Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

The impact of security by design on the success of open source software

Paper presented at 24th European Conference on Information Systems, ECIS 2016, 12 - 15 June 2016, Istanbul, Turkey
: Chehrazi, Golriz; Heimbach, Irina; Hinz, Oliver

Fulltext urn:nbn:de:0011-n-3960659 (959 KByte PDF)
MD5 Fingerprint: 751a4f19475a0c7456be698e94e0a42c
Created on: 16.6.2016

2016, 17 pp.
European Conference on Information Systems (ECIS) <24, 2016, Istanbul>
Conference Paper, Electronic Publication
Fraunhofer SIT ()

The Security by Design paradigm – a systematic awareness for and integration of security during the whole lifecycle of a software product – is claimed to be beneficial. Studies emphasize the economic and social benefit of early security consideration during software development. Unfortunately, this claim is little supported by empirical studies. The objective of this study is to examine the relations between perceived effort invested in IT security in distinct phases of software development and deployment and their impact on project success. We address the following question: Does early effort invested in security contribute to the success of software? We conduct an online survey among project leaders of Open Source Software projects and combine these data with objective, secondary data. As dependent variable we examine the perceived success of the software projects as well as the number of downloads as an objective measure for software success at three different points in time. We find that considering IT security in the early stages of development is positively related to the project’s success whereas late consideration is negatively related.