Matthias Gander scite author profile

Matthias Gander

5Publications

73Citation Statements Received

229Citation Statements Given

How they've been cited

How they cite others

264

229

Affiliations

Physikalisch-Meteorologisches Observatorium Davos, Universität Innsbruck, Czech Academy of Sciences, Institute of Computer Science

Publications

Order By: Most citations

How is Security Testing Done in Agile Teams? A Cross-Case Analysis of Four Software Teams

Cruzes

Felderer

Oyetoyan

et al. 2017

View full text Add to dashboard Cite

Abstract. Security testing can broadly be described as (1) the testing of security requirements that concerns confidentiality, integrity, availability, authentication, authorization, nonrepudiation and (2) the testing of the software to validate how much it can withstand an attack. Agile testing involves immediately integrating changes into the main system, continuously testing all changes and updating test cases to be able to run a regression test at any time to verify that changes have not broken existing functionality. Software companies have a challenge to systematically apply security testing in their processes nowadays. There is a lack of guidelines in practice as well as empirical studies in real-world projects on agile security testing; industry in general needs a more systematic approach to security. The findings of this research are not surprising, but at the same time are alarming. The lack of knowledge on security by agile teams in general, the large dependency on incidental pen-testers, and the ignorance in static testing for security are indicators that security testing is highly under addressed and that more efforts should be addressed to security testing in agile teams.

show abstract

Anomaly Detection in the Cloud: Detecting Security Incidents via Machine Learning

Gander

Felderer

Katt

et al. 2013

View full text Add to dashboard Cite

The Fengyun-3E/Joint Total Solar Irradiance Absolute Radiometer: Instrument Design, Characterization, and Calibration

Song

Finsterle

et al. 2021

Sol Phys

View full text Add to dashboard Cite

Enhancing Model Driven Security through Pattern Refinement Techniques

Katt

Gander

Breu

et al. 2013

View full text Add to dashboard Cite

Evolution of Security Engineering Artifacts

Felderer

Katt

Kalb

et al. 2014

View full text Add to dashboard Cite

Security is an important quality aspect of modern open software systems. However, it is challenging to keep such systems secure because of evolution. Security evolution can only be managed adequately if it is considered for all artifacts throughout the software development lifecycle. This article provides state of the art on the evolution of security engineering artifacts. The article covers the state of the art on evolution of security requirements, security architectures, secure code, security tests, security models, and security risks as well as security monitoring. For each of these artifacts the authors give an overview of evolution and security aspects and discuss the state of the art on its security evolution in detail. Based on this comprehensive survey, they summarize key issues and discuss directions of future research.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Matthias Gander

How is Security Testing Done in Agile Teams? A Cross-Case Analysis of Four Software Teams

Anomaly Detection in the Cloud: Detecting Security Incidents via Machine Learning

The Fengyun-3E/Joint Total Solar Irradiance Absolute Radiometer: Instrument Design, Characterization, and Calibration

Enhancing Model Driven Security through Pattern Refinement Techniques

Evolution of Security Engineering Artifacts

Contact Info

Product

Resources

About