Delineation and Elucidation of Security Activities in Agile Software Development

Abstract

Agile programming advancement process is an arrangement of standards utilized for programming improvement. In Agile programming improvement the arrangements develop through coordinated effort between self-sorting out, cross-useful groups using the fitting practices for their unique situation. This paper suggests guidelines that may be followed in agile software development process. We have conducted a survey approximately 500 agile software developers, around the globe, have taken part in it. In survey a questionnaire related to the various security activities to be incorporated during every phase of agile software development were asked. Based on this survey we have accomplished the most compatible and beneficial security activity that can be incorporated during different phases of agile software development. 80% of agile developers voted for the initial education which is the important security activity to be incorporated during Prerequirement phase. Similarly 75% said that security requirements during requirement phase, 95% opted for risk analysis during design phase, 80% said coding rules during implementation phase, 62% said identify, perform and implement security tests in testing phase and 77% said final security review in release phase are to be incorporated during different phases of agile software development. The Proposed work overcomes the issues in agile model and security by giving a quick comprehension of the security activities incorporated during different phases of software development. We have bridge-in, the security gap between traditional waterfall model and in-practice agile development model.