{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,22]],"date-time":"2026-04-22T20:16:16Z","timestamp":1776888976443,"version":"3.51.2"},"reference-count":132,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","license":[{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by-nc-nd\/4.0\/"}],"funder":[{"name":"Scientific Research Initiative Direcci\u00f3n de Investigaci\u00f3n de la Universidad de La Frontera"},{"DOI":"10.13039\/501100005916","name":"Universidad de La Frontera","doi-asserted-by":"publisher","award":["DIUFRO DI22-0043"],"award-info":[{"award-number":["DIUFRO DI22-0043"]}],"id":[{"id":"10.13039\/501100005916","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100020884","name":"Agencia Nacional de Investigaci\u00f3n y Desarrollo de Chile (ANID), Chile, through Fondecyt de Iniciaci\u00f3n en Investigaci\u00f3n","doi-asserted-by":"publisher","award":["11240115"],"award-info":[{"award-number":["11240115"]}],"id":[{"id":"10.13039\/501100020884","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Access"],"published-print":{"date-parts":[[2024]]},"DOI":"10.1109\/access.2024.3372385","type":"journal-article","created":{"date-parts":[[2024,3,1]],"date-time":"2024-03-01T18:40:43Z","timestamp":1709318443000},"page":"35204-35230","source":"Crossref","is-referenced-by-count":15,"title":["Analysis of Strategies for the Integration of Security Practices in Agile Software Development: A Sustainable SME Approach"],"prefix":"10.1109","volume":"12","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-2065-5130","authenticated-orcid":false,"given":"Yolanda","family":"Vald\u00e9s-Rodr\u00edguez","sequence":"first","affiliation":[{"name":"Facultad de Administración y Negocios, Universidad Autónoma de Chile, Talca, Chile"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-8494-8100","authenticated-orcid":false,"given":"Jorge","family":"Hochstetter-Diez","sequence":"additional","affiliation":[{"name":"Department of Computer Science and Informatics, Universidad de La Frontera, Temuco, Chile"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8728-7101","authenticated-orcid":false,"given":"Mauricio","family":"Di\u00e9guez-Rebolledo","sequence":"additional","affiliation":[{"name":"Department of Computer Science and Informatics, Universidad de La Frontera, Temuco, Chile"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ana","family":"Bustamante-Mora","sequence":"additional","affiliation":[{"name":"Department of Computer Science and Informatics, Universidad de La Frontera, Temuco, Chile"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Rodrigo","family":"Cadena-Mart\u00ednez","sequence":"additional","affiliation":[{"name":"Departamento de Posgrado, Universidad Tecnológica de México, Ciudad de México, Mexico"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref1","first-page":"1627","article-title":"Inadvertently making cyber criminals rich: A comprehensive study of cryptojacking campaigns at Internet scale","volume-title":"Proc. 28th USENIX Secur. Symp.","author":"Bijmans"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2021.102385"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1108\/ICS-07-2018-0080"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1145\/3501774.3501779"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1016\/j.csi.2019.04.005"},{"key":"ref6","first-page":"1027","article-title":"Metodolog\u00edas de desarrollo de software seguro con propiedades \u00e1giles","volume":"5","author":"L\u00f3pez-Rodr\u00edguez","year":"2021","journal-title":"Polo Del Conocimiento"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.3390\/electronics8111218"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/IEMENTech53263.2021.9614779"},{"key":"ref9","first-page":"86","article-title":"SecSDM: A usable tool to support IT undergraduate students in secure software development","volume-title":"Proc. HAISA","author":"Liou"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.3390\/app13074578"},{"key":"ref11","first-page":"1","article-title":"Aplicar el modelo de amenazas para incluir la seguridad en el modelado de sistemas","volume-title":"Proc. 5th Congreso