{"id":"https://openalex.org/W4200095465","doi":"https://doi.org/10.1145/3485832.3485922","title":"A Cross-role and Bi-national Analysis on Security Efforts and Constraints of Software Development Projects","display_name":"A Cross-role and Bi-national Analysis on Security Efforts and Constraints of Software Development Projects","publication_year":2021,"publication_date":"2021-12-06","ids":{"openalex":"https://openalex.org/W4200095465","doi":"https://doi.org/10.1145/3485832.3485922"},"language":"en","primary_location":{"id":"doi:10.1145/3485832.3485922","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3485832.3485922","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3485832.3485922","source":{"id":"https://openalex.org/S4306417673","display_name":"Annual Computer Security Applications Conference","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Annual Computer Security Applications Conference","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"bronze","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3485832.3485922","any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5016083227","display_name":"Fumihiro Kanei","orcid":"https://orcid.org/0000-0002-5212-9274"},"institutions":[{"id":"https://openalex.org/I2251713219","display_name":"NTT (Japan)","ror":"https://ror.org/00berct97","country_code":"JP","type":"company","lineage":["https://openalex.org/I2251713219"]}],"countries":["JP"],"is_corresponding":false,"raw_author_name":"Fumihiro Kanei","raw_affiliation_strings":["NTT, Japan"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"NTT, Japan","institution_ids":["https://openalex.org/I2251713219"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5076314268","display_name":"Ayako A. Hasegawa","orcid":"https://orcid.org/0000-0002-5527-5306"},"institutions":[{"id":"https://openalex.org/I2251713219","display_name":"NTT (Japan)","ror":"https://ror.org/00berct97","country_code":"JP","type":"company","lineage":["https://openalex.org/I2251713219"]}],"countries":["JP"],"is_corresponding":false,"raw_author_name":"Ayako Akiyama Hasegawa","raw_affiliation_strings":["NTT","NTT Tokyo, Japan","Eitaro Shioji NTT Tokyo, Japan"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"NTT","institution_ids":[]},{"raw_affiliation_string":"NTT Tokyo, Japan","institution_ids":["https://openalex.org/I2251713219"]},{"raw_affiliation_string":"Eitaro Shioji NTT Tokyo, Japan","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5001132409","display_name":"Eitaro Shioji","orcid":"https://orcid.org/0000-0001-8743-9101"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Eitaro Shioji","raw_affiliation_strings":["NTT"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"NTT","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5012291537","display_name":"Mitsuaki Akiyama","orcid":"https://orcid.org/0000-0001-7052-8562"},"institutions":[{"id":"https://openalex.org/I2251713219","display_name":"NTT (Japan)","ror":"https://ror.org/00berct97","country_code":"JP","type":"company","lineage":["https://openalex.org/I2251713219"]}],"countries":["JP"],"is_corresponding":false,"raw_author_name":"Mitsuaki Akiyama","raw_affiliation_strings":["NTT","Eitaro Shioji NTT Tokyo, Japan","NTT Tokyo, Japan"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"NTT","institution_ids":[]},{"raw_affiliation_string":"Eitaro Shioji NTT Tokyo, Japan","institution_ids":[]},{"raw_affiliation_string":"NTT Tokyo, Japan","institution_ids":["https://openalex.org/I2251713219"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.2849,"has_fulltext":true,"cited_by_count":1,"citation_normalized_percentile":{"value":0.49432558,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":94},"biblio":{"volume":null,"issue":null,"first_page":"349","last_page":"364"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9979000091552734,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9979000091552734,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10430","display_name":"Software Engineering Techniques and Practices","score":0.9969000220298767,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11912","display_name":"Outsourcing and Supply Chain Management","score":0.9905999898910522,"subfield":{"id":"https://openalex.org/subfields/1404","display_name":"Management Information Systems"},"field":{"id":"https://openalex.org/fields/14","display_name":"Business, Management and Accounting"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.7518587112426758},{"id":"https://openalex.org/keywords/software-development","display_name":"Software development","score":0.6834712624549866},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5371006727218628},{"id":"https://openalex.org/keywords/social-software-engineering","display_name":"Social software engineering","score":0.5023765563964844},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.47723105549812317},{"id":"https://openalex.org/keywords/software-peer-review","display_name":"Software peer review","score":0.47392162680625916},{"id":"https://openalex.org/keywords/software-project-management","display_name":"Software project management","score":0.4696846306324005},{"id":"https://openalex.org/keywords/personal-software-process","display_name":"Personal software process","score":0.42969366908073425},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.35980185866355896},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3270719051361084},{"id":"https://openalex.org/keywords/software-construction","display_name":"Software construction","score":0.322518914937973},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.25360220670700073},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.16731643676757812}],"concepts":[{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.7518587112426758},{"id":"https://openalex.org/C529173508","wikidata":"https://www.wikidata.org/wiki/Q638608","display_name":"Software