Towards an integrative approach for designing for cybersecurity in systems engineering

ABSTRACT: Secure development is an ever-evolving field that has advanced quickly in recent years with initiatives like Secure Development Lifecycle (SDLC), Development Security Operations (DevSecOps), and Model-Based Security Engineering (MBSE). Despite the persistence of the security and design communities to include security in the design process, significant security breaches continue to occur. Our work reviews existing literature to determine the current state of the research at the intersection of these design and cybersecurity fields and ultimately proposes an integrative and systematic approach for developers to generate design principles that incorporate traceable security. This approach integrates security regulations and design principles and activities, encouraging compliance and security considerations at the earliest stages of the design thinking process.

• Publication year

  2025

• Venue

  Proceedings of the Design Society

• Publication date

  2025-08-01

• Fields of study

  Not labeled

• Identifiers
  DOI 10.1017/pds.2025.10330
• External record

  Open on Semantic Scholar

• Source metadata

  Semantic Scholar

• No claims are published for this paper.

• No concepts are published for this paper.

• Balancing Usability and Security in Secure System Design: A Comprehensive Study on Principles, Implementation, and Impact on Usability

  2024cited by this paper
• Cyber Resilience Limitations in Space Systems Design Process: Insights from Space Designers

  2024cited by this paper
• Tracing the evolution of cyber resilience: a historical and conceptual review

  2024cited by this paper
• The Integration of Gestalt Theory to The Graphic Design

  2023cited by this paper
• An Analysis of Cloud Security Frameworks, Problems and Proposed Solutions

  2023cited by this paper
• Usable Security: A Systematic Literature Review

  2023influential reference
• From Security-as-a-Hindrance Towards User-Centred Cybersecurity Design

  2022cited by this paper
• User, Usage and Usability: Redefining Human Centric Cyber Security

  2021cited by this paper
• SUPPORTING HUMAN-CENTERED DESIGN IN PSYCHOLOGICALLY DISTANT PROBLEM DOMAINS: THE DESIGN FOR CYBERSECURITY CARDS

  2021cited by this paper
• Prototyping Usable Privacy and Security Systems: Insights from Experts

  2021cited by this paper
• Prioritizing security over usability: Strategies for how people choose passwords

  2021cited by this paper
• Usable Security by Design: A Pattern Approach

  2020cited by this paper
• Guidelines for cybersecurity visualization design

  2020cited by this paper
• Risk Assessment, Threat Modeling and Security Testing in SDLC

  2020cited by this paper
• Digital Media Design Theories and Principles

  2019cited by this paper
• A Preliminary Design-Phase Security Methodology for Cyber-Physical Systems

  2019influential reference
• From Innocent Irene to Parental Patrick: Framing User Characteristics and Personas to Design for Cybersecurity

  2019cited by this paper
• Bringing gestalt to cyber security

  2018cited by this paper
• Design Principles: Literature Review, Analysis, and Future Directions

  2016cited by this paper
• Behavior Ever Follows Intention?: A Validation of the Security Behavior Intentions Scale (SeBIS)

  2016cited by this paper
• Design Thinking

  2016cited by this paper
• Design Heuristics in Innovative Products

  2016cited by this paper
• Evidence-based design heuristics for idea generation

  2016cited by this paper
• Effects of cyber security knowledge on attack detection

  2015cited by this paper
• Unlocking user-centered design methods for building cyber security visualizations

  2015cited by this paper
• Usability and Security by Design: A Case Study in Research and Development

  2015cited by this paper
• Using Design Heuristics in Idea Generation: Does it Take Expertise to Benefit?

  2014cited by this paper
• Probes, toolkits and prototypes: three approaches to making in codesigning

  2014cited by this paper
• Usable Security: History, Themes, and Challenges

  2014cited by this paper
• Gone in 15 Seconds: The Limits of Privacy Transparency and Control

  2013cited by this paper
• The challenges of privacy by design

  2012influential reference
• An Experimental Study of Group Idea Generation Techniques: Understanding the Roles of Idea Representation and Viewing Methods

  2011cited by this paper
• Gestalt and Graphic Design: An Exploration of the Humanistic and Therapeutic Effects of Visual Organization

  2011cited by this paper
• When Security Meets Usability: A User-Centric Approach on a Crossroads Priority Problem

  2010cited by this paper
• Advancements in the V-Model

  2010cited by this paper
• Security Considerations in the Development Life Cycle

  2009cited by this paper
• Managing Enterprise Security Risk with NIST Standards

  2007cited by this paper
• Integrating security and usability into the requirements and design process

  2007cited by this paper
• Software Security

  2004cited by this paper
• 40 Principles: TRIZ Keys to Technical Innovation

  1998influential reference
• Design of Everyday Things

  1988influential reference
• The protection of information in computer systems

  1975cited by this paper

• No citing papers are available for this paper.