Deanship of Graduate Studies | Researches | FACTORS THAT INFLUENCE ADOPTION OF SECURITY PRACTICES DURING SOFTWARE DEVELOPMENT PHASES: AN EMPIRICAL STUDY

Main Page
Deanship
- The Dean
  - Dean's Word
  - Curriculum Vitae
  - Contact the Dean
- Vision and Mission
- Organizational Structure
- Vice- Deanship
- Vice- Dean
- KAU Graduate Studies
Research Services & Courses
- Research Services Unit
- Important Research for Society
- Deanship's Services
  - FAQs
  - Research
  - Staff Directory
  - Files
  - Favorite Websites
  - Deanship Access Map
Graduate Studies Awards
Deanship's Staff
- Staff Directory
Files
Researches
Contact us

- عربي
- English

Deanship of Graduate Studies

Document Details

Document Type	:	Thesis
Document Title	:	FACTORS THAT INFLUENCE ADOPTION OF SECURITY PRACTICES DURING SOFTWARE DEVELOPMENT PHASES: AN EMPIRICAL STUDY العوامل المؤثرة في تبني الممارسات الأمنية أثناء مراحل تطوير البرنامج : دراسة تجريبية
Subject	:	Faculty of Computing and Information Technology
Document Language	:	Arabic
Abstract	:	Small and medium enterprises (SME) play a key role in many industries and in national economies. However, independent companies can be the most prevalent and most influential companies in many industries and economic settings. The challenge for these types of companies is to deliver a high-quality product in a short amount of time and within small budgets. Therefore, these products are not usually free of security problems resulting from a failure to perform security tests during its life cycle and after its deployment due to a lack of time and resources. Also, there are high demands from the customer on software development companies to ensure software security in their systems. Some organizations have addressed security issues and have developed many standards and models. These include the security techniques in ISO/IEC 17799 (as an information security management standard), control objectives for information and related technology (COBIT), and the best practices promoted by the National Institute of Standards and Technology (NIST). However, these standards and models are not always feasible for small and medium-sized companies. This study proposes a framework to enhance the security principles, criteria, measurement, and practices for software development of custom-made projects at in-house SME development companies. This thesis used Empirical Research Methods (ERM) to validate the proposed strategy framework. Many security practices have been adapted to be suitable for custom-made software at SME. However, the companies adaptability to security practices during software development varied according to company characteristics, such as company size, age, field, and previous history of the company in adopting security practices. One of the main challenges identified in this work was the shortage of software security experts. Moreover, the number of trained software developers was insufficient.
Supervisor	:	Dr. Nermin Hamza
Thesis Type	:	Master Thesis
Publishing Year	:	1440 AH 2019 AD
Added Date	:	Wednesday, September 11, 2019

Researchers

Researcher Name (Arabic)	Researcher Name (English)	Researcher Type	Dr Grade	Email
فاطمة عبدالله الغامدي	Al-Ghamdi, Fatimah Abdullah	Researcher	Master

Files

File Name	Type	Description
44986.pdf	pdf

Back To Researches Page