Security Compliance in Agile Software Development: A Systematic Mapping Study

Fabiola Moyon, Pamela Almeida, Daniel Riofrio, Daniel Mendez, Marcos Kalinowski

Producción científica: Capítulo del libro/informe/acta de congresoContribución a la conferenciarevisión exhaustiva

6 Citas (Scopus)

Resumen

Companies adopting agile development tend to face challenges in complying with security norms. Existing research either focuses on how to integrate security into agile methods or on discussing compliance issues of agile methods but independently of the regulation type, in particular of security standards. A comprehensive overview of this scattered field is still missing and we know little about how to achieve security compliance in agile software development. Existing secondary studies (mapping studies and literature reviews) analyze publications on secure agile development, but they do not analyze implications of security standard compliance, e.g., integration of specific standard requirements or compliance assessments. To close this gap, we report on a systematic mapping study. Starting with a set of 2,383 papers, our work distills 11 relevant publications addressing security compliance in agile software development. With this study, we contribute by describing the maturity of the field, as well as domains where security compliant agile software engineering was investigated. Moreover, we make explicit which phases of a secure development process are covered by the field and which agile principles are analyzed when aiming at compliance with international security standards, country-specific security regulations, industry-specific security standards, and other well-known security frameworks.

Idioma originalInglés
Título de la publicación alojadaProceedings - 46th Euromicro Conference on Software Engineering and Advanced Applications, SEAA 2020
EditoresAntonio Martini, Manuel Wimmer, Amund Skavhaug
EditorialInstitute of Electrical and Electronics Engineers Inc.
Páginas413-420
Número de páginas8
ISBN (versión digital)9781728195322
DOI
EstadoPublicada - ago. 2020
Evento46th Euromicro Conference on Software Engineering and Advanced Applications, SEAA 2020 - Kranj, Eslovenia
Duración: 26 ago. 202028 ago. 2020

Serie de la publicación

NombreProceedings - 46th Euromicro Conference on Software Engineering and Advanced Applications, SEAA 2020

Conferencia

Conferencia46th Euromicro Conference on Software Engineering and Advanced Applications, SEAA 2020
País/TerritorioEslovenia
CiudadKranj
Período26/08/2028/08/20

Huella

Profundice en los temas de investigación de 'Security Compliance in Agile Software Development: A Systematic Mapping Study'. En conjunto forman una huella única.

Citar esto