Synthesizing Information System Design Ideals to Overcome Developmental Duality in Securing Information Systems

A critical issue in information systems development is how to make information systems more secure from their inception by overcoming developmental duality. If information systems security is considered in conjunction with information systems development from the beginning of the development process strictly from a methodological perspective, developmental duality persists. Approaching the problem from an ontological and epistemological perspective and analyzing the design ideals of the systems developers, we find that these ideals are different from those of security designers. Reconciling the design ideals of both system and security developers would allow for the systems design process to effectively incorporate the security design process from the initial stages of information systems development, enabling an information system with security factored in from the earliest stages, ultimately leading to more secure information systems.