Security Engineering and eXtreme Programming: An Impossible Marriage?

  title={Security Engineering and eXtreme Programming: An Impossible Marriage?},
  author={Jaana Nyfjord and Marine Bod{\'e}n and Gustav Bostr{\"o}m},
  booktitle={XP/Agile Universe},
Agile methods, such as eXtreme Programming (XP), have been criticised for being inadequate for the development of secure software. In this paper, we analyse XP from a security engineering standpoint, to assess to what extent the method can be used for development of security critical software. This is done by analysing XP in the light of two security engineering standards; the Systems Security Engineering-Capability Maturity Model (SSE-CMM) and the Common Criteria (CC). The result is that XP is… CONTINUE READING
Highly Cited
This paper has 72 citations. REVIEW CITATIONS
35 Citations
16 References
Similar Papers


Publications citing this paper.
Showing 1-10 of 35 extracted citations

73 Citations

Citations per Year
Semantic Scholar estimates that this publication has 73 citations based on the available data.

See our FAQ for additional information.


Publications referenced by this paper.
Showing 1-10 of 16 references

The Decision is in: Agile versus Heavy Methodologies

  • R. Charette
  • Agile development and Project Management, Cutter…
  • 2004
1 Excerpt

Similar Papers

Loading similar papers…