Skip to main content
Journal ArticleOPEN ACCESS

Web engineering security (WES) methodology

Communications of the Association for Information Systems (2014) 34(1) 1359-1396
DOI: 10.17705/1cais.03471
6Citations
Citations of this article
27Readers
Mendeley users who have this article in their library.

Abstract

The impact of the World Wide Web on basic operational economical components in global information-rich civilizations is significant. The repercussions force organizations to provide justification for security from a businesscase perspective and to focus on security from a Web application development environment standpoint. The need for clarity promoted an investigation through the acquisition of empirical evidence from a high level Web survey and a more detailed industry survey to analyze security in the Web application development environment ultimately contributing to the proposal of the Essential Elements (EE) and the Security Criteria for Web Application Development (SCWAD). The synthesis of information provided was used to develop the Web Engineering Security (WES) methodology. WES is a proactive, flexible, process neutral security methodology with customizable components that is based on empirical evidence and used to explicitly integrate security throughout an organization's chosen application development process. © 2014 by the Association for Information Systems.

Author supplied keywords

References Powered by Scopus

A set of principles for conducting and evaluating interpretive field studies in information systems

MIS Quarterly: Management Information Systems
3717Citations
N/AReaders
Get full text

The Protection of Information in Computer Systems

Proceedings of the IEEE
1490Citations
N/AReaders
Get full text

Information security policy compliance: An empirical study of rationality-based beliefs and information security awareness

MIS Quarterly: Management Information Systems
1487Citations
N/AReaders
Get full text
View more at Scopus

Cited by Powered by Scopus

Forensic-by-Design Framework for Cyber-Physical Cloud Systems

IEEE Cloud Computing
148Citations
N/AReaders
Get full text

Teaching Case Security and Privacy Implications of Virtual Reality Applications in the Metaverse: A Case of Development, Security, and Operations (DevSecOps)

Journal of Information Systems Education
0Citations
N/AReaders
Get full text

Social Media Fake News Detection Using Machine Learning Models and Feature Extraction Techniques

2024 IEEE 15th Annual Ubiquitous Computing, Electronics and Mobile Communication Conference, UEMCON 2024
0Citations
N/AReaders
Get full text
View more at Scopus

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Cite

CITATION STYLE

APA

Glisson, W. B., & Welland, R. (2014). Web engineering security (WES) methodology. Communications of the Association for Information Systems, 34(1), 1359–1396. https://doi.org/10.17705/1cais.03471

Readers' Seniority

Tooltip

PhD / Post grad / Masters / Doc 10

71%

Lecturer / Post doc 2

14%

Professor / Associate Prof. 1

7%

Researcher 1

7%

Readers' Discipline

Tooltip

Computer Science 12

75%

Business, Management and Accounting 2

13%

Nursing and Health Professions 1

6%

Engineering 1

6%

Save time finding and organizing research with Mendeley

Sign up for free