{"id":"https://openalex.org/W3041504416","doi":"https://doi.org/10.1093/cybsec/tyaa007","title":"Challenging software developers: dialectic as a foundation for security assurance techniques","display_name":"Challenging software developers: dialectic as a foundation for security assurance techniques","publication_year":2020,"publication_date":"2020-01-01","ids":{"openalex":"https://openalex.org/W3041504416","doi":"https://doi.org/10.1093/cybsec/tyaa007","mag":"3041504416"},"language":"en","primary_location":{"id":"doi:10.1093/cybsec/tyaa007","is_oa":true,"landing_page_url":"https://doi.org/10.1093/cybsec/tyaa007","pdf_url":"https://academic.oup.com/cybersecurity/article-pdf/6/1/tyaa007/33746013/tyaa007.pdf","source":{"id":"https://openalex.org/S2735156331","display_name":"Journal of Cybersecurity","issn_l":"2057-2085","issn":["2057-2085","2057-2093"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310311648","host_organization_name":"Oxford University Press","host_organization_lineage":["https://openalex.org/P4310311648","https://openalex.org/P4310311647"],"host_organization_lineage_names":["Oxford University Press","University of Oxford"],"type":"journal"},"license":"cc-by-nc","license_id":"https://openalex.org/licenses/cc-by-nc","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Cybersecurity","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://academic.oup.com/cybersecurity/article-pdf/6/1/tyaa007/33746013/tyaa007.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5087444510","display_name":"Charles Weir","orcid":"https://orcid.org/0000-0003-3051-4195"},"institutions":[{"id":"https://openalex.org/I67415387","display_name":"Lancaster University","ror":"https://ror.org/04f2nsd36","country_code":"GB","type":"education","lineage":["https://openalex.org/I67415387"]}],"countries":["GB"],"is_corresponding":true,"raw_author_name":"Charles Weir","raw_affiliation_strings":["Security Lancaster, InfoLab21, Lancaster University, Lancaster, UK"],"affiliations":[{"raw_affiliation_string":"Security Lancaster, InfoLab21, Lancaster University, Lancaster, UK","institution_ids":["https://openalex.org/I67415387"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5034962802","display_name":"Awais Rashid","orcid":"https://orcid.org/0000-0002-0109-1341"},"institutions":[{"id":"https://openalex.org/I36234482","display_name":"University of Bristol","ror":"https://ror.org/0524sp257","country_code":"GB","type":"education","lineage":["https://openalex.org/I36234482"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Awais Rashid","raw_affiliation_strings":["Bristol Cyber Security Group, University of Bristol, UK"],"affiliations":[{"raw_affiliation_string":"Bristol Cyber Security Group, University of Bristol, UK","institution_ids":["https://openalex.org/I36234482"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5078368556","display_name":"James Noble","orcid":"https://orcid.org/0000-0001-9036-5692"},"institutions":[{"id":"https://openalex.org/I41156924","display_name":"Victoria University of Wellington","ror":"https://ror.org/0040r6f76","country_code":"NZ","type":"education","lineage":["https://openalex.org/I41156924"]}],"countries":["NZ"],"is_corresponding":false,"raw_author_name":"James Noble","raw_affiliation_strings":["School of Engineering and Computer Science, Victoria University, Wellington, NZ"],"affiliations":[{"raw_affiliation_string":"School of Engineering and Computer Science, Victoria University, Wellington, NZ","institution_ids":["https://openalex.org/I41156924"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5087444510"],"corresponding_institution_ids":["https://openalex.org/I67415387"],"apc_list":{"value":1864,"currency":"USD","value_usd":1864},"apc_paid":{"value":1864,"currency":"USD","value_usd":1864},"fwci":2.7817,"has_fulltext":false,"cited_by_count":19,"citation_normalized_percentile":{"value":0.923221,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":99},"biblio":{"volume":"6","issue":"1","first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10430","display_name":"Software Engineering Techniques and