A Framework for the Development of Secure Web Software with Agile Methodologies

Authors

  • Gilmer Glicerio Valderrama Herrera Universidad Nacional Mayor de Marcos, Facultad de Ingeniería de Sistemas e Informática. Unidad de Posgrado. Lima, Peru https://orcid.org/0009-0002-7065-9081
  • José Alfredo Herrera Quispe Universidad Nacional Mayor de Marcos, Facultad de Ingeniería de Sistemas e Informática. Lima, Peru

DOI:

https://doi.org/10.15381/rpcs.v6i1.27402

Keywords:

Secure software, Secure Development, Secure Agile Development

Abstract

Software development using the agile approach with SCRUM presents itself as an alternative to traditional methodologies, offering incremental, iterative features and continuous code delivery that ensure a product adaptable to changes. However, this approach faces challenges in terms of secure development, as threats and vulnerabilities may not be adequately addressed due to tight deadlines and frequent changes in requirements. In this context, a framework for secure web software development using Agile Methodologies (SCRUM) is proposed. Based on the literature, eight security activities have been selected for this purpose and integrated into the development process, considering their level of agility and cost-benefit. The validity of this proposal was confirmed through an instrument that gathered the opinions of 45 experts in the software development industry in Peru.

Downloads

Published

2024-06-30

Issue

Vol. 6 No. 1 (2024)

Section

Contribution

License

Copyright (c) 2024 Gilmer Glicerio Valderrama Herrera, José Alfredo Herrera Quispe

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.

THE AUTHORS RETAIN THEIR RIGHTS:

(a) The authors retain their trademark and patent rights, and also over any process or procedure described in the article.

(b) The authors retain the right to share, copy, distribute, execute and publicly communicate the article published in the Revista Peruana de Computación y Sistemas (for example, place it in an institutional repository or publish it in a book), with acknowledgment of its initial publication in Revista Peruana de Computación y Sistemas.

(c) Authors retain the right to make a subsequent publication of their work, to use the article or any part of it (for example: a compilation of their work, lecture notes, thesis, or for a book), provided that they indicate the source. of publication (authors of the work, magazine, volume, number and date).

How to Cite

A Framework for the Development of Secure Web Software with Agile Methodologies. (2024). Revista Peruana De Computación Y Sistemas, 6(1), 47-60. https://doi.org/10.15381/rpcs.v6i1.27402