Agile Development of Secure Web-Based Applications

doi:10.4018/jitwe.2006040101

Reference Hub

This research has been cited in:

Article
Identifying Key Activities, Artifacts and Roles in Agile Engineering of Secure Software with Hierarchical ClusteringApplied Sciences10.3390/app13074563
Conference
A Three-Tiered Testing Strategy for Cookies2008 International Conference on Software Testing, Verification, and Validation10.1109/ICST.2008.18
Article
CookiesACM Transactions on the Web10.1145/1541822.1541824
Article
Agile Development of Secure Software for Small and Medium-Sized EnterprisesSustainability10.3390/su15010801
Article
AIWASInternational Journal of Systems and Service-Oriented Engineering10.4018/jssoe.2012010105

Agile Development of Secure Web-Based Applications

A. F. Tappenden, T. Huynh, J. Miller, A. Geras, M. Smith

Source Title: International Journal of Information Technology and Web Engineering (IJITWE)1(2)

Cite Article Cite Article

MLA

Tappenden, A. F., et al. "Agile Development of Secure Web-Based Applications." IJITWE vol.1, no.2 2006: pp.1-24. http://doi.org/10.4018/jitwe.2006040101

APA

Tappenden, A. F., Huynh, T., Miller, J., Geras, A., & Smith, M. (2006). Agile Development of Secure Web-Based Applications. International Journal of Information Technology and Web Engineering (IJITWE), 1(2), 1-24. http://doi.org/10.4018/jitwe.2006040101

Chicago

Tappenden, A. F., et al. "Agile Development of Secure Web-Based Applications," International Journal of Information Technology and Web Engineering (IJITWE) 1, no.2: 1-24. http://doi.org/10.4018/jitwe.2006040101

Export Reference

Favorite Full-Issue Download

View Full Text PDF

Abstract

This article outlines a four-point strategy for the development of secure Web-based applications within an agile development framework and introduces strategies to mitigate security risks commonly present in Web-based applications. The proposed strategy includes the representation of security requirements as test cases supported by the open source tool FIT, the deployment of a highly testable architecture allowing for security testing of the application at all levels, the outlining of an extensive security testing strategy supported by the open source unit-testing framework HTTPUnit, and the introduction of the novel technique of security refactoring that transforms insecure working code into a functionally equivalent secure code. Today, many Web-based applications are not secure, and limited literature exists concerning the use of agile methods within this domain. It is the intention of this article to further discussions and research regarding the use of an agile methodology for the development of secure Web-based applications.

You do not own this content. Please login to recommend this title to your institution's librarian or purchase it from the IGI Global bookstore.

Username or email: *

Password: *

Forgot individual login password?

Create individual account

Agile Development of Secure Web-Based Applications

MLA

APA

Chicago

Export Reference

Abstract

Request Access