Security Practices in Agile Software Development

被引:0
|
作者
Selva-Mora, Alejandra [1 ]
Quesada-Lopez, Christian [2 ]
机构
[1] Univ Costa Rica, Graduated Sch Comp Sci & Informat, San Jose, Costa Rica
[2] Univ Costa Rica, Sch Comp Sci & Informat, San Jose, Costa Rica
来源
PROCEEDINGS 2024 IEEE/ACM INTERNATIONAL WORKSHOP ON SOFTWARE-INTENSIVE BUSINESS, IWSIB 2024 | 2024年
关键词
Agile software development; security practices; benefits; challenges; mapping study;
D O I
10.1145/3643690.3648241
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
Agile software development, widely embraced for its rapid response to organizational needs, faces challenges in seamlessly integrating security practices. Despite its success in delivering prioritized functionalities, there remain difficulties in meeting nonfunctional requirements, particularly security, making the alignment of security practices with agility a complex endeavor. This study conducts a mapping of 252 security practices identified from 35 primary studies, categorizing them into the Building Security In Maturity Model (BSIMM) and stages of the software development life cycle. Additionally, it identifies 38 benefits, emphasizing security awareness, implementation, and alignment with agility, alongside 95 challenges linked to knowledge gaps and complexity. The findings underscore ongoing efforts to integrate security practices in Agile environments, underscoring the importance of empirical evaluation and emphasizing the need to assess the actual benefits of proposed security practices in real world Agile software development.
引用
收藏
页码:56 / 63
页数:8
相关论文
共 50 条
  • [41] Improving agile software development by the application of method engineering practices
    Henderson-Sellers, B.
    Serour, M. K.
    Gonzalez-Perez, C.
    Qumer, A.
    PROCEEDINGS OF THE IASTED INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING, 2007, : 55 - +
  • [42] Lessons Learned on Communication Channels and Practices in Agile Software Development
    Ahmad, Muhammad Ovais
    Lenarduzzi, Valentina
    Oivo, Markku
    Taibi, Davide
    PROCEEDINGS OF THE 2018 FEDERATED CONFERENCE ON COMPUTER SCIENCE AND INFORMATION SYSTEMS (FEDCSIS), 2018, : 929 - 938
  • [43] An evolutionary lifecycle model with Agile practices for software development at ABB
    Dagnino, A
    EIGHTH IEEE INTERNATIONAL CONFERENCE ON ENGINEERING OF COMPLEX COMPUTER SYSTEMS, PROCEEDINGS, 2002, : 215 - 223
  • [44] Agile software development: Adaptive systems principles and best practices
    Meso, Peter
    Jain, Radhika
    INFORMATION SYSTEMS MANAGEMENT, 2006, 23 (03) : 19 - 30
  • [45] Systematic literature review on agile practices in global software development
    Vallon, Raoul
    da Silva Estacio, Bernardo Jose
    Prikladnicki, Rafael
    Grechenig, Thomas
    INFORMATION AND SOFTWARE TECHNOLOGY, 2018, 96 : 161 - 180
  • [46] Agile Practices, Collaboration and Experience An Empirical Study About the Effect of Experience in Agile Software Development
    Kropp, Martin
    Meier, Andreas
    Biddle, Robert
    PRODUCT-FOCUSED SOFTWARE PROCESS IMPROVEMENT (PROFES 2016), 2016, 10027 : 416 - 431
  • [47] Agile Requirements Engineering Practices: A Survey in Brazilian Software Development Companies
    Barata, Juan Carlos
    Lisboa, Diego
    Bastos, Laudelino Cordeiro
    Neto, Adolfo
    AGILE METHODS, WBMA 2021, 2023, 1642 : 110 - 119
  • [48] Ruler for Effective Cost Management Practices in Agile Software Development Projects
    Mansor, Zulkefli
    Arshad, Noor Habibah
    Yahya, Saadiah
    Razali, Rozilawati
    Yahaya, Jamaiah
    ADVANCED SCIENCE LETTERS, 2016, 22 (08) : 1977 - 1980
  • [49] Threat Poker: Solving Security and Privacy Threats in Agile Software Development
    Rygge, Hanne
    Josang, Audun
    SECURE IT SYSTEMS, 2018, 11252 : 468 - 483
  • [50] Supplementing Agile Practices with Decision Support Methods for Military Software Development
    Benedicenti, Luigi
    PROCEEDINGS OF 4TH INTERNATIONAL CONFERENCE IN SOFTWARE ENGINEERING FOR DEFENCE APPLICATIONS, SEDA 2015, 2016, 422 : 113 - 121
12345