Iberoamericano De Seguridad Inform\u00e1tica","volume":"16","author":"Castellaro"},{"key":"ref12","article-title":"Sustainability quantification in requirements informing design","volume-title":"Proc. 6th Int. Work. Requir. Eng. Sustain. Syst.","volume":"1","author":"Oyedeji"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1109\/MS.2015.134"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1016\/j.jss.2017.12.026"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1016\/j.suscom.2017.10.011"},{"key":"ref16","volume-title":"Kaspersky Los Ataques Financieros Crecen En Am\u00e9rica Latina y Aumenta La Preocupaci\u00f3n Por El Uso De La Pirater\u00eda","year":"2023"},{"key":"ref17","volume-title":"Taringa: Over 28 Million Users\u2019 Data Exposed in Massive Data Breach","year":"2017"},{"key":"ref18","volume-title":"SpyCloud Taringa: Over 28 Million Users Exposed in Massive Data Breach","year":"2023"},{"key":"ref19","volume-title":"U. 35% De Las Organizaciones Experimentaron Ataques DDoS En 2012","year":"2023"},{"key":"ref20","volume-title":"Robaron U.S. 10 Millones En Ataque Inform\u00e1tico Al Banco De Chile: Virus Fue Un Distractor","author":"Chile","year":"2023"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1016\/j.cosrev.2018.08.001"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.3390\/joitmc4030021"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-50244-7_11"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1109\/MSECP.2003.1193213"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.30574\/wjaets.2023.8.2.0101"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1108\/IJMPB-04-2020-0119"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-95189-8_13"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.26483\/ijarcs.v14i2.6955"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1109\/CAIS.2019.8769519"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.9770\/jesi.2019.6.4(37)"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.26483\/ijarcs.v14i1.6949"},{"key":"ref32","volume-title":"Reglamento (UE) 2022\/2554 del Parlamento Europeo y del Consejo de 28 de Junio de 2022 Sobre la Resiliencia Operativa Digital de las Entidades Cr\u00edticas y Por el Que se Modifica El Reglamento (UE) 2016\/1148","year":"2024"},{"key":"ref33","volume-title":"ISO\/IEC 27001 Information Security Management","year":"2023"},{"key":"ref34","first-page":"706","article-title":"Enhancing software engineering processes towards sustainable software product design","volume-title":"EnviroInfo","author":"Dick","year":"2010"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1145\/2480362.2480585"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.24297\/ijct.v16i7.6467"},{"key":"ref37","volume-title":"Projects","year":"2023"},{"key":"ref38","volume-title":"Application Security Verification Standard 4.0.3","year":"2023"},{"key":"ref39","volume-title":"Software Assurance Maturity Model","year":"2023"},{"key":"ref40","volume-title":"Test Driven Development: By Example","author":"Beck","year":"2022"},{"key":"ref41","volume-title":"The Scrum Guide. 2020","author":"Schwaber","year":"2021"},{"key":"ref42","volume-title":"Agile Project Management: Creating Innovative Products","author":"Highsmith","year":"2009"},{"key":"ref43","volume-title":"Agile Software Development: The Cooperative Game","author":"Cockburn","year":"2006"},{"key":"ref44","volume-title":"Essential Scrum: A Practical Guide to the Most Popular Agile Process","author":"Rubin","year":"2012"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1109\/RE51729.2021.00013"},{"key":"ref46","doi-asserted-by":"publisher","DOI":"10.1007\/978-981-15-9774-9_64"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2022.3140181"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.1007\/978-981-10-4600-1_2"},{"key":"ref49","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2021.3052311"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2021.3062388"},{"key":"ref51","first-page":"29","article-title":"Metodologas de desarrollo de software y sumbito de aplicacin: Una revisin sistemtica","volume":"7","author":"Morales-Carrillo","year":"2022","journal-title":"Revista