development","level":3,"score":0.6834712624549866},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5371006727218628},{"id":"https://openalex.org/C182500959","wikidata":"https://www.wikidata.org/wiki/Q7551380","display_name":"Social software engineering","level":5,"score":0.5023765563964844},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.47723105549812317},{"id":"https://openalex.org/C74579156","wikidata":"https://www.wikidata.org/wiki/Q7554342","display_name":"Software peer review","level":5,"score":0.47392162680625916},{"id":"https://openalex.org/C40919944","wikidata":"https://www.wikidata.org/wiki/Q947779","display_name":"Software project management","level":5,"score":0.4696846306324005},{"id":"https://openalex.org/C39890963","wikidata":"https://www.wikidata.org/wiki/Q1702721","display_name":"Personal software process","level":5,"score":0.42969366908073425},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.35980185866355896},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3270719051361084},{"id":"https://openalex.org/C186846655","wikidata":"https://www.wikidata.org/wiki/Q3398377","display_name":"Software construction","level":4,"score":0.322518914937973},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.25360220670700073},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.16731643676757812},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3485832.3485922","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3485832.3485922","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3485832.3485922","source":{"id":"https://openalex.org/S4306417673","display_name":"Annual Computer Security Applications Conference","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Annual Computer Security Applications Conference","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/3485832.3485922","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3485832.3485922","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3485832.3485922","source":{"id":"https://openalex.org/S4306417673","display_name":"Annual Computer Security Applications Conference","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Annual Computer Security Applications Conference","raw_type":"proceedings-article"},"sustainable_development_goals":[{"score":0.4099999964237213,"display_name":"Partnerships for the goals","id":"https://metadata.un.org/sdg/17"}],"awards":[],"funders":[],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4200095465.pdf","grobid_xml":"https://content.openalex.org/works/W4200095465.grobid-xml"},"referenced_works_count":24,"referenced_works":["https://openalex.org/W1947959002","https://openalex.org/W1995415491","https://openalex.org/W2045057497","https://openalex.org/W2059610428","https://openalex.org/W2157820602","https://openalex.org/W2400329213","https://openalex.org/W2585818648","https://openalex.org/W2588952840","https://openalex.org/W2750778058","https://openalex.org/W2766217896","https://openalex.org/W2766347289","https://openalex.org/W2796056969","https://openalex.org/W2900602878","https://openalex.org/W2900866809","https://openalex.org/W2941123418","https://openalex.org/W2941907863","https://openalex.org/W2964144088","https://openalex.org/W2966008409","https://openalex.org/W2986291326","https://openalex.org/W3028823675","https://openalex.org/W3031020798","https://openalex.org/W3135845737","https://openalex.org/W3162945305","https://openalex.org/W4242704962"],"related_works":["https://openalex.org/W1985363770","https://openalex.org/W2127166435","https://openalex.org/W2163383818","https://openalex.org/W2052544251","https://openalex.org/W1518972522","https://openalex.org/W2041796194","https://openalex.org/W2186532739","https://openalex.org/W4252173008","https://openalex.org/W2079996525","https://openalex.org/W1996562086"],"abstract_inverted_index":{"Software":[0],"security,":[1],"which":[2],"is":[3],"often":[4],"regarded":[5],"as":[6,85],"a":[7,81],"non-functional":[8],"requirement,":[9],"tends":[10],"to":[11,137],"be":[12,28],"less":[13],"prioritized":[14],"than":[15],"other":[16],"explicit":[17],"requirements":[18],"in":[19,30,69,118,141],"development":[20,45,59,67,82,143,150],"projects.":[21],"For":[22],"designing":[23,134],"security":[24,53,96,120],"measures":[25,136],"that":[26,38],"can":[27],"used":[29],"software":[31,44,58,66,125,142,149],"development,":[32],"we":[33,50,113],"must":[34],"understand":[35],"the":[36,40,70,86,91,104,116,129],"obstacles":[37],"prevent":[39],"adoption":[41],"of":[42,57,65,80,107],"secure":[43],"practices.":[46],"In":[47,100],"this":[48],"study,":[49],"quantitatively":[51],"analyzed":[52],"efforts":[54,97,121],"and":[55,72,98,111,122,144],"constraints":[56,123],"projects":[60],"through":[61],"an":[62],"online":[63],"survey":[64,105],"professionals":[68],"US":[71],"Japan":[73],"(N=664).":[74],"We":[75,127],"revealed":[76,114],"how":[77,115],"certain":[78],"characteristics":[79],"project,":[83],"such":[84],"project\u2019s":[87],"contractual":[88],"relationships":[89],"or":[90],"software\u2019s":[92],"target":[93],"users,":[94],"influence":[95],"constraints.":[99],"addition,":[101],"by":[102],"comparing":[103],"results":[106,130],"two":[108],"groups":[109],"(developers":[110],"managers),":[112],"gap":[117],"their":[119],"influences":[124],"security.":[126],"believe":[128],"provide":[131],"insights":[132],"toward":[133],"usable":[135],"assist":[138],"security-related":[139],"decision-making":[140],"conducting":[145],"appropriate":[146],"surveys":[147],"targeting":[148],"professionals.":[151]},"counts_by_year":[{"year":2023,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}