Secure Feature Driven Development (SFDD) Model for Secure Software Development

Firdaus, Adila; Ghani, Imran; Jeong, Seung Ryul

doi:10.1016/j.sbspro.2014.03.712

Cited by 25 publications

(22 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…The feature is defined by using action, result and object. Authors in [5] proposed Secure Feature Driven Development (SFDD), an enhanced version of FDD which introduced some changes in classical FDD to cover security related issues. The proposed model introduced two phases in classical FDD named "Build security by feature" and "Test security by feature" along with the "In-phase Security" element in each phase.…”

Section: Related Workmentioning

confidence: 99%

Empirical Evaluation of Modified Agile Models

Aftab¹,

Nawaz²,

Anwer³

et al. 2018

ijacsa

View full text Add to dashboard Cite

Empirical evaluation is one of the widely accepted validation method in the domain of software engineering which investigates the proposed technique via practical experience and reflects its benefits and limitations. Due to various advantages, agile models have been taking over the conventional software development methodologies since last two decades. However besides the benefits, various limitations have been noticed as well by the researchers and software industry in agile family. To achieve the maximum benefits it is vital to fix the limitations by customizing the development structure of agile models. This paper deals with the empirical analysis of modified agile models called Simplified Extreme Programing (SXP) and Simplified Feature Driven Development (SFDD), which are the modified forms of Extreme Programing (XP) and Feature Driven Development (FDD). SXP was presented to eliminate the issues of conventional XP such as, lack of documentation, poor architectural structure and less focus on design. SFDD was proposed to take care of reported issues in FDD such as explicit dependency on experienced staff, little or no guidance for requirement gathering, rigid nature to accommodate requirement changes and heavy development structure. This study evaluates SXP and SFDD through implementing client oriented projects and discusses the results with empirical analysis.

show abstract

Section: Related Workmentioning

confidence: 99%

Empirical Evaluation of Modified Agile Models

Aftab¹,

Nawaz²,

Anwer³

et al. 2018

ijacsa

View full text Add to dashboard Cite

show abstract

“…It is a hybrid process model that integrated the practices from Extreme Programming and Feature Driven Requirement Reuse Development (FDRD). FDRD is an enhanced version of FDD presented in [16]. Authors claimed that CDD is a self-realizing requirement generation model.…”

Section: Related Workmentioning

confidence: 99%

“…Firdaus et al [16] proposed an enhanced version of FDD called Secure Feature Driven Development (SFDD) for the purpose of secure software development. This model tried to cover security related issues of FDD by making some changes in classical FDD process model.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Simplified FDD Process Model

Nawaz¹,

Aftab²,

Anwer³

2017

IJMECS

View full text Add to dashboard Cite

Feature driven development (FDD) is a process oriented and client centric agile software development model which develops a software according to client valued features. Like other agile models it also has adaptive and incremental nature to implement required functionality in short iterations. FDD mainly focus on designing and building aspects of software development with more emphasis on quality. However less responsiveness to changing requirements, reliance on experienced staff and less appropriateness for small scale projects are the main problems. To overcome these problems a Simplified Feature Driven Development (SFDD) model is proposed in this paper. In SFDD we have modified the phases of classical FDD for small to medium scale projects that can handle changing requirements with small teams in efficient and effective manner.

show abstract

“…All software faces threats from various potential malicious adversaries that are becoming more numerous every day. Threatened software includes internet‐aware applications running on personal computers, complex telecommunications, power systems accessible over the internet, and commodity software with copy protection mechanisms . These threats, and many others, can impose a significant challenge to software engineers, who must design security measures as part of their risk management activities; in addition, they are expected to design appropriate security requirements and policies.…”

Section: Introductionmentioning

confidence: 99%

The practice of secure software development in SDLC: an investigation through existing model and a case study

Karim

Albuolayan

Saba

et al. 2016

Security Comm Networks

View full text Add to dashboard Cite

Software security is an essential requirement for software systems. However, recent investigation indicates that many software development methodologies do not explicitly include methods for incorporating information security into the software development life cycles (SDLC). This research investigates, using case study, the methodologies being used in software development in Saudi Arabia and describes a model for integrating security into the SDLC. The aim is to identify the appropriate means of introducing security measures much earlier in the SDLC. This model is designed to be an extension to the existing SDLC. For achieving the research objectives and answering the research questions, the research followed a case study research design in an information‐based organization. The research identified various important elements as security standards, policies, processes being practiced, and tools used within SDLC projects. In this regard, recommendations and verification were gathered to elicit the actual activities that are appropriate to be conducted at each phase of SDLC. The non‐functional security requirements were also found, to the use of fortify and hp alm for source code review and web application testing. Copyright © 2016 John Wiley & Sons, Ltd.

show abstract

Secure Feature Driven Development (SFDD) Model for Secure Software Development

Cited by 25 publications

References 16 publications

Empirical Evaluation of Modified Agile Models

Empirical Evaluation of Modified Agile Models

Simplified FDD Process Model

The practice of secure software development in SDLC: an investigation through existing model and a case study

Contact Info

Product

Resources

About