Ibrica Sistemas Tecnologias Informao"},{"key":"ref52","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2020.2995850"},{"key":"ref53","doi-asserted-by":"publisher","DOI":"10.1111\/joes.12456"},{"key":"ref54","doi-asserted-by":"publisher","DOI":"10.1007\/s13385-020-00250-1"},{"key":"ref55","doi-asserted-by":"publisher","DOI":"10.4018\/978-1-7998-3016-0.ch047"},{"key":"ref56","doi-asserted-by":"publisher","DOI":"10.4018\/978-1-6684-3702-5.ch013"},{"key":"ref57","doi-asserted-by":"publisher","DOI":"10.3390\/electronics11223707"},{"key":"ref58","doi-asserted-by":"publisher","DOI":"10.1109\/SCCC.2016.7836006"},{"key":"ref59","doi-asserted-by":"publisher","DOI":"10.1016\/j.infsof.2019.02.003"},{"key":"ref60","doi-asserted-by":"publisher","DOI":"10.1002\/smr.2183"},{"key":"ref61","doi-asserted-by":"publisher","DOI":"10.1016\/j.infsof.2015.03.007"},{"key":"ref62","first-page":"195","article-title":"Using mapping studies in software engineering","volume":"8","author":"Budgen","year":"2008","journal-title":"Ppig"},{"key":"ref63","doi-asserted-by":"publisher","DOI":"10.3390\/su11061781"},{"key":"ref64","article-title":"Guidelines for performing systematic literature reviews in software engineering","author":"Keele","year":"2007"},{"key":"ref65","doi-asserted-by":"crossref","DOI":"10.1007\/978-3-319-99334-8","volume-title":"SafeScrumAgile Development of Safety-Critical Software","author":"Kjetil Hanssen","year":"2018"},{"key":"ref66","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-58793-2_28"},{"key":"ref67","doi-asserted-by":"publisher","DOI":"10.3390\/app13042465"},{"key":"ref68","doi-asserted-by":"publisher","DOI":"10.1109\/RoEduNet.2016.7753243"},{"key":"ref69","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2022.3178301"},{"key":"ref70","doi-asserted-by":"publisher","DOI":"10.1016\/j.infsof.2020.106488"},{"key":"ref71","doi-asserted-by":"publisher","DOI":"10.5220\/0009828304430451"},{"key":"ref72","doi-asserted-by":"publisher","DOI":"10.32604\/cmc.2022.019289"},{"key":"ref73","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2020.2989113"},{"key":"ref74","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2020.2988160"},{"key":"ref75","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2022.102744"},{"key":"ref76","doi-asserted-by":"publisher","DOI":"10.1109\/ARES.2015.79"},{"key":"ref77","first-page":"281","article-title":"Security in the software development lifecycle","volume-title":"Proc. SOUPS USENIX Secur. Symp.","author":"Assal"},{"key":"ref78","doi-asserted-by":"publisher","DOI":"10.1109\/QuaRAP.2018.00008"},{"key":"ref79","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-64218-5_1"},{"key":"ref80","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-57633-6_13"},{"key":"ref81","doi-asserted-by":"publisher","DOI":"10.1109\/ASWEC.2018.00018"},{"key":"ref82","doi-asserted-by":"publisher","DOI":"10.1016\/j.jss.2022.111477"},{"key":"ref83","doi-asserted-by":"publisher","DOI":"10.3897\/jucs.71770"},{"key":"ref84","doi-asserted-by":"publisher","DOI":"10.3390\/su15010801"},{"key":"ref85","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-64148-1_5"},{"key":"ref86","volume-title":"Seguridad De La Informacin: Norma ISO IEC 27001\/27002","year":"2024"},{"key":"ref87","doi-asserted-by":"publisher","DOI":"10.1016\/j.ress.2020.106954"},{"key":"ref88","doi-asserted-by":"publisher","DOI":"10.1109\/ICCCE.2018.8539339"},{"key":"ref89","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2018.2840322"},{"key":"ref90","doi-asserted-by":"publisher","DOI":"10.1007\/978-981-10-3223-3_22"},{"key":"ref91","doi-asserted-by":"publisher","DOI":"10.1145\/3484399.3484403"},{"key":"ref92","doi-asserted-by":"publisher","DOI":"10.1145\/3234152.3234187"},{"key":"ref93","first-page":"617","article-title":"An analysis of the role of situated learning in starting a security culture in a software company","volume-title":"Proc. 17th Symp. Usable Privacy Secur. (SOUPS)","author":"Tuladhar"},{"key":"ref94","doi-asserted-by":"publisher","DOI":"10.1145\/3341161.3343520"},{"key":"ref95","first-page":"205","article-title":"An ethnographic understanding of software (in) security and a co-creation model to improve secure software development","volume-title":"Proc. 16th Symp. Usable Privacy Secur.","author":"Palombo"},{"issue":"8","key":"ref96","first-page":"39","article-title":"An exploratory study on secure software practices among software practitioners in Malaysia","volume":"8","author":"Mohamed","year":"2016","journal-title":"J. Telecommun., Electron. Comput. Eng."