Challenges and limitations in secure software development adoption - A qualitative analysis in Malaysian software industry prospect
Inclusion of security in software development from the initial design phase has not been consistently addressed by the software developers. As a result there is an abundance of software systems with weak security. The objective of this study is to find out factors influencing developer's intent...
| Main Authors: | , , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Indian Society for Education and Environment
2020
|
| Subjects: | |
| Online Access: | http://irep.iium.edu.my/81925/ http://irep.iium.edu.my/81925/1/zulfiqar-mahar-IJST-2020-848.pdf |
| _version_ | 1848789207465590784 |
|---|---|
| author | Ahmed Maher, Zulfikar Shah, Asadullah Chandio, Shahmurad Mohd Mohadis, Hazwani Abd Rahim, Noor Hayani |
| author_facet | Ahmed Maher, Zulfikar Shah, Asadullah Chandio, Shahmurad Mohd Mohadis, Hazwani Abd Rahim, Noor Hayani |
| author_sort | Ahmed Maher, Zulfikar |
| building | IIUM Repository |
| collection | Online Access |
| description | Inclusion of security in software development from the initial design phase has not been consistently addressed by the software developers. As a result there is an abundance of software systems with weak security. The objective of this study is to find out factors influencing developer's intention to adopt secure software development practices. Methodology: This study is based on qualitative research methodology. Interviews were conducted from the professionals working at senior positions at Malaysian
software development organization. All the interviews were first transcribed, as they were digitally recorded. Then transcribed data was analyzed in a way that all frequent words or repetitive concepts were highlighted, after which
many similar or relevant concepts were grouped together and categorized as themes and sub themes. Findings: The data was analyzed using the thematic analysis method. The results revealed five main themes, whereas each main theme has sub-themes. These sub-themes are parameters to justify the main theme. Main themes were identified in the light of the interviewee's response. The main results include interviewee's demographic characteristics, and then the main themes identified include, Adoption of SSD practices, Influencing authorities, Motivating Factors, Attitude towards SSD, Hindrances / Issues towards SSD Adoption. Sub themes included: Security Culture, Change Management, Applications of SSD, Managers, Security
Expert, Training, Incentives, Security Awareness, Performance Expectancy, Facilitating Conditions, Demographic Characteristics, Need to use SSD, No clear
guidelines, Strict Project Timeline, Lack of Security knowledge. The overall interview results show that secure software development practices adoption level in most part of the software industry is not up to the satisfactory
level. Novelty/Applications: This research explores the factors impeding the implementation of the best security practices, and barriers to secure software development practices adoption. This study can be used as guideline to be followed for the implementation of secure software development practices in software industry.
Keywords: Secure software development adoption; organizational factors;software developer intention; security development; software security. |
| first_indexed | 2025-11-14T17:53:03Z |
| format | Article |
| id | iium-81925 |
| institution | International Islamic University Malaysia |
| institution_category | Local University |
| language | English |
| last_indexed | 2025-11-14T17:53:03Z |
| publishDate | 2020 |
| publisher | Indian Society for Education and Environment |
| recordtype | eprints |
| repository_type | Digital Repository |
| spelling | iium-819252020-12-28T07:44:00Z http://irep.iium.edu.my/81925/ Challenges and limitations in secure software development adoption - A qualitative analysis in Malaysian software industry prospect Ahmed Maher, Zulfikar Shah, Asadullah Chandio, Shahmurad Mohd Mohadis, Hazwani Abd Rahim, Noor Hayani T10.5 Communication of technical information Inclusion of security in software development from the initial design phase has not been consistently addressed by the software developers. As a result there is an abundance of software systems with weak security. The objective of this study is to find out factors influencing developer's intention to adopt secure software development practices. Methodology: This study is based on qualitative research methodology. Interviews were conducted from the professionals working at senior positions at Malaysian software development organization. All the interviews were first transcribed, as they were digitally recorded. Then transcribed data was analyzed in a way that all frequent words or repetitive concepts were highlighted, after which many similar or relevant concepts were grouped together and categorized as themes and sub themes. Findings: The data was analyzed using the thematic analysis method. The results revealed five main themes, whereas each main theme has sub-themes. These sub-themes are parameters to justify the main theme. Main themes were identified in the light of the interviewee's response. The main results include interviewee's demographic characteristics, and then the main themes identified include, Adoption of SSD practices, Influencing authorities, Motivating Factors, Attitude towards SSD, Hindrances / Issues towards SSD Adoption. Sub themes included: Security Culture, Change Management, Applications of SSD, Managers, Security Expert, Training, Incentives, Security Awareness, Performance Expectancy, Facilitating Conditions, Demographic Characteristics, Need to use SSD, No clear guidelines, Strict Project Timeline, Lack of Security knowledge. The overall interview results show that secure software development practices adoption level in most part of the software industry is not up to the satisfactory level. Novelty/Applications: This research explores the factors impeding the implementation of the best security practices, and barriers to secure software development practices adoption. This study can be used as guideline to be followed for the implementation of secure software development practices in software industry. Keywords: Secure software development adoption; organizational factors;software developer intention; security development; software security. Indian Society for Education and Environment 2020-07-27 Article PeerReviewed application/pdf en http://irep.iium.edu.my/81925/1/zulfiqar-mahar-IJST-2020-848.pdf Ahmed Maher, Zulfikar and Shah, Asadullah and Chandio, Shahmurad and Mohd Mohadis, Hazwani and Abd Rahim, Noor Hayani (2020) Challenges and limitations in secure software development adoption - A qualitative analysis in Malaysian software industry prospect. Indian journal of Sciences and Technology, 13 (26). pp. 2601-2608. ISSN 0974-6846 E-ISSN 0974-5645 https://www.indjst.org/ 10.17485/IJST/v13i26.848 |
| spellingShingle | T10.5 Communication of technical information Ahmed Maher, Zulfikar Shah, Asadullah Chandio, Shahmurad Mohd Mohadis, Hazwani Abd Rahim, Noor Hayani Challenges and limitations in secure software development adoption - A qualitative analysis in Malaysian software industry prospect |
| title | Challenges and limitations in secure
software development adoption - A
qualitative analysis in Malaysian software
industry prospect |
| title_full | Challenges and limitations in secure
software development adoption - A
qualitative analysis in Malaysian software
industry prospect |
| title_fullStr | Challenges and limitations in secure
software development adoption - A
qualitative analysis in Malaysian software
industry prospect |
| title_full_unstemmed | Challenges and limitations in secure
software development adoption - A
qualitative analysis in Malaysian software
industry prospect |
| title_short | Challenges and limitations in secure
software development adoption - A
qualitative analysis in Malaysian software
industry prospect |
| title_sort | challenges and limitations in secure
software development adoption - a
qualitative analysis in malaysian software
industry prospect |
| topic | T10.5 Communication of technical information |
| url | http://irep.iium.edu.my/81925/ http://irep.iium.edu.my/81925/ http://irep.iium.edu.my/81925/ http://irep.iium.edu.my/81925/1/zulfiqar-mahar-IJST-2020-848.pdf |