Security Planning and Refactoring in Extreme Programming: Extreme Programming and Agile Processes in Software Engineering

Emine G. Aydal, Richard F. Paige, Howard Chivers, Phillip J. Brooke, Pekka Abrahamsson (Editor), Michele Marchesi (Editor), Giancarlo Succi (Editor)

Research output: Contribution to journalArticlepeer-review


Security is a critical part of systems development, particularly for web-based systems. There is little known about how to effectively integrate security into incremental development processes such as Extreme Programming. This paper presents the results of a project that used Extreme Programming practices and deferred consideration of security until system functionality was complete. The findings suggest that refactorings within incremental development processes are capable of delivering high quality security solutions, and provide insights into how security requirements can be incorporated in the planning game.
Original languageUndefined/Unknown
Pages (from-to)154-163
JournalLecture Notes in Computer Science
Publication statusPublished - 2006

Cite this