{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,18]],"date-time":"2026-05-18T14:39:50Z","timestamp":1779115190593,"version":"3.51.4"},"reference-count":47,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","license":[{"start":{"date-parts":[[2022,1,1]],"date-time":"2022-01-01T00:00:00Z","timestamp":1640995200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/legalcode"}],"funder":[{"DOI":"10.13039\/501100003630","name":"Nuclear Safety Research Program through the Korea Foundation of Nuclear Safety (KoFONS) using the financial resource granted by the Nuclear Safety and Security Commission (NSSC), Republic of Korea","doi-asserted-by":"publisher","award":["2101058"],"award-info":[{"award-number":["2101058"]}],"id":[{"id":"10.13039\/501100003630","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100012389","name":"Institute of Information and Communications Technology Planning and Evaluation (IITP) through the Korea Government","doi-asserted-by":"publisher","award":["2021-0-00493"],"award-info":[{"award-number":["2021-0-00493"]}],"id":[{"id":"10.13039\/501100012389","id-type":"DOI","asserted-by":"publisher"}]},{"name":"5G Massive Next Generation Cyber Attack Deception Technology Development"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Access"],"published-print":{"date-parts":[[2022]]},"DOI":"10.1109\/access.2022.3179822","type":"journal-article","created":{"date-parts":[[2022,6,2]],"date-time":"2022-06-02T15:36:42Z","timestamp":1654184202000},"page":"65044-65054","source":"Crossref","is-referenced-by-count":28,"title":["Analyzing and Evaluating Critical Cyber Security Challenges Faced by Vendor Organizations in Software Development: SLR Based Approach"],"prefix":"10.1109","volume":"10","author":[{"ORCID":"https:\/\/orcid.org\/0000-0003-0415-099X","authenticated-orcid":false,"given":"Abdul Wahid","family":"Khan","sequence":"first","affiliation":[{"name":"Department of Computer Science, University of Science and Technology Bannu, Khyber Pakhtunkhwa, Pakistan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0443-2428","authenticated-orcid":false,"given":"Shah","family":"Zaib","sequence":"additional","affiliation":[{"name":"Department of Computer Science, University of Science and Technology Bannu, Khyber Pakhtunkhwa, Pakistan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Faheem","family":"Khan","sequence":"additional","affiliation":[{"name":"Department of Computer Engineering, Gachon University, Seongnam, South Korea"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ilhan","family":"Tarimer","sequence":"additional","affiliation":[{"name":"Department of Information Systems Engineering, Mugla Sitki Kocman University, Mugla, Turkey"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0971-8548","authenticated-orcid":false,"given":"Jung Taek","family":"Seo","sequence":"additional","affiliation":[{"name":"Department of Computer Engineering, Gachon University, Seongnam, South Korea"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-2697-8221","authenticated-orcid":false,"given":"Jiho","family":"Shin","sequence":"additional","affiliation":[{"name":"Police Science Institute, Korea National Police University, Asan, South Korea"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1109\/HICSS.2014.254"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.5897\/ajbm11.2323"},{"key":"ref3","volume-title":"Principles of Information Security","author":"Whitman","year":"2011"},{"key":"ref4","volume-title":"The Art of Deception: Controlling the Human Element of Security","author":"Mitnick","year":"2002"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1080\/23738871.2016.1157617"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.23919\/ICITST.2017.8356404"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1016\/j.dss.2016.02.012"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2013.04.004"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2015.137"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1016\/j.icte.2018.02.001"},{"key":"ref11","article-title":"Skills and characteristics of successful cybersecurity advocates","volume-title":"Proc. SOUPS","author":"Haney"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1016\/j.procs.2016.05.510"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1109\/HICSS.2012.190"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1109\/THS.2008.4534521"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1145\/2912160.2912170"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1109\/ICGS3.2019.8688137"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.21236\/AD1018805"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.17705\/1CAIS.04302"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1016\/j.jcss.2014.02.005"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-73512-2_6"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/ISADS.2013.6513420"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-57524-6_4"},{"key":"ref23","article-title":"A framework for classifying and comparing models of cyber security investment to support policy and decision-making","volume-title":"Proc. WEIS","author":"Rue"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1177\/1541931215591185"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.4108\/trans.sesa.01-06.2013.e2"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1016\/B978-0-12-800743-3.00012-8"},{"key":"ref27","article-title":"Evaluating information security investments from attackers\u2019 perspective: The return-on-attack (ROA)","volume-title":"Proc. WEIS","author":"Cremonini"},{"key":"ref28","article-title":"Issues and requirements for cybersecurity in network centric warfare","author":"Stytz","year":"2004"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijcip.2010.10.002"},{"key":"ref30","article-title":"Avoiding liability: An alternative route to more secure products","volume-title":"Proc. WEIS","author":"Shostack"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1145\/2612733.2612759"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1109\/ISSRE.2010.21"},{"key":"ref33","doi-asserted-by":"crossref","DOI":"10.5040\/9798400636554","volume-title":"Cybercrime: Criminal Threats From Cyberspace","author":"Brenner","year":"2010"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2007.32"},{"key":"ref35","article-title":"Guidelines for performing systematic literature reviews in software engineering","author":"Kitchenham","year":"2007"},{"issue":"1","key":"ref36","first-page":"1","article-title":"Towards ameliorating cybercrime and cybersecurity","volume":"3","author":"Ayofe","year":"2009","journal-title":"Int. J. Comput. Sci. Inf. Secur."},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2015.111"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2013.155"},{"key":"ref39","article-title":"Cybersecurity practices from a software engineering perspective","volume-title":"Proc. Int. Conf. Softw. Eng. Res. Pract. (SERP)","author":"Rastogi"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1109\/ICAICT.2018.8747065"},{"key":"ref41","first-page":"137","article-title":"An emerging U.S. (and world) threat: Cities wide open to cyber attacks","volume":"17","author":"Cerrudo","year":"2015","journal-title":"Securing Smart Cities"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2021.3138775"},{"key":"ref43","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2022.3145970"},{"key":"ref44","doi-asserted-by":"publisher","DOI":"10.1002\/9781119821779.ch7"},{"key":"ref45","article-title":"An introduction to medical statistics","volume-title":"An Introduction to Medical Statistics","author":"Bland","year":"2000"},{"key":"ref46","doi-asserted-by":"publisher","DOI":"10.1080\/10919392.2018.1484598"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1109\/MS.2008.4"}],"container-title":["IEEE Access"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/6287639\/9668973\/09786760.pdf?arnumber=9786760","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,12,22]],"date-time":"2025-12-22T18:42:52Z","timestamp":1766428972000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9786760\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022]]},"references-count":47,"URL":"https:\/\/doi.org\/10.1109\/access.2022.3179822","relation":{},"ISSN":["2169-3536"],"issn-type":[{"value":"2169-3536","type":"electronic"}],"subject":[],"published":{"date-parts":[[2022]]}}}