, Safety and Transport, Electrification and Reliability. Chalmers University of Technology, Sweden; University of Gothenburg, Sweden.ORCID iD: 0000-0002-3446-1265
Chalmers University of Technology, Sweden; University of Gothenburg, Sweden.
2025 (English)In: Lecture Notes in Computer Science, ISSN 0302-9743, E-ISSN 1611-3349, Vol. 15452 LNCS, p. 123-138Article in journal (Refereed) Published
Abstract [en]

As software applications get increasingly connected and complex, cybersecurity becomes more and more important to consider during development and evaluation. Software engineers need to be aware of various security threats and the countermeasures that can be taken to mitigate them. Currently, there is a lack of guidance for software engineers aiming to develop secure web applications. We conducted a design science research study, resulting in a set of guidelines to aid software engineers in developing secure web applications. The set of guidelines was constructed based on interview data with 10 industry practitioners. These guidelines were then evaluated using a survey with 28 respondents. Our results indicate that these proposed guidelines can be applied by software engineers to support the development and assessment of secure web applications in different stages of the software development lifecycle. 
Place, publisher, year, edition, pages
Springer Science and Business Media Deutschland GmbH , 2025. Vol. 15452 LNCS, p. 123-138
Keywords [en]
Application programs; Computer aided software engineering; Computer software selection and evaluation; Cyber security; Design-science researches; Different stages; Guideline; Interview; Research studies; Security threats; Software applications; WEB application; Web applications; Life cycle
National Category
Electrical Engineering, Electronic Engineering, Information Engineering
Identifiers
URN: urn:nbn:se:ri:diva-77996DOI: 10.1007/978-3-031-78386-9_9Scopus ID: 2-s2.0-85211925401OAI: oai:DiVA.org:ri-77996DiVA, id: diva2:1941056
Conference
25th International Conference on Product-Focused Software Process Improvement, PROFES 2024. Tartu, Finland. 2 December 2024through 4 December 2024
Note

This work was partially supported by the Wallenberg AI, Autonomous Systems and Software Program (WASP) funded by the Knut and Alice Wallenberg Foundation.9

Available from: 2025-02-27 Created: 2025-02-27 Last updated: 2025-09-23Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full textScopus

Authority records

Mohamad, Mazen

Search in DiVA

By author/editor
Mohamad, Mazen
By organisation
Electrification and Reliability
In the same journal
Lecture Notes in Computer Science
Electrical Engineering, Electronic Engineering, Information Engineering

Search outside of DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 35 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
v. 2.47.0
|
WCAG