{"id":"https://openalex.org/W4415939621","doi":"https://doi.org/10.1134/s036176882570029x","title":"Software Security by Design","display_name":"Software Security by Design","publication_year":2025,"publication_date":"2025-11-05","ids":{"openalex":"https://openalex.org/W4415939621","doi":"https://doi.org/10.1134/s036176882570029x"},"language":"en","primary_location":{"id":"doi:10.1134/s036176882570029x","is_oa":false,"landing_page_url":"https://doi.org/10.1134/s036176882570029x","pdf_url":null,"source":{"id":"https://openalex.org/S150218641","display_name":"Programming and Computer Software","issn_l":"0361-7688","issn":["0361-7688","1608-3261"],"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/P4310320267","host_organization_name":"Pleiades Publishing","host_organization_lineage":["https://openalex.org/P4310320267","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Pleiades Publishing","Springer Nature"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Programming and Computer Software","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5025737715","display_name":"\u0412. \u0412. \u041a\u0443\u043b\u044f\u043c\u0438\u043d","orcid":"https://orcid.org/0000-0003-3439-9534"},"institutions":[{"id":"https://openalex.org/I118501908","display_name":"National Research University Higher School of Economics","ror":"https://ror.org/055f7t516","country_code":"RU","type":"education","lineage":["https://openalex.org/I118501908"]},{"id":"https://openalex.org/I19880235","display_name":"Lomonosov Moscow State University","ror":"https://ror.org/010pmpe69","country_code":"RU","type":"education","lineage":["https://openalex.org/I19880235"]},{"id":"https://openalex.org/I4210101868","display_name":"Institute for System Programming","ror":"https://ror.org/017ef8252","country_code":"RU","type":"facility","lineage":["https://openalex.org/I1313323035","https://openalex.org/I4210101868","https://openalex.org/I4210124601"]}],"countries":["RU"],"is_corresponding":true,"raw_author_name":"V. V. Kuliamin","raw_affiliation_strings":["HSE University, 101978, Moscow, Russia","Ivannikov Institute for System Programming, Russian Academy of Sciences, 109004, Moscow, Russia","Lomonosov Moscow State University, 119991, Moscow, Russia"],"raw_orcid":"https://orcid.org/0000-0003-3439-9534","affiliations":[{"raw_affiliation_string":"HSE University, 101978, Moscow, Russia","institution_ids":["https://openalex.org/I118501908"]},{"raw_affiliation_string":"Ivannikov Institute for System Programming, Russian Academy of Sciences, 109004, Moscow, Russia","institution_ids":["https://openalex.org/I4210101868"]},{"raw_affiliation_string":"Lomonosov Moscow State University, 119991, Moscow, Russia","institution_ids":["https://openalex.org/I19880235"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5032706844","display_name":"Alexander K. Petrenko","orcid":"https://orcid.org/0000-0001-7411-3831"},"institutions":[{"id":"https://openalex.org/I118501908","display_name":"National Research University Higher School of Economics","ror":"https://ror.org/055f7t516","country_code":"RU","type":"education","lineage":["https://openalex.org/I118501908"]},{"id":"https://openalex.org/I19880235","display_name":"Lomonosov Moscow State University","ror":"https://ror.org/010pmpe69","country_code":"RU","type":"education","lineage":["https://openalex.org/I19880235"]},{"id":"https://openalex.org/I4210101868","display_name":"Institute for System Programming","ror":"https://ror.org/017ef8252","country_code":"RU","type":"facility","lineage":["https://openalex.org/I1313323035","https://openalex.org/I4210101868","https://openalex.org/I4210124601"]}],"countries":["RU"],"is_corresponding":true,"raw_author_name":"A. K. Petrenko","raw_affiliation_strings":["HSE University, 101978, Moscow, Russia","Ivannikov Institute for System Programming, Russian Academy of Sciences, 109004, Moscow, Russia","Lomonosov Moscow State University, 119991, Moscow, Russia"],"raw_orcid":"https://orcid.org/0000-0001-7411-3831","affiliations":[{"raw_affiliation_string":"HSE University, 101978, Moscow, Russia","institution_ids":["https://openalex.org/I118501908"]},{"raw_affiliation_string":"Ivannikov Institute for System Programming, Russian Academy of Sciences, 109004, Moscow, Russia","institution_ids":["https://openalex.org/I4210101868"]},{"raw_affiliation_string":"Lomonosov Moscow