{"id":"https://openalex.org/W4404628332","doi":"https://doi.org/10.1109/niles63360.2024.10753172","title":"Penetration Testing: A Cost-Benefit Analysis of Best Practices Implementation for Software Startups","display_name":"Penetration Testing: A Cost-Benefit Analysis of Best Practices Implementation for Software Startups","publication_year":2024,"publication_date":"2024-10-19","ids":{"openalex":"https://openalex.org/W4404628332","doi":"https://doi.org/10.1109/niles63360.2024.10753172"},"language":"en","primary_location":{"id":"doi:10.1109/niles63360.2024.10753172","is_oa":false,"landing_page_url":"http://dx.doi.org/10.1109/niles63360.2024.10753172","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2024 6th Novel Intelligent and Leading Emerging Sciences Conference (NILES)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5083612217","display_name":"Ahmed Ali Gaafar","orcid":null},"institutions":[{"id":"https://openalex.org/I57629906","display_name":"Nile University","ror":"https://ror.org/03cg7cp61","country_code":"EG","type":"education","lineage":["https://openalex.org/I57629906"]}],"countries":["EG"],"is_corresponding":true,"raw_author_name":"Ahmed Ali Gaafar","raw_affiliation_strings":["Nile University,Faculty of Information Technology and Computer Science,Cairo,Egypt"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Nile University,Faculty of Information Technology and Computer Science,Cairo,Egypt","institution_ids":["https://openalex.org/I57629906"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5089234487","display_name":"Khaled M. Fouad","orcid":"https://orcid.org/0000-0003-0359-9314"},"institutions":[{"id":"https://openalex.org/I207547235","display_name":"Benha University","ror":"https://ror.org/03tn5ee41","country_code":"EG","type":"education","lineage":["https://openalex.org/I207547235"]}],"countries":["EG"],"is_corresponding":false,"raw_author_name":"Khaled M. Fouad","raw_affiliation_strings":["Benha University,Faculty of Computers and Artificial Intelligence"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Benha University,Faculty of Computers and Artificial Intelligence","institution_ids":["https://openalex.org/I207547235"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5082765762","display_name":"Mohamed A. Sadek","orcid":"https://orcid.org/0000-0003-2086-540X"},"institutions":[{"id":"https://openalex.org/I57629906","display_name":"Nile University","ror":"https://ror.org/03cg7cp61","country_code":"EG","type":"education","lineage":["https://openalex.org/I57629906"]}],"countries":["EG"],"is_corresponding":false,"raw_author_name":"Mohamed A. Sadek","raw_affiliation_strings":["Nile University,Faculty of Information Technology and Computer Science,Cairo,Egypt"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Nile University,Faculty of Information Technology and Computer Science,Cairo,Egypt","institution_ids":["https://openalex.org/I57629906"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5083612217"],"corresponding_institution_ids":["https://openalex.org/I57629906"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.32053652,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"242","last_page":"245"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10430","display_name":"Software Engineering Techniques and Practices","score":0.9851999878883362,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10430","display_name":"Software Engineering Techniques and Practices","score":0.9851999878883362,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.968500018119812,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9370999932289124,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/penetration","display_name":"Penetration (warfare)","score":0.6583059430122375},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.536084771156311},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.5240509510040283},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.16296708583831787},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.13985735177993774},{"id":"https://openalex.org/keywords/operations-research","display_name":"Operations research","score":0.07211613655090332}],"concepts":[{"id":"https://openalex.org/C80107235","wikidata":"https://www.wikidata.org/wiki/Q7162625","display_name":"Penetration (warfare)","level":2,"score":0.6583059430122375},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.536084771156311},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.5240509510040283},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.16296708583831787},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.13985735177993774},{"id":"https://openalex.org/C42475967","wikidata":"https://www.wikidata.org/wiki/Q194292","display_name":"Operations research","level":1,"score":0.07211613655090332}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/niles63360.2024.10753172","is_oa":false,"landing_page_url":"http://dx.doi.org/10.1109/niles63360.2024.10753172","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2024 6th Novel Intelligent and Leading Emerging Sciences Conference (NILES)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/9","score":0.4399999976158142,"display_name":"Industry, innovation and infrastructure"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":5,"referenced_works":["https://openalex.org/W2421957586","https://openalex.org/W2979496624","https://openalex.org/W3121520985","https://openalex.org/W4211239338","https://openalex.org/W4396499613"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2899084033","https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W4391913857","https://openalex.org/W2358668433","https://openalex.org/W4396701345","https://openalex.org/W2376932109","https://openalex.org/W2001405890","https://openalex.org/W4396696052"],"abstract_inverted_index":{"Despite":[0],"software":[1],"startups":[2],"often":[3],"not":[4,51,134],"handlingsensitive":[5],"data,":[6],"the":[7,25,85,98,121,131,149,156],"implementation":[8],"of":[9,28,71,88,116,124,133,159],"robust":[10],"security":[11,49,94,136,143,161],"measures":[12],"is":[13],"crucial":[14],"to":[15,167],"mitigate":[16],"significant":[17,114],"financial":[18,72,122],"and":[19,92,107,171],"reputational":[20],"risks.":[21],"This":[22,154],"study":[23],"investigates":[24],"cost-benefit":[26],"analysis":[27,70,128],"implementing":[29,93,135],"best":[30,162],"practices":[31,163],"in":[32,151],"penetration":[33,90],"testing":[34],"(Pentest)":[35],"versus":[36],"notimplementing":[37],"them,":[38],"using":[39],"Roboost":[40],"as":[41,139],"a":[42,65,113],"case":[43],"study.":[44],"It":[45],"emphasizes":[46],"that":[47,83,130],"proactive":[48,152],"investments":[50,150],"only":[52],"protect":[53],"current":[54],"assets":[55],"but":[56],"also":[57],"prepare":[58],"organizations":[59],"for":[60],"future":[61],"growthThe":[62],"research":[63],"employs":[64],"mixed-methods":[66],"approach,":[67],"combining":[68],"quantitative":[69],"data":[73],"with":[74],"qualitative":[75],"insights":[76],"from":[77,142],"stakeholder":[78],"interviews.":[79],"The":[80],"findings":[81],"indicate":[82],"while":[84],"initial":[86],"costs":[87,132],"hiring":[89],"testers":[91],"protocols":[95],"are":[96,145],"substantial,":[97],"benefits":[99],"far":[100],"outweigh":[101],"these":[102,125],"expenses.":[103],"Securing":[104],"new":[105],"clients":[106],"retaining":[108],"existing":[109],"ones,":[110],"which":[111],"constitute":[112],"portion":[115],"Roboost\u2019":[117],"s":[118],"revenue,":[119],"underscores":[120,155],"prudence":[123],"investments.":[126],"Our":[127],"demonstrates":[129],"practices,":[137],"such":[138],"potential":[140],"losses":[141],"breaches,":[144],"substantially":[146],"higher":[147],"than":[148],"measures.":[153],"critical":[157],"importance":[158],"embedding":[160],"within":[164],"organizational":[165],"frameworks":[166],"ensure":[168],"long-term":[169],"sustainability":[170],"success.":[172]},"counts_by_year":[],"updated_date":"2026-05-03T08:25:01.440150","created_date":"2025-10-10T00:00:00"}