{"id":"https://openalex.org/W1795271520","doi":"https://doi.org/10.1007/978-3-642-13054-0_2","title":"Security Testing in Agile Web Application Development - A Case Study Using the EAST Methodology","display_name":"Security Testing in Agile Web Application Development - A Case Study Using the EAST Methodology","publication_year":2010,"publication_date":"2010-01-01","ids":{"openalex":"https://openalex.org/W1795271520","doi":"https://doi.org/10.1007/978-3-642-13054-0_2","mag":"1795271520"},"language":"en","primary_location":{"id":"doi:10.1007/978-3-642-13054-0_2","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-642-13054-0_2","pdf_url":null,"source":{"id":"https://openalex.org/S4210177767","display_name":"Lecture notes in business information processing","issn_l":"1865-1348","issn":["1865-1348","1865-1356"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"book series"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Lecture Notes in Business Information Processing","raw_type":"book-chapter"},"type":"book-chapter","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://zenodo.org/record/3410821","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5051734865","display_name":"Gencer Erdogan","orcid":"https://orcid.org/0000-0001-9407-5748"},"institutions":[{"id":"https://openalex.org/I67311998","display_name":"European Organization for Nuclear Research","ror":"https://ror.org/01ggx4157","country_code":"CH","type":"facility","lineage":["https://openalex.org/I67311998"]}],"countries":["CH"],"is_corresponding":true,"raw_author_name":"Gencer Erdogan","raw_affiliation_strings":["CERN - The European Organization for Nuclear Research, CH-1211, Gen\u00e8ve 23, Switzerland"],"affiliations":[{"raw_affiliation_string":"CERN - The European Organization for Nuclear Research, CH-1211, Gen\u00e8ve 23, Switzerland","institution_ids":["https://openalex.org/I67311998"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5028218902","display_name":"Per H\u00e5kon Meland","orcid":"https://orcid.org/0000-0002-5509-0184"},"institutions":[{"id":"https://openalex.org/I173888879","display_name":"SINTEF","ror":"https://ror.org/01f677e56","country_code":"NO","type":"facility","lineage":["https://openalex.org/I173888879"]}],"countries":["NO"],"is_corresponding":false,"raw_author_name":"Per H\u00e5kon Meland","raw_affiliation_strings":["SINTEF ICT, System development and security, NO-7465, Trondheim, Norway"],"affiliations":[{"raw_affiliation_string":"SINTEF ICT, System development and security, NO-7465, Trondheim, Norway","institution_ids":["https://openalex.org/I173888879"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5059731316","display_name":"Derek Mathieson","orcid":null},"institutions":[{"id":"https://openalex.org/I67311998","display_name":"European Organization for Nuclear Research","ror":"https://ror.org/01ggx4157","country_code":"CH","type":"facility","lineage":["https://openalex.org/I67311998"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Derek Mathieson","raw_affiliation_strings":["CERN - The European Organization for Nuclear Research, CH-1211, Gen\u00e8ve 23, Switzerland"],"affiliations":[{"raw_affiliation_string":"CERN - The European Organization for Nuclear Research, CH-1211, Gen\u00e8ve 23, Switzerland","institution_ids":["https://openalex.org/I67311998"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5051734865"],"corresponding_institution_ids":["https://openalex.org/I67311998"],"apc_list":null,"apc_paid":null,"fwci":1.1574,"has_fulltext":false,"cited_by_count":19,"citation_normalized_percentile":{"value":0.8206089,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"14","last_page":"27"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9990000128746033,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9987000226974487,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/agile-software-development","display_name":"Agile software development","score":0.74992835521698},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6928402781486511},{"id":"https://openalex.org/keywords/web-application-security","display_name":"Web application security","score":0.6677780151367188},{"id":"https://openalex.org/keywords/security-testing","display_name":"Security testing","score":0.5753818154335022},{"id":"https://openalex.org/keywords/web-engineering","display_name":"Web engineering","score":0.45465824007987976},{"id":"https://openalex.org/keywords/agile-unified-process","display_name":"Agile Unified Process","score":0.4482628107070923},{"id":"https://openalex.org/keywords/web-application","display_name":"Web application","score":0.44170665740966797},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.38900941610336304},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.33814775943756104},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.333536297082901},{"id":"https://openalex.org/keywords/web-development","display_name":"Web development","score":0.2951727509498596},{"id":"https://openalex.org/keywords/web-service","display_name":"Web service","score":0.2667422890663147},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.21572887897491455},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.16722038388252258},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.11891186237335205},{"id":"https://openalex.org/keywords/software-development","display_name":"Software development","score":0.10235840082168579},{"id":"https://openalex.org/keywords/software-development-process","display_name":"Software development process","score":0.09470373392105103},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.08305796980857849}],"concepts":[{"id":"https://openalex.org/C14185376","wikidata":"https://www.wikidata.org/wiki/Q30232","display_name":"Agile software development","level":2,"score":0.74992835521698},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6928402781486511},{"id":"https://openalex.org/C59241245","wikidata":"https://www.wikidata.org/wiki/Q4781497","display_name":"Web