Abstract

This article outlines a four-point strategy for the development of secure Web-based applications within an agile development framework and introduces strategies to mitigate security risks commonly present in Web-based applications. The proposed strategy includes the representation of security requirements as test cases supported by the open source tool FIT, the deployment of a highly testable architecture allowing for security testing of the application at all levels, the outlining of an extensive security testing strategy supported by the open source unit-testing framework HTTPUnit, and the introduction of the novel technique of security refactoring that transforms insecure working code into a functionally equivalent secure code. Today, many Web-based applications are not secure, and limited literature exists concerning the use of agile methods within this domain. It is the intention of this article to further discussions and research regarding the use of an agile methodology for the development of secure Web-based applications.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Agile Development of Secure Web-Based Applications
A F Tappenden ... M Smith
-
A F Tappenden, et. al.A F Tappenden ... M Smith
01 Jan 2009
The Turkish Version of Web-Based Learning Platform Evaluation Scale: Reliability and Validity Study
Educational Sciences: Theory & Practice | VOL. 16
01 Jan 2015
Web Engineering: Introduction and Perspectives
-
-
--
01 Jan 2001
A novel lifecycle model for Web-based application development in small and medium enterprises
Wei Huang ... David Foskett
International Journal of Automation and Computing | VOL. 7
Wei Huang, et. al.Wei Huang ... David Foskett
01 Aug 2010
View more papers

More From: International Journal of Information Technology and Web Engineering

Paper Title
Journal
Date
Author
An Equation Model on the Professional Knowledge and Confidence for Future Employment of Students in Programs Supported With Emerging Technologies
Xifeng Liao
International Journal of Information Technology and Web Engineering | VOL. 19
Xifeng LiaoXifeng Liao
26 Oct 2024
Securities Quantitative Trading Strategy Based on Deep Learning of Industrial Internet of Things
Yi Tang ... Wenyan Wang
International Journal of Information Technology and Web Engineering | VOL. 19
Yi Tang, et. al.Yi Tang ... Wenyan Wang
19 Jul 2024
Marketing Strategy of Private Enterprises Based on Bayesian Dynamic Panel Model of Machine Learning Algorithms
Siyu Sun ... Juan Long
International Journal of Information Technology and Web Engineering | VOL. 19
Siyu Sun, et. al.Siyu Sun ... Juan Long
30 May 2024
Multimedia Human-Computer Interaction Method in Video Animation Based on Artificial Intelligence Technology
Linran Sun ... Nojun Kwak
International Journal of Information Technology and Web Engineering | VOL. 19
Linran Sun, et. al.Linran Sun ... Nojun Kwak
24 May 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.