State University, 119991, Moscow, Russia","institution_ids":["https://openalex.org/I19880235"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5002860186","display_name":"Ekaterina Rudina","orcid":"https://orcid.org/0000-0003-2944-162X"},"institutions":[{"id":"https://openalex.org/I3133232569","display_name":"Gorky Institute of World Literature","ror":"https://ror.org/020frqf17","country_code":"RU","type":"facility","lineage":["https://openalex.org/I1313323035","https://openalex.org/I3133232569","https://openalex.org/I4210120960"]}],"countries":["RU"],"is_corresponding":true,"raw_author_name":"E. A. Rudina","raw_affiliation_strings":["AO Kaspersky Lab, 125212, Moscow, Russia"],"raw_orcid":"https://orcid.org/0000-0003-2944-162X","affiliations":[{"raw_affiliation_string":"AO Kaspersky Lab, 125212, Moscow, Russia","institution_ids":["https://openalex.org/I3133232569"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5002860186","https://openalex.org/A5025737715","https://openalex.org/A5032706844"],"corresponding_institution_ids":["https://openalex.org/I118501908","https://openalex.org/I19880235","https://openalex.org/I3133232569","https://openalex.org/I4210101868"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.42685654,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"51","issue":"6","first_page":"429","last_page":"434"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.5666999816894531,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.5666999816894531,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.0494999997317791,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.03830000013113022,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.7024000287055969},{"id":"https://openalex.org/keywords/software-design","display_name":"Software design","score":0.5063999891281128},{"id":"https://openalex.org/keywords/software-construction","display_name":"Software construction","score":0.4345000088214874},{"id":"https://openalex.org/keywords/software-development","display_name":"Software development","score":0.4212000072002411},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.40130001306533813},{"id":"https://openalex.org/keywords/security-bug","display_name":"Security bug","score":0.39969998598098755},{"id":"https://openalex.org/keywords/secure-coding","display_name":"Secure coding","score":0.38089999556541443},{"id":"https://openalex.org/keywords/security-engineering","display_name":"Security engineering","score":0.3709999918937683},{"id":"https://openalex.org/keywords/software-design-description","display_name":"Software design description","score":0.3702999949455261}],"concepts":[{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.7024000287055969},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7014999985694885},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.5838000178337097},{"id":"https://openalex.org/C52913732","wikidata":"https://www.wikidata.org/wiki/Q857102","display_name":"Software design","level":4,"score":0.5063999891281128},{"id":"https://openalex.org/C186846655","wikidata":"https://www.wikidata.org/wiki/Q3398377","display_name":"Software construction","level":4,"score":0.4345000088214874},{"id":"https://openalex.org/C529173508","wikidata":"https://www.wikidata.org/wiki/Q638608","display_name":"Software development","level":3,"score":0.4212000072002411},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.40130001306533813},{"id":"https://openalex.org/C131275738","wikidata":"https://www.wikidata.org/wiki/Q7445023","display_name":"Security bug","level":5,"score":0.39969998598098755},{"id":"https://openalex.org/C22680326","wikidata":"https://www.wikidata.org/wiki/Q7444867","display_name":"Secure coding","level":5,"score":0.38089999556541443},{"id":"https://openalex.org/C13159133","wikidata":"https://www.wikidata.org/wiki/Q365674","display_name":"Security engineering","level":5,"score":0.3709999918937683},{"id":"https://openalex.org/C56909552","wikidata":"https://www.wikidata.org/wiki/Q2297624","display_name":"Software design description","level":5,"score":0.3702999949455261},{"id":"https://openalex.org/C35869016","wikidata":"https://www.wikidata.org/wiki/Q846636","display_name":"Software architecture","level":3,"score":0.36570000648498535},{"id":"https://openalex.org/C97382630","wikidata":"https://www.wikidata.org/wiki/Q13501132","display_name":"Resource-oriented