Practices","score":0.9965999722480774,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.699349045753479},{"id":"https://openalex.org/keywords/dialectic","display_name":"Dialectic","score":0.6615870594978333},{"id":"https://openalex.org/keywords/foundation","display_name":"Foundation (evidence)","score":0.5212033987045288},{"id":"https://openalex.org/keywords/dialog-box","display_name":"Dialog box","score":0.5146218538284302},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5124221444129944},{"id":"https://openalex.org/keywords/best-practice","display_name":"Best practice","score":0.49434995651245117},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.43191689252853394},{"id":"https://openalex.org/keywords/software-development","display_name":"Software development","score":0.43169087171554565},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4268723726272583},{"id":"https://openalex.org/keywords/engineering-management","display_name":"Engineering management","score":0.4089981019496918},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.35730141401290894},{"id":"https://openalex.org/keywords/knowledge-management","display_name":"Knowledge management","score":0.35666677355766296},{"id":"https://openalex.org/keywords/process-management","display_name":"Process management","score":0.35236281156539917},{"id":"https://openalex.org/keywords/engineering-ethics","display_name":"Engineering ethics","score":0.3289467692375183},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.31401172280311584},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.2777196764945984},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.20766380429267883},{"id":"https://openalex.org/keywords/management","display_name":"Management","score":0.18425136804580688},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.15218684077262878},{"id":"https://openalex.org/keywords/political-science","display_name":"Political science","score":0.14505454897880554}],"concepts":[{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.699349045753479},{"id":"https://openalex.org/C13184196","wikidata":"https://www.wikidata.org/wiki/Q9453","display_name":"Dialectic","level":2,"score":0.6615870594978333},{"id":"https://openalex.org/C2780966255","wikidata":"https://www.wikidata.org/wiki/Q5474306","display_name":"Foundation (evidence)","level":2,"score":0.5212033987045288},{"id":"https://openalex.org/C173853756","wikidata":"https://www.wikidata.org/wiki/Q86915","display_name":"Dialog box","level":2,"score":0.5146218538284302},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5124221444129944},{"id":"https://openalex.org/C184356942","wikidata":"https://www.wikidata.org/wiki/Q830382","display_name":"Best practice","level":2,"score":0.49434995651245117},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.43191689252853394},{"id":"https://openalex.org/C529173508","wikidata":"https://www.wikidata.org/wiki/Q638608","display_name":"Software development","level":3,"score":0.43169087171554565},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4268723726272583},{"id":"https://openalex.org/C110354214","wikidata":"https://www.wikidata.org/wiki/Q6314146","display_name":"Engineering management","level":1,"score":0.4089981019496918},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.35730141401290894},{"id":"https://openalex.org/C56739046","wikidata":"https://www.wikidata.org/wiki/Q192060","display_name":"Knowledge management","level":1,"score":0.35666677355766296},{"id":"https://openalex.org/C195094911","wikidata":"https://www.wikidata.org/wiki/Q14167904","display_name":"Process management","level":1,"score":0.35236281156539917},{"id":"https://openalex.org/C55587333","wikidata":"https://www.wikidata.org/wiki/Q1133029","display_name":"Engineering