{"id":"https://openalex.org/W4403156452","doi":"https://doi.org/10.1007/s10207-024-00909-w","title":"Enhancing DevSecOps practice with Large Language Models and Security Chaos Engineering","display_name":"Enhancing DevSecOps practice with Large Language Models and Security Chaos Engineering","publication_year":2024,"publication_date":"2024-10-05","ids":{"openalex":"https://openalex.org/W4403156452","doi":"https://doi.org/10.1007/s10207-024-00909-w"},"language":"en","primary_location":{"id":"doi:10.1007/s10207-024-00909-w","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s10207-024-00909-w","pdf_url":"https://link.springer.com/content/pdf/10.1007/s10207-024-00909-w.pdf","source":{"id":"https://openalex.org/S164062316","display_name":"International Journal of Information Security","issn_l":"1615-5262","issn":["1615-5262","1615-5270"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"International Journal of Information Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"hybrid","oa_url":"https://link.springer.com/content/pdf/10.1007/s10207-024-00909-w.pdf","any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5092794624","display_name":"Martin Bedoya","orcid":"https://orcid.org/0009-0002-1229-8791"},"institutions":[{"id":"https://openalex.org/I90803817","display_name":"Universidad del Rosario","ror":"https://ror.org/0108mwc04","country_code":"CO","type":"education","lineage":["https://openalex.org/I90803817"]}],"countries":["CO"],"is_corresponding":true,"raw_author_name":"Martin Bedoya","raw_affiliation_strings":["School of Engineering, Science and Technology, Universidad del Rosario, Bogota, 111711, Colombia"],"affiliations":[{"raw_affiliation_string":"School of Engineering, Science and Technology, Universidad del Rosario, Bogota, 111711, Colombia","institution_ids":["https://openalex.org/I90803817"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5010799660","display_name":"Sara Palacios","orcid":"https://orcid.org/0000-0001-8962-0414"},"institutions":[{"id":"https://openalex.org/I90803817","display_name":"Universidad del Rosario","ror":"https://ror.org/0108mwc04","country_code":"CO","type":"education","lineage":["https://openalex.org/I90803817"]}],"countries":["CO"],"is_corresponding":false,"raw_author_name":"Sara Palacios","raw_affiliation_strings":["School of Engineering, Science and Technology, Universidad del Rosario, Bogota, 111711, Colombia"],"affiliations":[{"raw_affiliation_string":"School of Engineering, Science and Technology, Universidad del Rosario, Bogota, 111711, Colombia","institution_ids":["https://openalex.org/I90803817"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5060386999","display_name":"Daniel D\u00edaz L\u00f3pez","orcid":"https://orcid.org/0000-0001-7244-2631"},"institutions":[{"id":"https://openalex.org/I90803817","display_name":"Universidad del Rosario","ror":"https://ror.org/0108mwc04","country_code":"CO","type":"education","lineage":["https://openalex.org/I90803817"]}],"countries":["CO"],"is_corresponding":false,"raw_author_name":"Daniel D\u00edaz-L\u00f3pez","raw_affiliation_strings":["School of Engineering, Science and Technology, Universidad del Rosario, Bogota, 111711, Colombia"],"affiliations":[{"raw_affiliation_string":"School of Engineering, Science and Technology, Universidad del Rosario, Bogota, 111711, Colombia","institution_ids":["https://openalex.org/I90803817"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5092794625","display_name":"Estefania Laverde","orcid":"https://orcid.org/0009-0004-4103-5936"},"institutions":[{"id":"https://openalex.org/I90803817","display_name":"Universidad del Rosario","ror":"https://ror.org/0108mwc04","country_code":"CO","type":"education","lineage":["https://openalex.org/I90803817"]}],"countries":["CO"],"is_corresponding":false,"raw_author_name":"Estefania Laverde","raw_affiliation_strings":["School of Engineering, Science and Technology, Universidad del Rosario, Bogota, 111711, Colombia"],"affiliations":[{"raw_affiliation_string":"School of Engineering, Science and Technology, Universidad del Rosario, Bogota, 111711, Colombia","institution_ids":["https://openalex.org/I90803817"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5010368433","display_name":"Pantaleone