Change search
ReferencesLink to record
Permanent link

Direct link
Identification and evaluation of security activities in agile projects
Blekinge Institute of Technology, School of Computing.
2013 (English)Conference paper (Refereed) Published
Abstract [en]

We compare four high-profile waterfall security-engineering processes (CLASP, Microsoft SDL, Cigital Touchpoints and Common Criteria) with the available preconditions within agile processes. Then, using a survey study, agile security activities are identified and evaluated by practitioners from large companies, e.g. software and telecommunication companies. Those activities are compared and a specific security engineering process is suggested for an agile process setting that can provide high benefit with low integration cost.

Place, publisher, year, edition, pages
Ilulissat, Greenland: Springer , 2013.
Keyword [en]
Agile Process, Software security, Development Process, Security Engineering
National Category
Software Engineering Computer Science
URN: urn:nbn:se:bth-6369DOI: 10.1007/978-3-642-41488-6_10ISI: 000340414300010Local ID: 978-3-642-41487-9OAI: diva2:833867
18th Nordic Conference 2013
Available from: 2015-05-25 Created: 2013-12-03 Last updated: 2015-06-30Bibliographically approved

Open Access in DiVA

fulltext(214 kB)52 downloads
File information
File name FULLTEXT01.pdfFile size 214 kBChecksum SHA-512
Type fulltextMimetype application/pdf

Other links

Publisher's full text

Search in DiVA

By author/editor
Carlsson, Bengt
By organisation
School of Computing
Software EngineeringComputer Science

Search outside of DiVA

GoogleGoogle Scholar
Total: 52 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Altmetric score

Total: 43 hits
ReferencesLink to record
Permanent link

Direct link