Document Type

Article

Publication Date

2019

Abstract

Given the widespread adoption of agile methods and the rising number of software vulnerabilities, we analyze the literature with an interest in the effect of security practices on software development agility. We propose a novel taxonomy to systematize the body of knowledge around secure agile development and then organize and summarize the selected research using the new taxonomy. At a high-level we create two categories, Phase Focused and Phase Independent. The Phase Focused category is then subdivided along the traditional SDLC phases. The Phase Independent category spans all phases of the SDLC or is phase independent. We conclude that, although there is a significant body of literature on the topic, the story is unfinished. There is further investigation needed to ensure agility as secure development practices are adopted and in regard to empirical evaluations of the proposed agile and secure software development integration approaches.

Recommended Citation

Bishop, D., & Rowland, P. (2019). Agile and secure software development: An unfinished story. Issues in Information Systems, 20(1).

Download

COinS

Faculty Research & Publications

AGILE AND SECURE SOFTWARE DEVELOPMENT: AN UNFINISHED STORY

Document Type

Publication Date

Abstract

Recommended Citation

Browse

Search

Author Corner

Links

Faculty Research & Publications

AGILE AND SECURE SOFTWARE DEVELOPMENT: AN UNFINISHED STORY

Authors

Document Type

Publication Date

Abstract

Recommended Citation

Share

Browse

Search

Author Corner

Links