Cost Benefit Analysis of Incorporating Security and Evaluation of Its Effects on Various Phases of Agile Software Development-Reference-Cited by-同舟云学术

Cost Benefit Analysis of Incorporating Security and Evaluation of Its Effects on Various Phases of Agile Software Development

Published:2021-08-03 Issue: Volume:2021 Page:1-10
ISSN:1563-5147
Container-title:Mathematical Problems in Engineering
language:en
Short-container-title:Mathematical Problems in Engineering

Author:

Kumar Sushil¹^ORCID,Kaur Avinash¹^ORCID,Jolly Ashish²,Baz Mohammed³^ORCID,Cheikhrouhou Omar⁴^ORCID

Affiliation:

1. Department of Computer Science and Engineering, Lovely Professional University, Jalandhar, Punjab, India

2. Department of Computer Science, Government PG College, Ambala Cantt, Haryana, India

3. Department of Computer Engineering, College of Computer and Information Technology, Taif University, PO Box. 11099, Taif 21994, Saudi Arabia

4. CES Laboratory, National School of Engineers of Sfax, University of Sfax, Sfax 3038, Tunisia

Abstract

This article addresses the costs and benefits of integrating security into the development of applications and gives formulas for calculating security costs and benefits. The lack of safe application might lead to safety issues. Increasingly, there are accidents recorded that expose security flaws in many major software systems. It results in significant losses for consumer companies. While software businesses are working to produce secure software, the utility of secure software is quite limited. In contrast to the traditional manufacturers of commodities, for example, automakers, software developers have no legal responsibility if their products include flaws. The market reacts adversely to software manufacturers with serious vulnerabilities in their products. This is because of the loss of credibility, cost of patches, and so on. The study shows that the market is ready to penalize the supplier for insecurity and therefore offers the chance to deliver safer technologies. To improve cost/efficiency, the vulnerabilities are connected by accessible fixes. Significant savings are gained when security shortcomings are corrected during designing requirements instead of fixing security failures after deploying software. For suppliers, updates are more expensive to produce and publish. In addition, development costs can be reduced by plugging security issues in the early stages of development.

Funder

Taif University

Publisher

Hindawi Limited

Subject

General Engineering,General Mathematics

Link

http://downloads.hindawi.com/journals/mpe/2021/7837153.pdf

Reference31 articles.

1. Integrating security into agile development methods;M. Siponen

2. Integration analysis of security activities from the perspective of agility;S. Sonia;IEEE,2012

3. Measuring the risk-based value of IT security solutions

4. Quantitative evaluation of software quality;B. Boehm

Cited by 3 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Identifying Key Activities, Artifacts and Roles in Agile Engineering of Secure Software with Hierarchical Clustering;Applied Sciences;2023-04-04

2. Minimizing Cost, Effort, and Implementation Complexity for Adopting Security Requirements in an Agile Development Process for Cyber‐Physical Systems;Agile Software Development;2023-02-08

3. An IoT Digital Twin for Cyber-Security Defence Based on Runtime Verification;Leveraging Applications of Formal Methods, Verification and Validation. Verification Principles;2022