Building Secure Software Using XP
نویسنده
چکیده
Security is an important and challenging aspect that needs to be considered at an early stage during software development. Traditional software development methodologies do not deal with security issues and so there is no structured guidance for security design and development; security is usually an afterthought activity. This paper discusses the integration of XP with security activities based on the CLASP (Comprehensive Lightweight Application Security Process) methodology. This integration will help developers using XP develop secure software by applying security measures in all phases and activities, thereby minimizing the security vulnerabilities exploited by attackers.
منابع مشابه
Secure Software Development Model
--Extreme programming (XP) is a modern approach for iterative development of software in which you never wait for the complete requirements and start development. Security is usually unnoticed during early phases of software life cycle. In this paper, our main objective is to focus on security requirements at each phase of software life cycle. In this regard, XP is a key solution that provides ...
متن کاملSecurity Engineering and eXtreme Programming: An Impossible Marriage?
Agile methods, such as eXtreme Programming (XP), have been criticised for being inadequate for the development of secure software. In this paper, we analyse XP from a security engineering standpoint, to assess to what extent the method can be used for development of security critical software. This is done by analysing XP in the light of two security engineering standards; the Systems Security ...
متن کاملA Review on Software Development Security Engineering using Dynamic System Method (DSDM)
Agile methodology such as Scrum, Extreme Programming (XP), Feature Driven Development (FDD) and the Dynamic System Development Method (DSDM) have gained enough recognition as efficient development process by delivering software fast even under the time constrains. However, like other agile methods DSDM has been criticized because of unavailability of security element in its four phases. In orde...
متن کاملUsing XP to develop a CRM framework
This paper describes our experiences with using XP practices within the EU-project CARUSO. The objective of CARUSO is the development of a framework for building customized Customer Relationship Management (CRM) applications. Originally, the project was planned with a traditional software development process in mind with a first prototype for evaluation by the customer and a second prototype bu...
متن کاملWeb Publishing: An Extreme, Agile Experience
The proponents of agile methodologies suggest that many of the inhibitors to system development methodology adoption have largely been addressed in the underlying principles of agile methods. This paper reports the experience of a small team developing Web publishing software tools for use in building Web sites for online delivery of tertiary education study materials. These early adopters succ...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
- IJSSE
دوره 2 شماره
صفحات -
تاریخ انتشار 2011