Advanced

A taxonomy for improving industry-academia communication in IoT vulnerability management

Rico, Sergio LU ; Engström, Emelie LU and Höst, Martin LU (2019) Euromicro Conference on Software Engineering and Advanced Applications (SEAA) p.38-45
Abstract
Background: In software engineering, industry-academia is a symbiotic relationship. Researchers need to be aware of the industry to produce relevant research, while practitioners are educated in academia and could take advantage of empirical research. The SERP taxonomy architecture is designed to support communication between practitioners and researchers in software engineering.
Objective: The purpose of this study is to analyze to what extent the SERP taxonomy architecture is useful for improving communication between researchers and practitioners in IoT vulnerability management.
Method: We developed a SERP taxonomy for IoT vulerability management, SERP-MENTION, in an incremental way. Along the development, we evaluated the... (More)
Background: In software engineering, industry-academia is a symbiotic relationship. Researchers need to be aware of the industry to produce relevant research, while practitioners are educated in academia and could take advantage of empirical research. The SERP taxonomy architecture is designed to support communication between practitioners and researchers in software engineering.
Objective: The purpose of this study is to analyze to what extent the SERP taxonomy architecture is useful for improving communication between researchers and practitioners in IoT vulnerability management.
Method: We developed a SERP taxonomy for IoT vulerability management, SERP-MENTION, in an incremental way. Along the development, we evaluated the developed taxonomy in a project of industry academia collaboration.
Results: In addition to the taxonomy itself we elaborate on the taxonomy development process and the potential of SERP-MENTION to support communication between researchers and practitioners within the area.
Conclusion: The SERP architecture can be used in a new field, it is perceived as useful by potential users to better describe and communicate research outputs and practical challenges in software vulnerability management. (Less)
Please use this url to cite or link to this publication:
author
; and
organization
publishing date
type
Chapter in Book/Report/Conference proceeding
publication status
published
subject
keywords
industry-academia communication, taxonomy, Information Security, IoT
host publication
2019 45th Euromicro Conference on Software Engineering and Advanced Applications (SEAA)
pages
8 pages
publisher
IEEE - Institute of Electrical and Electronics Engineers Inc.
conference name
Euromicro Conference on Software Engineering and Advanced Applications (SEAA)
conference location
Kallithea-Chalkidik, Greece
conference dates
2019-08-28 - 2019-08-30
external identifiers
  • scopus:85075990096
ISBN
978-1-7281-3421-5
978-1-7281-3422-2
DOI
10.1109/SEAA.2019.00014
project
HATCH: Handling Vulnerabilities in the Value Chain
language
English
LU publication?
yes
id
320d8440-d260-4440-9a72-454823a8afe4
date added to LUP
2019-05-13 15:42:57
date last changed
2021-05-05 21:33:19
@inproceedings{320d8440-d260-4440-9a72-454823a8afe4,
  abstract     = {Background: In software engineering, industry-academia is a symbiotic relationship. Researchers need to be aware of the industry to produce relevant research, while practitioners are educated in academia and could take advantage of empirical research. The SERP taxonomy architecture is designed to support communication between practitioners and researchers in software engineering. <br/>Objective: The purpose of this study is to analyze to what extent the SERP taxonomy architecture is useful for improving communication between researchers and practitioners in IoT vulnerability management. <br/>Method: We developed a SERP taxonomy for IoT vulerability management, SERP-MENTION, in an incremental way. Along the development, we evaluated the developed taxonomy in a project of industry academia collaboration. <br/>Results: In addition to the taxonomy itself we elaborate on the taxonomy development process and the potential of SERP-MENTION to support communication between researchers and practitioners within the area.<br/>Conclusion: The SERP architecture can be used in a new field, it is perceived as useful by potential users to better describe and communicate research outputs and practical challenges in software vulnerability management.},
  author       = {Rico, Sergio and Engström, Emelie and Höst, Martin},
  booktitle    = {2019 45th Euromicro Conference on Software Engineering and Advanced Applications (SEAA)},
  isbn         = {978-1-7281-3421-5},
  language     = {eng},
  month        = {08},
  pages        = {38--45},
  publisher    = {IEEE - Institute of Electrical and Electronics Engineers Inc.},
  title        = {A taxonomy for improving industry-academia communication in IoT vulnerability management},
  url          = {http://dx.doi.org/10.1109/SEAA.2019.00014},
  doi          = {10.1109/SEAA.2019.00014},
  year         = {2019},
}