},{"key":"ref97","doi-asserted-by":"publisher","DOI":"10.1109\/CC.2018.8300281"},{"key":"ref98","doi-asserted-by":"publisher","DOI":"10.5121\/ijcnc.2020.12407"},{"key":"ref99","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-29513-4_9"},{"key":"ref100","doi-asserted-by":"publisher","DOI":"10.4018\/978-1-7998-4165-4.ch009"},{"key":"ref101","doi-asserted-by":"publisher","DOI":"10.17013\/risti.32.97-112"},{"key":"ref102","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-031-21388-5_55"},{"key":"ref103","doi-asserted-by":"publisher","DOI":"10.1109\/CESI.2017.4"},{"key":"ref104","doi-asserted-by":"publisher","DOI":"10.1049\/sfw2.12036"},{"key":"ref105","doi-asserted-by":"publisher","DOI":"10.1016\/j.jss.2021.111137"},{"key":"ref106","doi-asserted-by":"publisher","DOI":"10.1109\/ICCAIS48893.2020.9096815"},{"key":"ref107","article-title":"New hybrid methodology for secure systems","author":"Zakaria"},{"key":"ref108","doi-asserted-by":"publisher","DOI":"10.3390\/e22040429"},{"key":"ref109","doi-asserted-by":"publisher","DOI":"10.1108\/CMS-01-2017-0005"},{"key":"ref110","doi-asserted-by":"publisher","DOI":"10.1145\/3442167.3442178"},{"key":"ref111","first-page":"207","article-title":"Relevance of bots in software and their impacts on software security","volume-title":"Proc. World Congr. Eng.","volume":"2242","author":"Kurian"},{"key":"ref112","doi-asserted-by":"publisher","DOI":"10.1155\/2021\/6696695"},{"key":"ref113","doi-asserted-by":"publisher","DOI":"10.53799\/ajse.v21i1.308"},{"key":"ref114","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-03192-3_2"},{"key":"ref115","doi-asserted-by":"publisher","DOI":"10.1063\/1.4960926"},{"key":"ref116","doi-asserted-by":"publisher","DOI":"10.4324\/9781315629520-16"},{"key":"ref117","doi-asserted-by":"publisher","DOI":"10.1002\/smr.2521"},{"key":"ref118","doi-asserted-by":"publisher","DOI":"10.1142\/S0218194022500152"},{"key":"ref119","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-031-10539-5_6"},{"key":"ref120","doi-asserted-by":"publisher","DOI":"10.4018\/978-1-4666-3679-8.ch012"},{"key":"ref121","doi-asserted-by":"publisher","DOI":"10.1108\/ICS-06-2017-0042"},{"key":"ref122","doi-asserted-by":"publisher","DOI":"10.1145\/3230833.3233274"},{"key":"ref123","doi-asserted-by":"publisher","DOI":"10.1002\/spe.3072"},{"key":"ref124","doi-asserted-by":"publisher","DOI":"10.1002\/smr.2388"},{"key":"ref125","first-page":"1","article-title":"The state of agile: Changes in the world of change","volume-title":"Proc. 24th World Multi-Conf. Syst., Cybern. Inf. (WMSCI)","author":"Marlowe"},{"key":"ref126","doi-asserted-by":"publisher","DOI":"10.4018\/IJSSSP.2020010103"},{"key":"ref127","doi-asserted-by":"publisher","DOI":"10.1109\/ICSSA.2016.12"},{"key":"ref128","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-79022-6_11"},{"key":"ref129","doi-asserted-by":"publisher","DOI":"10.1109\/TEM.2022.3148341"},{"key":"ref130","doi-asserted-by":"publisher","DOI":"10.1145\/3548606.3560569"},{"key":"ref131","doi-asserted-by":"publisher","DOI":"10.14569\/IJACSA.2019.0100319"},{"key":"ref132","doi-asserted-by":"publisher","DOI":"10.1145\/3364224"}],"container-title":["IEEE Access"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/6287639\/10380310\/10456904.pdf?arnumber=10456904","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,3,11]],"date-time":"2024-03-11T22:26:01Z","timestamp":1710195961000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10456904\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024]]},"references-count":132,"URL":"https:\/\/doi.org\/10.1109\/access.2024.3372385","relation":{},"ISSN":["2169-3536"],"issn-type":[{"value":"2169-3536","type":"electronic"}],"subject":[],"published":{"date-parts":[[2024]]}}}