I. Introduction
Secure development models provide a means of minimizing risk when creating a technological solution and are therefore especially useful tools when working with emerging technologies. Unfortunately, secure development is complex, costly, and limited in practice [1]. There are numerous secure development models and no universally accepted answer as to which is the best. Furthermore, many of the prominent secure development models are not always applicable. Geer surveyed 46 organizations and found that only the most technically sophisticated-approximately 10% of respondents-were adopting a secure development model [1]. Many of the respondents reported that they had not adopted a secure development model because it was either too expensive, required too many resources, or was too time-consuming [1], and numerous studies present a similar narrative [2]–[5].