Nespoli","orcid":"https://orcid.org/0000-0002-4041-1205"},"institutions":[{"id":"https://openalex.org/I80180929","display_name":"Universidad de Murcia","ror":"https://ror.org/03p3aeb86","country_code":"ES","type":"education","lineage":["https://openalex.org/I80180929"]}],"countries":["ES"],"is_corresponding":false,"raw_author_name":"Pantaleone Nespoli","raw_affiliation_strings":["Department of Information and Communications Engineering, University of Murcia, 30100, Murcia, Spain"],"affiliations":[{"raw_affiliation_string":"Department of Information and Communications Engineering, University of Murcia, 30100, Murcia, Spain","institution_ids":["https://openalex.org/I80180929"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5092794624"],"corresponding_institution_ids":["https://openalex.org/I90803817"],"apc_list":{"value":2590,"currency":"EUR","value_usd":3190},"apc_paid":{"value":2590,"currency":"EUR","value_usd":3190},"fwci":12.9409,"has_fulltext":true,"cited_by_count":17,"citation_normalized_percentile":{"value":0.98668423,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":96,"max":100},"biblio":{"volume":"23","issue":"6","first_page":"3765","last_page":"3788"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10679","display_name":"Service-Oriented Architecture and Web Services","score":0.9955000281333923,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10679","display_name":"Service-Oriented Architecture and Web Services","score":0.9955000281333923,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11719","display_name":"Data Quality and Management","score":0.995199978351593,"subfield":{"id":"https://openalex.org/subfields/1803","display_name":"Management Science and Operations Research"},"field":{"id":"https://openalex.org/fields/18","display_name":"Decision Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T11986","display_name":"Scientific Computing and Data Management","score":0.9950000047683716,"subfield":{"id":"https://openalex.org/subfields/1802","display_name":"Information Systems and Management"},"field":{"id":"https://openalex.org/fields/18","display_name":"Decision Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/chaos","display_name":"CHAOS (operating system)","score":0.7492467164993286},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7156836986541748},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.4933725893497467},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.42189744114875793},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.39360445737838745},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.3449096083641052},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.3219352960586548}],"concepts":[{"id":"https://openalex.org/C2779374083","wikidata":"https://www.wikidata.org/wiki/Q5011038","display_name":"CHAOS (operating system)","level":2,"score":0.7492467164993286},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7156836986541748},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.4933725893497467},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.42189744114875793},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.39360445737838745},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.3449096083641052},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.3219352960586548}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1007/s10207-024-00909-w","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s10207-024-00909-w","pdf_url":"https://link.springer.com/content/pdf/10.1007/s10207-024-00909-w.pdf","source":{"id":"https://openalex.org/S164062316","display_name":"International Journal of Information Security","issn_l":"1615-5262","issn":["1615-5262","1615-5270"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"International Journal of Information Security","raw_type":"journal-article"}],"best_oa_location":{"id":"doi:10.1007/s10207-024-00909-w","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s10207-024-00909-w","pdf_url":"https://link.springer.com/content/pdf/10.1007/s10207-024-00909-w.pdf","source":{"id":"https://openalex.org/S164062316","display_name":"International Journal of Information Security","issn_l":"1615-5262","issn":["1615-5262","1615-5270"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"International Journal