ethics","level":1,"score":0.3289467692375183},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.31401172280311584},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.2777196764945984},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.20766380429267883},{"id":"https://openalex.org/C187736073","wikidata":"https://www.wikidata.org/wiki/Q2920921","display_name":"Management","level":1,"score":0.18425136804580688},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.15218684077262878},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.14505454897880554},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C111472728","wikidata":"https://www.wikidata.org/wiki/Q9471","display_name":"Epistemology","level":1,"score":0.0},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C162324750","wikidata":"https://www.wikidata.org/wiki/Q8134","display_name":"Economics","level":0,"score":0.0},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0}],"mesh":[],"locations_count":4,"locations":[{"id":"doi:10.1093/cybsec/tyaa007","is_oa":true,"landing_page_url":"https://doi.org/10.1093/cybsec/tyaa007","pdf_url":"https://academic.oup.com/cybersecurity/article-pdf/6/1/tyaa007/33746013/tyaa007.pdf","source":{"id":"https://openalex.org/S2735156331","display_name":"Journal of Cybersecurity","issn_l":"2057-2085","issn":["2057-2085","2057-2093"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310311648","host_organization_name":"Oxford University Press","host_organization_lineage":["https://openalex.org/P4310311648","https://openalex.org/P4310311647"],"host_organization_lineage_names":["Oxford University Press","University of Oxford"],"type":"journal"},"license":"cc-by-nc","license_id":"https://openalex.org/licenses/cc-by-nc","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Cybersecurity","raw_type":"journal-article"},{"id":"pmh:oai:research-information.bris.ac.uk:openaire/cfffb155-b3e4-4338-b074-73bf4be24faf","is_oa":false,"landing_page_url":"https://research-information.bris.ac.uk/en/publications/cfffb155-b3e4-4338-b074-73bf4be24faf","pdf_url":null,"source":{"id":"https://openalex.org/S7407055359","display_name":"Explore Bristol Research","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Weir, C, Rashid, A & Noble, J 2020, 'Challenging software developers: dialectic as a foundation for security assurance techniques', Journal of Cybersecurity, vol. 6, no. 1. https://doi.org/10.1093/cybsec/tyaa007","raw_type":"info:eu-repo/semantics/publishedVersion"},{"id":"pmh:oai:eprints.lancs.ac.uk:143417","is_oa":true,"landing_page_url":null,"pdf_url":"https://eprints.lancs.ac.uk/id/eprint/143417/1/Weir_ChallengingSoftwareDevelopers.pdf","source":{"id":"https://openalex.org/S4306401916","display_name":"Lancaster EPrints (Lancaster University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67415387","host_organization_name":"Lancaster University","host_organization_lineage":["https://openalex.org/I67415387"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"PeerReviewed"},{"id":"pmh:oai:research-information.bris.ac.uk:publications/cfffb155-b3e4-4338-b074-73bf4be24faf","is_oa":true,"landing_page_url":"http://hdl.handle.net/1983/cfffb155-b3e4-4338-b074-73bf4be24faf","pdf_url":null,"source":{"id":"https://openalex.org/S7407055359","display_name":"Explore Bristol Research","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-nc","license_id":"https://openalex.org/licenses/cc-by-nc","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Weir, C, Rashid, A & Noble, J 2020, 'Challenging software developers: dialectic as a foundation for security assurance techniques', Journal of Cybersecurity, vol. 6, no. 1. https://doi.org/10.1093/cybsec/tyaa007","raw_type":"info:eu-repo/semantics/publishedVersion"}],"best_oa_location":{"id":"doi:10.1093/cybsec/tyaa007","is_oa":true,"landing_page_url":"https://doi.org/10.1093/cybsec/tyaa007","pdf_url":"https://academic.oup.com/cybersecurity/article-pdf/6/1/tyaa007/33746013/tyaa007.pdf","source":{"id":"https://openalex.org/S2735156331","display_name":"Journal of Cybersecurity","issn_l":"2057-2085","issn":["2057-2085","2057-2093"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310311648","host_organization_name":"Oxford University Press","host_organization_lineage":["https://openalex.org/P4310311648","https://openalex.org/P4310311647"],"host_organization_lineage_names":["Oxford University Press","University of Oxford"],"type":"journal"},"license":"cc-by-nc","license_id":"https://openalex.org/licenses/cc-by-nc","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Cybersecurity","raw_type":"journal-article"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/9","display_name":"Industry, innovation and