Secure Software Engineering for Agile Methodology: Preliminary Investigation
Secure Software Engineering for Agile Methodology: Preliminary Investigation
Author : LUTHFI RAMADANI; NUR ICHSAN UTAMA Published on : The Second International Conference on Computing Technology and Information Management (ICCTIM2015)
Abstract
Secure engineering is relatively more popular for software development methodologies which use standard SDLC such as waterfall, prototyping, etc. However, for agile methodologies (such as extreme programming, scrum, etc.), the adoption of secure engineering is still a debate among academics and practitioners since it potentially alter the nature of agile. This paper tries to investigate farthest works of the adaptation of secure engineering to agile methods, and to compile best propositions on how to conduct agile software development by still adhering security principles. From the review, addition/recruitment of security engineer into team is the most appreciated, while the modification of agile methodology and project management is not really favored by practitioners. This paper will be a starting point of further study to fill research/knowledge gap which is provided in this paper. Keywords???software engineering, agile methodology, secure software