 Agile Development of Secure Web-Based ApplicationsA. F. Tappenden,
T. Huynh,
J. Miller,
A. Geras and
M. Smith
International Journal of Information Technology and Web Engineering (IJITWE), 2006, vol. 1, issue 2, 1-24 Abstract: This article outlines a four-point strategy for the development of secure Web-based applications within an agile development framework and introduces strategies to mitigate security risks commonly present in Web-based applications. The proposed strategy includes the representation of security requirements as test cases supported by the open source tool FIT, the deployment of a highly testable architecture allowing for security testing of the application at all levels, the outlining of an extensive security testing strategy supported by the open source unit-testing framework HTTPUnit, and the introduction of the novel technique of security refactoring that transforms insecure working code into a functionally equivalent secure code. Today, many Web-based applications are not secure, and limited literature exists concerning the use of agile methods within this domain. It is the intention of this article to further discussions and research regarding the use of an agile methodology for the development of secure Web-based applications. Date: 2006 Downloads: (external link) Related works: Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text Persistent link: https://EconPapers.repec.org/RePEc:igg:jitwe0:v:1:y:2006:i:2:p:1-24 Access Statistics for this article International Journal of Information Technology and Web Engineering (IJITWE) is currently edited by Ghazi I. Alkhatib More articles in International Journal of Information Technology and Web Engineering (IJITWE) from IGI Global |
Is your work missing from RePEc? Here is how to contribute.
Questions or problems? Check the EconPapers FAQ or send mail to .
EconPapers is hosted by the
School of Business at Örebro University.