• DocumentCode
    1833043
  • Title

    Practitioners´ Perspectives on Security in Agile Development

  • Author

    Bartsch, Steffen

  • Author_Institution
    TZI, Univ. Bremen, Bremen, Germany
  • fYear
    2011
  • fDate
    22-26 Aug. 2011
  • Firstpage
    479
  • Lastpage
    484
  • Abstract
    Agile methods are widely employed to develop high-quality software, but theoretical analyses argue that agile methods are inadequate for security-critical projects. However, most agile-developed software today needs to satisfy baseline security requirements, so that we need to focus on how to achieve this this level for typical agile projects. In this paper, we provide insights from the practitioner´s perspective on security in agile development and report on exploratory, qualitative findings from interviews. Our findings extend the theoretical prior work and suggest to focus on adequate customer involvement, developer security awareness and expertise, and continuously improving the development process for security.
  • Keywords
    safety-critical software; security of data; software prototyping; software quality; agile development security; baseline security requirements; customer involvement; high-quality software; security awareness; security-critical projects; Companies; Context; Documentation; Interviews; Programming; Security; Software; Agile development; Developer awareness; Empirical study; Secure software development; Security requirements;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Availability, Reliability and Security (ARES), 2011 Sixth International Conference on
  • Conference_Location
    Vienna
  • Print_ISBN
    978-1-4577-0979-1
  • Electronic_ISBN
    978-0-7695-4485-4
  • Type

    conf

  • DOI
    10.1109/ARES.2011.82
  • Filename
    6046004
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=1833043