Human Factors in Security Risk Analysis of Software Systems: A Systematic Literature Review
Security risk analysis techniques involve identifying security threats in software systems and planning countermeasures. Automation and knowledge reuse aid analysts, but they must interpret and assess tool outcomes, which can be biased. A review of 22 studies highlights conflicting conclusions on human factors in security risk analysis and identifies gaps in literature.