{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,16]],"date-time":"2026-04-16T11:09:40Z","timestamp":1776337780278,"version":"3.51.2"},"reference-count":43,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","license":[{"start":{"date-parts":[[2020,1,1]],"date-time":"2020-01-01T00:00:00Z","timestamp":1577836800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/legalcode"}],"funder":[{"name":"Junta de Extremadura (European Regional Development Fund), Consejer\u00eda de Econom\u00eda e Infraestructuras","award":["GR18138"],"award-info":[{"award-number":["GR18138"]}]},{"name":"Junta de Extremadura (European Regional Development Fund), Consejer\u00eda de Econom\u00eda e Infraestructuras","award":["IB16089"],"award-info":[{"award-number":["IB16089"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Access"],"published-print":{"date-parts":[[2020]]},"DOI":"10.1109\/access.2020.2989113","type":"journal-article","created":{"date-parts":[[2020,4,21]],"date-time":"2020-04-21T20:12:20Z","timestamp":1587499940000},"page":"77653-77665","source":"Crossref","is-referenced-by-count":32,"title":["A Preventive Secure Software Development Model for a Software Factory: A Case Study"],"prefix":"10.1109","volume":"8","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-4584-6945","authenticated-orcid":false,"given":"Jose Carlos Sancho","family":"Nunez","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6367-2694","authenticated-orcid":false,"given":"Andres Caro","family":"Lindo","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Pablo Garcia","family":"Rodriguez","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref39","first-page":"92","article-title":"Herramienta para la identificaci&#x00F3;n de requisitos de seguridad en un Modelo de Desarrollo Seguro","author":"n\u00fa\u00f1ez","year":"2018","journal-title":"Proc Reuni&#x00F3;n Espa&#x00F1;ola Sobre Criptolog&#x00ED;a Seguridad la Informaci&#x00F3;n (RECSI)"},{"key":"ref38","year":"2020","journal-title":"Damn Vulnerable Web Application"},{"key":"ref33","year":"2017","journal-title":"OWASP Top 10&#x2014;The Ten Most Critical Web Application Security Risks"},{"key":"ref32","first-page":"565","article-title":"Categorizaci&#x00F3;n de Actividades de Seguridad en el Desarrollo de Software","author":"n\u00fa\u00f1ez","year":"2016","journal-title":"Proc Jornadas Ingenier&#x00ED;a Softw Bases de Datos"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2019.2930000"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2018.03.016"},{"key":"ref37","author":"druin","year":"2013","journal-title":"InfoSec reading room introduction to the OWASP mutillidae II Web"},{"key":"ref36","year":"2020","journal-title":"OWASP WebGoat Project"},{"key":"ref35","first-page":"1","article-title":"Herramienta de entrenamiento para el desarrollo de software seguro","author":"n\u00fa\u00f1ez","year":"2019","journal-title":"Proc Actas las 24th Jornadas Ingenier&#x00ED;a Software Bases Datos (JISBD)"},{"key":"ref34","first-page":"47","year":"2014","journal-title":"Application Security Verification Standard (2014)"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.28945\/920"},{"key":"ref40","author":"pietik\u00e4inen","year":"2014","journal-title":"Handbook of the Secure Agile Software Development Life Cycle"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1007\/s10462-012-9372-9"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1109\/TLA.2013.6502829"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1201\/1086\/44797.13.5.20041101\/84907.5"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1002\/sec.1700"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.3923\/jse.2012.10.15"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2014.2298011"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1109\/CSAC.2004.41"},{"key":"ref18","year":"2010","journal-title":"Agile development using microsoft security development lifecycle"},{"key":"ref19","year":"2011","journal-title":"Oracle Software Security Assurance"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1109\/ISSRE.2006.43"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2016.05.001"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1016\/j.infsof.2008.01.010"},{"key":"ref3","year":"2002","journal-title":"The Economic Impacts of Inadequate Infrastructure for Software Testing"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2019.2939870"},{"key":"ref29","first-page":"42","article-title":"An&#x00E1;lisis de metodolog&#x00ED;as de Desarrollo de Software Seguro","author":"n\u00fa\u00f1ez","year":"2016","journal-title":"Proc Jornadas Nacionales Investigaci&#x00F3;n Ciberseguridad (JNIC)"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1016\/j.jss.2016.02.048"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/TLA.2007.4378508"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2005.103"},{"key":"ref2","year":"2019","journal-title":"Cyber Threats and Cyber Security 2019"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1016\/j.procs.2015.03.041"},{"key":"ref1","year":"2018","journal-title":"Cyberthreats and Tendencies Executive Summary 2018"},{"key":"ref20","year":"2020","journal-title":"Comprehensive Lightweight Application Security Process"},{"key":"ref22","year":"2009","journal-title":"Software Assurance Maturity Model"},{"key":"ref21","first-page":"3","article-title":"TSP-secure","author":"davis","year":"2009","journal-title":"Proc 4th Annu TSP Symp"},{"key":"ref42","first-page":"87","article-title":"Evaluaci&#x00F3;n y selecci&#x00F3;n de un ecosistema de herramientas para un enfoque preventivo y continuo en modelos de desarrollo seguro de software","author":"de sande","year":"2018","journal-title":"Proc Jornadas Nacionales Investigaci&#x00F3;n Ciberseguridad (JNIC)"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.3390\/electronics8111218"},{"key":"ref41","first-page":"128","article-title":"Metodolog&#x00ED;a de Implantaci&#x00F3;n Empresarial de un Modelo de Desarrollo de Software Seguro","author":"n\u00fa\u00f1ez","year":"2017","journal-title":"Proc Jornadas Nacionales Investigaci&#x00F3;n Ciberseguridad (JNIC)"},{"key":"ref23","author":"migues","year":"2019","journal-title":"Building Security in Maturity Model"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1109\/SESS.2007.7"},{"key":"ref43","first-page":"1","year":"2015","journal-title":"Common Vulnerability Scoring System V3 0 Specification Document Forum Incident Response Secur Teams"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1109\/MS.2018.290110854"}],"container-title":["IEEE Access"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/6287639\/8948470\/09075225.pdf?arnumber=9075225","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2021,12,17]],"date-time":"2021-12-17T19:51:32Z","timestamp":1639770692000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9075225\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020]]},"references-count":43,"URL":"https:\/\/doi.org\/10.1109\/access.2020.2989113","relation":{},"ISSN":["2169-3536"],"issn-type":[{"value":"2169-3536","type":"electronic"}],"subject":[],"published":{"date-parts":[[2020]]}}}