Web Security In Agile – Risk Analysis and Mitigation
Web Security In Agile – Risk Analysis and Mitigation
Author(s): Meenakshi SwamySubject(s): ICT Information and Communications Technologies
Published by: Нов български университет
Keywords: Software Security; Risk Analysis;
Summary/Abstract: In recent years Agile Software Development Methods have become increasingly popular among members of software development community. Successful Agile teams produce high quality code cost effectively, deliver the product in less time with increased customer satisfaction and exhibit good team – management coordination in delivering the software. With a view to reap benefits of Agile, many IT organizations are currently in the phase of investing time and resource in transitioning to Agile for their software development. By adopting Agile many successful teams have proved that this is the right approach for their software development to produce high quality software. Taking a closer look into the security aspect of the software delivered by Agile Teams reveal that integrating security into the product during development is not considered by many teams. In today’s world, even large organizations find it difficult to produce secure software due to increased security threats. One of the main reasons for this could be attributed to the technical advancement of hackers to successfully launch attacks by exploiting security vulnerability. Regardless of software development methodology practiced, securing a web application against the most common vulnerabilities should be taken into consideration during product development to assure minimal required security for the software and protect it against easy exploitation. In this paper we will analyze security of web software developed by small and medium sized organizations practicing Agile. The focus of this paper is on a simple secure approach to easily integrate security into an existing agile methodology practiced by the organization to produce secure software, thereby establishing a security discipline for agile teams. Further, the paper also discusses some security best practices and secure coding techniques that could be adopted by agile development teams to protect applications against commonly identified security threats.
Journal: Computer Science and Education in Computer Science
- Issue Year: 9/2013
- Issue No: 1
- Page Range: 1-10
- Page Count: 10
- Language: English