Abstract
Scrum is one of the most popular and efficient agile development methods. However, like other agile methods such as Extreme Programming (XP), Feature Driven Development (FDD), and the Dynamic Systems Development Method (DSDM), Scrum has been criticized because of lack of support to develop secure software. Thus, in 2011, we published research proposing the idea of a security backlog (SB). This paper represents the continuation of our previous research, with a focus on the evaluation in industry-based case study. Our findings highlight an improved agility in Scrum after the integration of SB. Furthermore, secure software can be developed quickly, even in situations involving requirement changes of software. Based on our experimental findings, we noticed that, when integrating SB, it is quite feasible to develop secure software using an agile Scrum model. © 2014 KSII.
Author supplied keywords
Cite
CITATION STYLE
Ghani, I., Azham, Z., & Jeong, S. R. (2014). Integrating software security into agile-Scrum method. KSII Transactions on Internet and Information Systems, 8(2), 646–663. https://doi.org/10.3837/tiis.2014.02.019
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