infrastructure","score":0.4699999988079071}],"awards":[],"funders":[],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W3041504416.pdf","grobid_xml":"https://content.openalex.org/works/W3041504416.grobid-xml"},"referenced_works_count":47,"referenced_works":["https://openalex.org/W109841683","https://openalex.org/W197426596","https://openalex.org/W294901527","https://openalex.org/W409344806","https://openalex.org/W629056628","https://openalex.org/W1481826112","https://openalex.org/W1559498407","https://openalex.org/W1596790865","https://openalex.org/W1674092947","https://openalex.org/W1985408088","https://openalex.org/W2001822577","https://openalex.org/W2022995025","https://openalex.org/W2044325534","https://openalex.org/W2051058555","https://openalex.org/W2056894403","https://openalex.org/W2057796693","https://openalex.org/W2069101457","https://openalex.org/W2072601349","https://openalex.org/W2084044852","https://openalex.org/W2129660502","https://openalex.org/W2140495200","https://openalex.org/W2146691185","https://openalex.org/W2148183591","https://openalex.org/W2167340571","https://openalex.org/W2243414906","https://openalex.org/W2318060088","https://openalex.org/W2329395632","https://openalex.org/W2337987222","https://openalex.org/W2340406763","https://openalex.org/W2353739181","https://openalex.org/W2363172845","https://openalex.org/W2403278646","https://openalex.org/W2492032966","https://openalex.org/W2498706142","https://openalex.org/W2515729214","https://openalex.org/W2519392667","https://openalex.org/W2548376064","https://openalex.org/W2592645022","https://openalex.org/W2745126624","https://openalex.org/W2766217896","https://openalex.org/W2794659749","https://openalex.org/W2900602878","https://openalex.org/W2936292087","https://openalex.org/W3110429580","https://openalex.org/W4210332661","https://openalex.org/W4254597671","https://openalex.org/W6745710870"],"related_works":["https://openalex.org/W2098987383","https://openalex.org/W2417260800","https://openalex.org/W2795961259","https://openalex.org/W1596203174","https://openalex.org/W2117933979","https://openalex.org/W4298396513","https://openalex.org/W3157838713","https://openalex.org/W4200095465","https://openalex.org/W945978269","https://openalex.org/W4225160120"],"abstract_inverted_index":{"Abstract":[0],"Development":[1],"teams":[2],"are":[3,92],"increasingly":[4],"expected":[5],"to":[6,25,32,37,133],"deliver":[7],"secure":[8,55],"code,":[9],"but":[10],"how":[11],"can":[12],"they":[13,128],"best":[14,112],"achieve":[15],"this?":[16],"Traditional":[17],"security":[18,83,136,144],"practice,":[19],"which":[20],"emphasizes":[21],"\u2018telling":[22],"developers":[23,64,116],"what":[24],"do\u2019":[26],"using":[27],"checklists,":[28],"processes":[29],"and":[30,65,103,124,140],"errors":[31],"avoid,":[33],"has":[34,130],"proved":[35],"difficult":[36],"introduce.":[38],"From":[39],"analysis":[40],"of":[41,68,79,108,137],"industry":[42,81],"interviews":[43],"with":[44],"a":[45,59,66,76],"dozen":[46],"experts":[47],"in":[48,99],"app":[49],"development":[50,56,73,101,138],"security,":[51],"we":[52,85],"find":[53],"that":[54,91,105],"requires":[57],"\u2018dialectic\u2019:":[58],"challenging":[60],"dialog":[61],"between":[62],"the":[63,72,87,106,115,125,131,135],"range":[67],"counterparties,":[69],"continued":[70],"throughout":[71],"cycle.":[74],"Analysing":[75],"further":[77],"survey":[78],"16":[80],"developer":[82],"advocates,":[84],"identify":[86],"six":[88,121],"assurance":[89,122],"techniques":[90,110],"most":[93],"effective":[94],"at":[95],"achieving":[96],"this":[97],"dialectic":[98],"existing":[100],"teams,":[102],"conclude":[104],"introduction":[107],"these":[109,120],"is":[111],"driven":[113],"by":[114],"themselves.":[117],"Concentrating":[118],"on":[119],"techniques,":[123],"dialectical":[126],"interactions":[127],"involve,":[129],"potential":[132],"increase":[134],"activities":[139],"thus":[141],"improve":[142],"software":[143],"for":[145],"everyone.":[146]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":6},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":4},{"year":2022,"cited_by_count":5},{"year":2021,"cited_by_count":1}],"updated_date":"2026-04-05T17:49:38.594831","created_date":"2025-10-10T00:00:00"}