Security planning and refactoring in extreme programming

Authors:
Emine G. Aydal;Richard F. Paige;Howard Chivers;Phillip J. Brooke
Affiliations:
Department of Computer Science, University of York, UK;Department of Computer Science, University of York, UK;Department of Information Systems, Cranfield University, UK;School of Computing, University of Teesside, UK
Venue:
XP'06 Proceedings of the 7th international conference on Extreme Programming and Agile Processes in Software Engineering
Year:
2006

Citing 3
Cited 1

Extreme programming explained: embrace change

Extreme programming explained: embrace change
Towards agile security assurance

NSPW '04 Proceedings of the 2004 workshop on New security paradigms
Agile security using an incremental security architecture

XP'05 Proceedings of the 6th international conference on Extreme Programming and Agile Processes in Software Engineering

Extreme programming security practices

XP'07 Proceedings of the 8th international conference on Agile processes in software engineering and extreme programming

Quantified Score

Hi-index	0.00

Visualization

Abstract

Security is a critical part of systems development, particularly for web-based systems. There is little known about how to effectively integrate security into incremental development processes such as Extreme Programming. This paper presents the results of a project that used Extreme Programming practices and deferred consideration of security until system functionality was complete. The findings suggest that refactorings within incremental development processes are capable of delivering high quality security solutions, and provide insights into how security requirements can be incorporated in the planning game.