SCOWP: agile methodology for secure web-based software development Online publication date: Fri, 15-Jul-2022
by Augusto De Arco Chiquillo; Paul Sanmartin Mendoza; Adriana Iglesias
International Journal of Agile Systems and Management (IJASM), Vol. 15, No. 1, 2022
Abstract: This paper proposes a methodology called SCOWP that combines the agility of Scrum with risk management (for Web environments) of open web application security project (OWASP). The purpose of SCOWP is to allow the development of an agile software product that meets the established functional requirements, considering the most important risks identified by OWASP. As a result, there will be a web-based software which implements the best security practices as a quality attribute that increases the value of the done product. A pilot development was implemented in a software development company with satisfactory results, furthermore this company formally adopted it as a job methodology.
Existing subscribers:
Go to Inderscience Online Journals to access the Full Text of this article.
If you are not a subscriber and you just want to read the full contents of this article, buy online access here.Complimentary Subscribers, Editors or Members of the Editorial Board of the International Journal of Agile Systems and Management (IJASM):
Login with your Inderscience username and password:
Want to subscribe?
A subscription gives you complete access to all articles in the current issue, as well as to all articles in the previous three years (where applicable). See our Orders page to subscribe.
If you still need assistance, please email subs@inderscience.com