application security","level":4,"score":0.6677780151367188},{"id":"https://openalex.org/C195518309","wikidata":"https://www.wikidata.org/wiki/Q13424265","display_name":"Security testing","level":5,"score":0.5753818154335022},{"id":"https://openalex.org/C97200028","wikidata":"https://www.wikidata.org/wiki/Q1196135","display_name":"Web engineering","level":5,"score":0.45465824007987976},{"id":"https://openalex.org/C87813535","wikidata":"https://www.wikidata.org/wiki/Q956418","display_name":"Agile Unified Process","level":5,"score":0.4482628107070923},{"id":"https://openalex.org/C118643609","wikidata":"https://www.wikidata.org/wiki/Q189210","display_name":"Web application","level":2,"score":0.44170665740966797},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.38900941610336304},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.33814775943756104},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.333536297082901},{"id":"https://openalex.org/C79373723","wikidata":"https://www.wikidata.org/wiki/Q386275","display_name":"Web development","level":3,"score":0.2951727509498596},{"id":"https://openalex.org/C35578498","wikidata":"https://www.wikidata.org/wiki/Q193424","display_name":"Web service","level":2,"score":0.2667422890663147},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.21572887897491455},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.16722038388252258},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.11891186237335205},{"id":"https://openalex.org/C529173508","wikidata":"https://www.wikidata.org/wiki/Q638608","display_name":"Software development","level":3,"score":0.10235840082168579},{"id":"https://openalex.org/C180152950","wikidata":"https://www.wikidata.org/wiki/Q2904257","display_name":"Software development process","level":4,"score":0.09470373392105103},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.08305796980857849},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1007/978-3-642-13054-0_2","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-642-13054-0_2","pdf_url":null,"source":{"id":"https://openalex.org/S4210177767","display_name":"Lecture notes in business information processing","issn_l":"1865-1348","issn":["1865-1348","1865-1356"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"book series"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Lecture Notes in Business Information Processing","raw_type":"book-chapter"},{"id":"pmh:oai:cds.cern.ch:1359254","is_oa":false,"landing_page_url":"http://cds.cern.ch/record/1359254","pdf_url":null,"source":{"id":"https://openalex.org/S4306402195","display_name":"CERN Document Server (European Organization for Nuclear Research)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67311998","host_organization_name":"European Organization for Nuclear Research","host_organization_lineage":["https://openalex.org/I67311998"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":""},{"id":"pmh:oai:zenodo.org:3410821","is_oa":true,"landing_page_url":"https://zenodo.org/record/3410821","pdf_url":null,"source":{"id":"https://openalex.org/S4306400562","display_name":"Zenodo (CERN European Organization for Nuclear Research)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67311998","host_organization_name":"European Organization for Nuclear Research","host_organization_lineage":["https://openalex.org/I67311998"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"info:eu-repo/semantics/bookPart"}],"best_oa_location":{"id":"pmh:oai:zenodo.org:3410821","is_oa":true,"landing_page_url":"https://zenodo.org/record/3410821","pdf_url":null,"source":{"id":"https://openalex.org/S4306400562","display_name":"Zenodo (CERN European Organization for Nuclear Research)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67311998","host_organization_name":"European Organization for Nuclear Research","host_organization_lineage":["https://openalex.org/I67311998"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"info:eu-repo/semantics/bookPart"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":29,"referenced_works":["https://openalex.org/W57797445","https://openalex.org/W581083545","https://openalex.org/W1482899440","https://openalex.org/W1521632393","https://openalex.org/W1688809187","https://openalex.org/W1966143594","https://openalex.org/W1969200709","https://openalex.org/W1975978652","https://openalex.org/W1986002340","https://openalex.org/W1994962327","https://openalex.org/W2015004885","https://openalex.org/W2074875351","https://openalex.org/W2090036533","https://openalex.org/W2094174909","https://openalex.org/W2106371080","https://openalex.org/W2117866802","https://openalex.org/W2119272062","https://openalex.org/W2135151043","https://openalex.org/W2143922826","https://openalex.org/W2156010380","https://openalex.org/W2170478581","https://openalex.org/W2170658686","https://openalex.org/W2493218189","https://openalex.org/W2494744623","https://openalex.org/W2503114224","https://openalex.org/W2993781365","https://openalex.org/W3161918289","https://openalex.org/W3213784623","https://openalex.org/W4285719527"],"related_works":["https://openalex.org/W52209804","https://openalex.org/W2262068244","https://openalex.org/W3028752611","https://openalex.org/W2278631511","https://openalex.org/W4214947963","https://openalex.org/W1979365764","https://openalex.org/W4255141381","https://openalex.org/W2433050682","https://openalex.org/W1980228661","https://openalex.org/W1681278603"],"abstract_inverted_index":null,"counts_by_year":[{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":1},{"year":2021,"cited_by_count":2},{"year":2020,"cited_by_count":3},{"year":2017,"cited_by_count":2},{"year":2016,"cited_by_count":2},{"year":2014,"cited_by_count":5},{"year":2012,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2016-06-24T00:00:00"}