Dr. Drew Hwang, CIS, Cal Poly Pomona
Home
101
WDD
ECOMM
SWA
SP
Secure Web Development
Home
Basics
Offense
Defense
SDLC
Code
Access
Parameter
Perimeter
Browser
Industry
Resource
SDLC
Microsoft SDL
Agile Development
Best Practice
Requirement Elicitation
Static Analysis
Dynamic Analysis
Online Stores Case
System Goals
System Architecture
Framework
References
Print
Agile Development of Secure Web Applications
The development of Web applications is often different from the development of traditional information systems in that:
Many Web applications are typically smaller.
The production period of Web applications is shorter.
Web applications evolve faster.
The development life cycle is more iterative and adaptive.
Therefore, agile development methodologies are increasingly being used for the development of Web applications.
As a movement towards light-weight software development, agile software development refers to a group of
software development methodologies
based on the
Agile Manifesto
which values:
individuals and interactions over processes and tools
working software over comprehensive documentation
customer collaboration over contract negotiation
responding to change over following a plan
Agile development of secure Web applications involves employing the same values that drive agile software engineering to the traditional practice of mitigating security risks in software.
References
Tappenden, A. F., Huynh, T., Miller, J., Geras, A., & Smith, A. (2006). Agile Development of Secure Web-Based Applications.
Int. J. of Information Technology and Web Engineering
, 1(2), 1-24.