architecture","level":5,"score":0.3544999957084656},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.35409998893737793},{"id":"https://openalex.org/C146054899","wikidata":"https://www.wikidata.org/wiki/Q181156","display_name":"Software design pattern","level":3,"score":0.35199999809265137},{"id":"https://openalex.org/C72280835","wikidata":"https://www.wikidata.org/wiki/Q635346","display_name":"Architectural pattern","level":5,"score":0.34360000491142273},{"id":"https://openalex.org/C121822524","wikidata":"https://www.wikidata.org/wiki/Q5157582","display_name":"Computer security model","level":2,"score":0.3310000002384186},{"id":"https://openalex.org/C123657996","wikidata":"https://www.wikidata.org/wiki/Q12271","display_name":"Architecture","level":2,"score":0.3285999894142151},{"id":"https://openalex.org/C149091818","wikidata":"https://www.wikidata.org/wiki/Q2429814","display_name":"Software system","level":3,"score":0.3208000063896179},{"id":"https://openalex.org/C174683762","wikidata":"https://www.wikidata.org/wiki/Q609588","display_name":"Component-based software engineering","level":4,"score":0.3025999963283539},{"id":"https://openalex.org/C76518257","wikidata":"https://www.wikidata.org/wiki/Q271680","display_name":"Software framework","level":5,"score":0.2818000018596649},{"id":"https://openalex.org/C195518309","wikidata":"https://www.wikidata.org/wiki/Q13424265","display_name":"Security testing","level":5,"score":0.2766999900341034},{"id":"https://openalex.org/C114869243","wikidata":"https://www.wikidata.org/wiki/Q133735","display_name":"Security through obscurity","level":5,"score":0.27219998836517334},{"id":"https://openalex.org/C60172848","wikidata":"https://www.wikidata.org/wiki/Q7495506","display_name":"Sherwood Applied Business Security Architecture","level":5,"score":0.25519999861717224}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1134/s036176882570029x","is_oa":false,"landing_page_url":"https://doi.org/10.1134/s036176882570029x","pdf_url":null,"source":{"id":"https://openalex.org/S150218641","display_name":"Programming and Computer Software","issn_l":"0361-7688","issn":["0361-7688","1608-3261"],"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/P4310320267","host_organization_name":"Pleiades Publishing","host_organization_lineage":["https://openalex.org/P4310320267","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Pleiades Publishing","Springer Nature"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Programming and Computer Software","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":12,"referenced_works":["https://openalex.org/W2125083487","https://openalex.org/W2135191468","https://openalex.org/W2147543351","https://openalex.org/W2154486111","https://openalex.org/W2182276331","https://openalex.org/W2649501556","https://openalex.org/W2943403861","https://openalex.org/W3023189409","https://openalex.org/W4206365978","https://openalex.org/W4239699124","https://openalex.org/W4253678082","https://openalex.org/W4298196474"],"related_works":[],"abstract_inverted_index":{"Abstract":[0],"Secure":[1,74],"by":[2,75],"Design":[3,76],"is":[4],"an":[5],"important":[6],"approach":[7,44,92],"to":[8,49],"ensure":[9],"software":[10,39,94],"security":[11],"and":[12,27,53,56,85,87,93,100],"reliability.":[13],"It":[14],"has":[15],"already":[16],"been":[17],"developing":[18],"for":[19,65],"more":[20,45],"than":[21],"50":[22],"years,":[23],"but":[24],"its":[25,51,58,66],"principles":[26],"techniques":[28],"are":[29],"still":[30],"not":[31],"well":[32,61],"known":[33],"among":[34],"the":[35,72],"wide":[36],"community":[37],"of":[38,81],"developers.":[40],"To":[41],"make":[42],"this":[43,91],"popular,":[46],"we":[47],"need":[48],"redefine":[50],"goals":[52],"problems,":[54],"classify":[55],"explain":[57],"techniques,":[59,99],"as":[60,62],"outline":[63],"trends":[64],"future":[67],"development.":[68],"This":[69],"paper":[70],"reformulates":[71],"main":[73],"principles,":[77],"provides":[78],"some":[79],"examples":[80],"secure":[82,101],"design":[83],"patterns":[84],"anti-patterns,":[86],"explores":[88],"relationships":[89],"between":[90],"architecture":[95],"analysis":[96],"methods,":[97],"hardening":[98],"programming":[102],"languages.":[103]},"counts_by_year":[],"updated_date":"2026-06-13T06:13:01.061226","created_date":"2025-11-06T00:00:00"}