Malik Qasaimeh scite author profile

Software organizations that develop their software products using the agile software processes such as Extreme Programming (XP) face a number of challenges in their effort to demonstrate that their process activities conform to ISO 9001 requirements, a major one being product traceability: software organizations must provide evidence of ISO 9001 conformity, and they need to develop their own procedures, tools, and methodologies to do so.

This paper proposes an auditing model for ISO 9001 traceability requirements that is applicable in agile (XP) environments. The design of our model is based on evaluation theory, and includes the use of several auditing “yardsticks” derived from the principles of engineering design, the SWEBOK Guide, and the CMMI-DEV guidelines for requirement management and traceability for each yardstick. Finally, five approaches for agile-XP traceability approaches are audited based on the proposed audit model.

Index Terms— Agile Software Certification, Extreme Programming, Software Process Improvement, ISO 9001

show abstract

Comparing Agile Software Processes Based on the Software Development Project Requirements

Qasaimeh

Mehrfard

Hamou-Lhadj

2008

View full text Add to dashboard Cite

Authentication techniques in smart grid: a systematic review

Qasaimeh¹,

Turab

Al‐Qassas

2019

TELKOMNIKA

View full text Add to dashboard Cite

Smart Grid (SG) provides enhancement to existing grids with two-way communication between the utility, sensors, and consumers, by deploying smart sensors to monitor and manage power consumption. However due to the vulnerability of SG, secure component authenticity necessitates robust authentication approaches relative to limited resource availability (i.e. in terms of memory and computational power). SG communication entails optimum efficiency of authentication approaches to avoid any extraneous burden. This systematic review analyses 27 papers on SG authentication techniques and their effectiveness in mitigating certain attacks. This provides a basis for the design and use of optimized SG authentication approaches.

show abstract

Enhancing Data Protection Provided by VPN Connections over Open WiFi Networks

Karaymeh

Ababneh

Qasaimeh

et al. 2019

View full text Add to dashboard Cite

A Novel Simplified AES Algorithm for Lightweight Real-Time Applications: Testing and Discussion

Qasaimeh

Al‐Qassas

Fida

et al. 2020

RACSC

View full text Add to dashboard Cite

Background: Lightweight cryptographic algorithms have been the focus of many researchers in the past few years. This has been inspired by the potential developments of lightweight constrained devices and their applications. These algorithms are intended to overcome the limitations of traditional cryptographic algorithms in terms of exaction time, complex computation and energy requirements. Methods: This paper proposes LAES, a lightweight and simplified cryptographic algorithm for constricted environments. It operates on GF(24), with a block size of 64 bits and a key size of 80-bit. While this simplified AES algorithm is impressive in terms of processing time and randomness levels. The fundamental architecture of LAES is expounded using mathematical proofs to compare and contrast it with a variant lightweight algorithm, PRESENT, in terms of efficiency and randomness level. Results: Three metrics were used for evaluating LAES according to the NIST cryptographic applications statistical test suite. The testing indicated competitive processing time and randomness level of LAES compared to PRESENT. Conclusion: The study demonstrates that LAES achieves comparable results to PRESENT in terms of randomness levels and generally outperform PRESENT in terms of processing time.

show abstract

A systematic review of detection and prevention techniques of SQL injection attacks

Nasereddin

Alkhamaiseh

Qasaimeh

et al. 2021

Information Security Journal: A Global Perspective

View full text Add to dashboard Cite

Extending Extreme Programming User Stories to Meet ISO 9001 Formality Requirements

Qasaimeh¹,

Abran²

2011

JSEA

View full text Add to dashboard Cite

For software organizations needing ISO 9001 certification, including those that have adopted agile methodologies, it is important that their software life cycle processes be able to manage the requirements imposed by this certification standard. However, the user stories in the XP agile methodology do not provide auditors with enough evidence that certain steps and activities have been performed in compliance with ISO 9001. This paper proposes an extension to the user story, based on four sub processes related to the CMMI-DEV model: 1) identification of the source of the user story; 2) categorization of the non functional requirements; 3) identification of the user story relationships; and 4) prioritization of the user stories. These sub processes are aligned with the XP release planning phase, and enhance the ability of user stories to accumulate the information that is mandatory for achieving ISO 9001 certification

show abstract

12 3 4 5 6

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Malik Qasaimeh

Software randomness analysis and evaluation of lightweight ciphers: the prospective for IoT security

An Audit Model for ISO 9001 Traceability Requirements in Agile-XP Environments

Comparing Agile Software Processes Based on the Software Development Project Requirements

Authentication techniques in smart grid: a systematic review

Enhancing Data Protection Provided by VPN Connections over Open WiFi Networks

A Novel Simplified AES Algorithm for Lightweight Real-Time Applications: Testing and Discussion

A systematic review of detection and prevention techniques of SQL injection attacks

Extending Extreme Programming User Stories to Meet ISO 9001 Formality Requirements

Contact Info

Product

Resources

About