An Integrated Framework for Security Enhancement in Agile Development using Fuzzy Logic
نویسنده
چکیده
Agile methods are widely employed to develop high-quality software, but theoretical analyses argue that agile methods are inadequate for security-critical projects. However, most agiledeveloped software today needs to satisfy baseline security requirements, so that we need to focus on how to achieve this level for typical agile projects. Software grows up through its life cycle, so software development methodologies should pay special attention to security aspects of the product. This paper addresses the major concern of security requirements of projects using an agile approach. It provides an integrated framework developed in Java which uses a lightweight method to enhance the security features by integrating security activities from Security engineering processes without compromising the agility in the agile approach.
منابع مشابه
An integrated fuzzy multiple objective decision framework to optimal fulfillment of engineering characteristics in quality function development
Quality function development (QFD) is a planning tools used to fulfill customer expectation and QFD is a systematic process to translating customer requirement (WHATs) into technical description (HOWs). QFD aims to maximize customer satisfactions related to enterprise satisfaction. The inherent fuzziness of relationships in QFD modeling justifies the use of fuzzy regression for estimating the r...
متن کاملAn integrated fuzzy multiple objective decision framework to optimal fulfillment of engineering characteristics in quality function development
Quality function development (QFD) is a planning tools used to fulfill customer expectation and QFD is a systematic process to translating customer requirement (WHATs) into technical description (HOWs). QFD aims to maximize customer satisfactions related to enterprise satisfaction. The inherent fuzziness of relationships in QFD modeling justifies the use of fuzzy regression for estimating the r...
متن کاملFuzzy Logic Approach for Threat Prioritization in Agile Security Framework using DREAD Model
For a qualitative system sound security practices must be a crucial part throughout the entire software lifecycle. Furthermore, agile software development has paved the way for overcoming the problems faced by developers during traditional development process. In the given paper we are using an Agile Security Framework that is compatible with practices of agile processes and inherit in it the b...
متن کاملAGILITY EVALUATION IN PUBLIC SECTOR USING FUZZY LOGIC
Agility metrics are difficult to define in general, mainly due to the multidimensionality and vagueness of the concept of agility itself. In this paper, a knowledge-based framework is proposed for the measurement and assessment of public sector agility using the A.T.Kearney model. Fuzzy logic provides a useful tool for dealing with decisions in which the phenomena are imprecise and vague. In th...
متن کاملSupply chain leagility using an integrated AHP-Fuzzy-QFD approach
Abstract Nowadays supply chain management has become one of the powerful business concepts for organizations to gain a competitive advantage in global market. This is the reason that now competition between the firms has been replaced by competitiveness among the supply chains. Moreover, the popular literature dealing with supply chain is replete with discussions of leanness and agility. Agile ...
متن کامل