This event has ended. Visit the official site or create your own event on Sched.
Back To Schedule
Wednesday, May 24 • 12:00 - 12:30
How Is Security Testing Done in Agile Teams? A Cross-Case Analysis of Four Software Teams.

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Security testing can broadly be described as (1) the testing of security requirements that concerns confidentiality, integrity, availability, authentication, authorization, nonrepudiation and (2) the testing of the software to validate how much it can withstand an attack. Continuous agile testing, involves immediately integrating changes into the main system, continuously testing all changes and updating test cases to be able to run a regression test at any time to verify that changes have not broken existing functionality. Software companies have a challenge to systematically apply security testing in their processes nowadays. There is a lack of guidelines in practice as well as empirical studies in real-world projects on agile security testing; industry in general needs a more systematic approach to security. The main contribution of this paper is to deepen relevant knowledge and experience on the characterization security testing in an agile context. We related our synthesized findings to relevant literature in security testing in order to sketch state-of-practice on security agile testing and provide recommendations of ways to improve it based on lessons learned/ good practices from the cases.

Daniela S. Cruzes, Michael Felderer, Tosin Daniel Oyetoyan, Matthias Gander and Irdin Pekaric

avatar for Tosin Daniel Oyetoyan

Tosin Daniel Oyetoyan

Tosin Daniel Oyetoyan is a post-doctoral fellow at SINTEF. He received his PhD from NTNU. He has previously worked as a senior software developer and analyst in the banking sector and has developed solutions for both healthcare and automation systems. His research interests are in... Read More →

Wednesday May 24, 2017 12:00 - 12:30 CEST
Ballroom C 1st Floor