of Information Security","raw_type":"journal-article"},"sustainable_development_goals":[{"display_name":"Industry, innovation and infrastructure","id":"https://metadata.un.org/sdg/9","score":0.4000000059604645}],"awards":[{"id":"https://openalex.org/G5095738407","display_name":null,"funder_award_id":"CDL-TALENTUM","funder_id":"https://openalex.org/F4320327970","funder_display_name":"Instituto Nacional de Ciberseguridad"}],"funders":[{"id":"https://openalex.org/F4320320300","display_name":"European Commission","ror":"https://ror.org/00k4n6c32"},{"id":"https://openalex.org/F4320325380","display_name":"Universidad del Rosario","ror":"https://ror.org/0108mwc04"},{"id":"https://openalex.org/F4320327970","display_name":"Instituto Nacional de Ciberseguridad","ror":null}],"has_content":{"pdf":true,"grobid_xml":false},"content_urls":{"pdf":"https://content.openalex.org/works/W4403156452.pdf"},"referenced_works_count":43,"referenced_works":["https://openalex.org/W875780076","https://openalex.org/W2004186751","https://openalex.org/W2027487162","https://openalex.org/W2109662977","https://openalex.org/W2133795641","https://openalex.org/W2142527556","https://openalex.org/W2156607688","https://openalex.org/W2358431938","https://openalex.org/W2624094989","https://openalex.org/W2773235317","https://openalex.org/W2936320085","https://openalex.org/W2945132367","https://openalex.org/W2971584138","https://openalex.org/W2972705049","https://openalex.org/W2997353660","https://openalex.org/W3007738605","https://openalex.org/W3035242936","https://openalex.org/W3041586137","https://openalex.org/W3047325171","https://openalex.org/W3089869718","https://openalex.org/W3094207509","https://openalex.org/W3113225837","https://openalex.org/W3208113910","https://openalex.org/W3216531676","https://openalex.org/W4211142584","https://openalex.org/W4281782282","https://openalex.org/W4311958277","https://openalex.org/W4312193781","https://openalex.org/W4312757854","https://openalex.org/W4313417957","https://openalex.org/W4362489974","https://openalex.org/W4381416574","https://openalex.org/W4385452929","https://openalex.org/W4385692442","https://openalex.org/W4385755118","https://openalex.org/W4385878021","https://openalex.org/W4386119501","https://openalex.org/W4386263689","https://openalex.org/W4387178161","https://openalex.org/W4388286986","https://openalex.org/W4388745157","https://openalex.org/W4393972593","https://openalex.org/W6739901393"],"related_works":["https://openalex.org/W2320196587","https://openalex.org/W4400519012","https://openalex.org/W4243901518","https://openalex.org/W2776913024","https://openalex.org/W2954599081","https://openalex.org/W2290993309","https://openalex.org/W3210381562","https://openalex.org/W4307248189","https://openalex.org/W3093954335","https://openalex.org/W4205482204"],"abstract_inverted_index":{"Abstract":[0],"Recently,":[1],"the":[2,31,39,46,59,68,100],"DevSecOps":[3],"practice":[4],"has":[5,99],"improved":[6],"companies\u2019":[7],"agile":[8],"production":[9],"of":[10,33,38,48,70],"secure":[11,106],"software,":[12],"reducing":[13],"problems":[14],"and":[15,25,62],"improving":[16],"return":[17],"on":[18,22],"investment.":[19],"However,":[20],"overreliance":[21],"security":[23,27,71,78],"tools":[24],"traditional":[26],"techniques":[28],"can":[29,91],"facilitate":[30],"implementation":[32],"vulnerabilities":[34],"in":[35],"different":[36],"stages":[37],"software":[40],"lifecycle..":[41],"Thus,":[42],"this":[43],"paper":[44],"proposes":[45],"integration":[47],"a":[49,95],"Large":[50],"Language":[51],"Model":[52],"to":[53,66,86,94,103],"help":[54],"automate":[55],"threat":[56],"discovery":[57],"at":[58],"design":[60],"stage":[61],"Security":[63],"Chaos":[64],"Engineering":[65],"support":[67],"identification":[69],"flaws":[72],"that":[73,98],"may":[74],"be":[75,92],"undetected":[76],"by":[77],"tools.":[79],"A":[80],"specific":[81],"use":[82],"case":[83],"is":[84],"described":[85],"demonstrate":[87],"how":[88],"our":[89],"proposal":[90],"applied":[93],"retail":[96],"company":[97],"business":[101],"need":[102],"produce":[104],"rapidly":[105],"software.":[107]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":16}],"updated_date":"2026-04-12T07:58:50.170612","created_date":"2025-10-10T00:00:00"}