OOPSLA 2006

program registration submissions committee lodging portland

OOPSLA by Topic

Navigate the schedule
Conference Schedule

OOPSLA Program
General Chair′s Message Conference Schedule Week at a Glance Receptions and Special Events The OOPSLA Wiki

OOPSLA Venues
Awards Birds of a Feather (BoF) Demonstrations DesignFest Doctoral Symposium Dynamic Languages Symposium Essays Invited Speakers Lightning Talks Onward! Panels Posters Practitioner Reports Receptions and Special Events Research Papers Student Research Competition Tutorials Workshops

Towards Agile Security in Web Applications

In this paper, we present an approach that we have used to address security when running projects according to agile principles. Misuse stories have been added to user stories to capture malicious use of the application. Furthermore, misuse stories have been implemented as automated tests (unit tests, acceptance tests) in order to perform security regression testing. Penetration testing, system hardening and securing deployment have been started in early iterations of the project.

Vidar Kongsli, Bekk Consulting AS

Related Onward! Papers
Intentional Software Keeping Track of Crosscutting Requirements in UML Models via Context-Based Constraints

Related Panels
The Convergence of XP and SCRUM The Ultra Challenge: Software Systems Beyond Big Young Guns/OO: The Next Generation

Related Practitioner Reports

Related Research Papers

Related Tutorials

Related Workshops
GPCE WS1: First Workshop on Aspect-Oriented Product Line Engineering (AOPLE) W04: 1st Workshop on Model-Based Testing and Object-Oriented Systems (M-TOOS) W07: Fifth "Killer Examples" for Design Patterns Workshop W09: Creating an Informative Workspace W11: From Embedded to Enterprise: How to Get Application Portability

While Space Available
Lightning Talks

Search