Practitioners' Perspectives on Security in Agile Development

Bartsch, Steffen

doi:10.1109/ares.2011.82

Cited by 65 publications

(44 citation statements)

References 26 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…There are a few discussions about implementing security in agile models like XP and Scrum [19]- [21].This is the part where the students that have complete their phases in the FDD to voice out their opinion about the weaknesses that they find in the existing FDD model to adapt with security 1) Through your experience in FDD process development, explain briefly weaknesses in FDD modeling. 2) When the lecturer asked you to add security features/elements inside your system, do you think that it slowed down your system development progress?…”

Section: Recommendationsmentioning

confidence: 99%

Developing Secure Websites Using Feature Driven Development (FDD): A Case Study

Firdaus¹,

Ghani²,

Yasin³

2013

JOCET

View full text Add to dashboard Cite

Abstract-Agile processes, like Feature Driven Development (FDD), Scrum and Extreme Programming (XP), have been criticized for not providing a suitable framework for building secure software. In order to find the real-life issues, this case study was initiated to investigate whether the existing FDD can withstand requirements change and software security altogether. The case study was performed in controlled environment -in a course called Application Development-a four credit hours course at UTM. The course began by splitting up the class to seven software development groups and two groups were chosen to implement the existing process of FDD. After students were given an introduction to FDD, they started to adapt the processes to their proposed system. Then students were introduced to the basic concepts on how to make software systems secure. Though, they were still new to security and FDD, however, this study produced a lot of interest among the students. The students seemed to enjoy the challenge of creating secure system using FDD model.

show abstract

Section: Recommendationsmentioning

confidence: 99%

Developing Secure Websites Using Feature Driven Development (FDD): A Case Study

Firdaus¹,

Ghani²,

Yasin³

2013

JOCET

View full text Add to dashboard Cite

show abstract

“…They propose the idea of a security backlog that helps to deal with the security issues in the Scrum methodology. Bartsch presents a report on interviews with practitioners on the effects of agile methods for developing secure software [7]. They also study the implications of security awareness and developer expertise on how security practices are employed.…”

Section: Related Workmentioning

confidence: 99%

“…A survey by Forrester a few years ago showed that more than two thirds of the organizations canvassed either already had a mature implementation of agile methods or were midway in implementing such methods [5]. Even though the agile approach is becoming popular, it is reported to have disadvantages related to secure software development [6,7]. In order to build secure software, security-enhanced processes and practices are needed [23].…”

Section: Introductionmentioning

confidence: 99%

Identification and Evaluation of Security Activities in Agile Projects

2013

View full text Add to dashboard Cite

Abstract.We compare four high-profile waterfall security-engineering processes (CLASP, Microsoft SDL, Cigital Touchpoints and Common Criteria) with the available preconditions within agile processes. Then, using a survey study, agile security activities are identified and evaluated by practitioners from large companies, e.g. software and telecommunication companies. Those activities are compared and a specific security engineering process is suggested for an agile process setting that can provide high benefit with low integration cost.

show abstract

“…However, another case study indicates that sometimes onsite customers could not be consistently available and were not actively involved [120]. However, it has been pointed out that the customer is the only person who knows the business domain well and can decide on the resources, scope, and schedule, and clarify vague complex projects [124], [125].…”

Section: B Customer Involvementmentioning

confidence: 99%

Key Factors for Selecting an Agile Method: A Systematic Literature Review

Alqudah¹,

Razali²

2017

International Journal on Advanced Science, Engineering and Information Technology

View full text Add to dashboard Cite

Abstract-Agile methods have become popular in recent years because the success rate of project development using Agile methods is better than structured design methods. Nevertheless, less than 50 percent of projects implemented using Agile methods are considered successful, and selecting the wrong Agile method is one of the reasons for project failure. Selecting the most appropriate Agile method is a challenging task because there are so many to choose from. In addition, potential adopters believe that migrating to an Agile method involves taking a drastic risk. Therefore, to assist project managers and other decision makers, this study aims to identify the key factors that should be considered when selecting an appropriate Agile method. A systematic literature review was performed to elicit these factors in an unbiased manner, and then content analysis was used to analyze the resultant data. It was found that the nature of the project, development team skills, project constraints, customer involvement and organizational culture are the key factors that should guide decision makers in the selection of an appropriate Agile method based on the value these factors have for different organizations and/or different projects.

show abstract

Practitioners' Perspectives on Security in Agile Development

Cited by 65 publications

References 26 publications

Developing Secure Websites Using Feature Driven Development (FDD): A Case Study

Developing Secure Websites Using Feature Driven Development (FDD): A Case Study

Identification and Evaluation of Security Activities in Agile Projects

Key Factors for Selecting an Agile Method: A Systematic Literature Review

Contact Info

Product

Resources

About