An Empirical Approach for Security Enhancement in Agile Development at Process Level using Fuzzy Logic
Main Article Content
Abstract
In recent times agile software development has evolved world widely with a huge impact. The major advantage of agile development is a faster development time with flexible structure that helps handling rapid changes to new requirements easily than the more rigid older processes. Although the agile approach is becoming popular, but it is reported to have certain disadvantages related to secure software development. For building a secure software, there is a need for security enhanced processes and practices. The growing trend towards using agile methods for developing the software and increase in security breaches over the last few years has concluded that it becomes essential to integrate existing high profile security engineering processes with agile processes. This paper is addressing this huge concern of security requirements for projects using agile development approach. It provides a framework to introduce security at process level with the help of fuzzy logic. This framework is implemented in Java language with user friendly graphical user interface. It uses a lightweight approach to add the security features by integrating security activities from Security engineering processes that too without compromising the agility of agile process.
Downloads
Download data is not yet available.
Article Details
Section
Articles
COPYRIGHT
Submission of a manuscript implies: that the work described has not been published before, that it is not under consideration for publication elsewhere; that if and when the manuscript is accepted for publication, the authors agree to automatic transfer of the copyright to the publisher.
Authors who publish with this journal agree to the following terms:
- Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgment of the work's authorship and initial publication in this journal.
- Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgment of its initial publication in this journal.
- Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work
- The journal allows the author(s) to retain publishing rights without restrictions.
- The journal allows the author(s) to hold the copyright without restrictions.