Welcome to the InfoSci Platform
Reference Hub1
Introducing a Novel Security-Enhanced Agile Software Development Process

Introducing a Novel Security-Enhanced Agile Software Development Process

Martin Boldt, Andreas Jacobsson, Dejan Baca, Bengt Carlsson
Copyright: © 2017 |Volume: 8 |Issue: 2 |Pages: 27
ISSN: 1947-3036|EISSN: 1947-3044|EISBN13: 9781522513865|DOI: 10.4018/IJSSE.2017040102
Cite Article Cite Article

MLA

Boldt, Martin, et al. "Introducing a Novel Security-Enhanced Agile Software Development Process." IJSSE vol.8, no.2 2017: pp.26-52. http://doi.org/10.4018/IJSSE.2017040102

APA

Boldt, M., Jacobsson, A., Baca, D., & Carlsson, B. (2017). Introducing a Novel Security-Enhanced Agile Software Development Process. International Journal of Secure Software Engineering (IJSSE), 8(2), 26-52. http://doi.org/10.4018/IJSSE.2017040102

Chicago

Boldt, Martin, et al. "Introducing a Novel Security-Enhanced Agile Software Development Process," International Journal of Secure Software Engineering (IJSSE) 8, no.2: 26-52. http://doi.org/10.4018/IJSSE.2017040102

Export Reference

Mendeley
Favorite Full-Issue Download

Abstract

In this paper, a novel security-enhanced agile software development process, SEAP, is introduced. It has been designed, tested, and implemented at Ericsson AB, specifically in the development of a mobile money transfer system. Two important features of SEAP are 1) that it includes additional security competences, and 2) that it includes the continuous conduction of an integrated risk analysis for identifying potential threats. As a general finding of implementing SEAP in software development, the developers solve a large proportion of the risks in a timely, yet cost-efficient manner. The default agile software development process at Ericsson AB, i.e. where SEAP was not included, required significantly more employee hours spent for every risk identified compared to when integrating SEAP. The default development process left 50.0% of the risks unattended in the software version that was released, while the application of SEAP reduced that figure to 22.5%. Furthermore, SEAP increased the proportion of risks that were corrected from 12.5% to 67.9%, a more than five times increment.

Request Access

You do not own this content. Please login to recommend this title to your institution's librarian or purchase it from the IGI Global bookstore.