Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Agile development with security engineering activities
Responsible organisation
2011 (English)Conference paper, Published paper (Refereed) Published
Abstract [en]

Agile software development has been used by industry to create a more flexible and lean software development process, i.e making it possible to develop software at a faster rate and with more agility during development. There are however concerns that the higher development pace and lack of documentation are creating less secure software. We have therefore looked at three known Security Engineering processes, Microsoft SDL, Cigatel touchpoints and Common Criteria and identified what specific security activities they performed. We then compared these activities with an Agile development process that is used in industry. Developers, from a large telecommunication manufacturer, were interviewed to learn their impressions on using these security activities in an agile development process. We produced a security enhanced Agile development process that we present in this paper. This new Agile process use activities from already established security engineering processes that provide the benefit the developers wanted but did not hinder or obstruct the Agile process in a significant way.

Place, publisher, year, edition, pages
Waikiki: ACM , 2011.
Keywords [en]
agile process, development process, security engineering, software engineering
National Category
Software Engineering
Identifiers
URN: urn:nbn:se:bth-7414DOI: 10.1145/1987875.1987900Local ID: oai:bth.se:forskinfo3E62D8197997B06FC1257974002B25C6ISBN: 978-145030730-7 (print)OAI: oai:DiVA.org:bth-7414DiVA, id: diva2:835023
Conference
International Conference on Software and Systems Process, ICSSP
Available from: 2012-09-18 Created: 2011-12-28 Last updated: 2018-01-11Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full text

Authority records

Carlsson, Bengt

Search in DiVA

By author/editor
Carlsson, Bengt
Software Engineering

Search outside of DiVA

GoogleGoogle Scholar

doi
isbn
urn-nbn

Altmetric score

doi
isbn
urn-nbn
Total: 329 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf