Getting Students to Think About How Agile Processes can be Made More Secure

Richard G. Epstein
{"title":"Getting Students to Think About How Agile Processes can be Made More Secure","authors":"Richard G. Epstein","doi":"10.1109/CSEET.2008.13","DOIUrl":null,"url":null,"abstract":"Agile processes play an important role in the authorpsilas undergraduate course in software engineering. The course is a required course for undergraduate majors in Computer Science. Agile processes, like eXtreme Programming (XP), have been criticized for not providing a good framework for building secure software. The course begins by covering what some people have called ldquothe warrdquo between the traditional waterfall process folks and the agile process folks. After students are given an introduction to various processes on both sides of ldquothe warrdquo (with an emphasis on PSP, CMMI and XP) and after students are introduced to basic concepts about how to make software systems more secure (drawing heavily on Viega and McGrawpsilas book Building Secure Software), the course turns its attention to how XP (in particular) can be made more secure. This topic generates a lot of enthusiasm among the students. The students seem to enjoy the challenge of creating new ideas to improve the manner in which XP addresses security issues. Students have come up with many creative and stimulating ideas about how eXtreme Programming can be made more secure without the necessity for what some have called ldquobig up front designrdquo. This paper presents some of the creative ideas students have come up with regarding this issue and discusses the team projects that give students the opportunity to explore security issues for agile processes in some depth.","PeriodicalId":424120,"journal":{"name":"2008 21st Conference on Software Engineering Education and Training","volume":"97 3 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2008-04-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"8","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2008 21st Conference on Software Engineering Education and Training","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CSEET.2008.13","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 8

Abstract

Agile processes play an important role in the authorpsilas undergraduate course in software engineering. The course is a required course for undergraduate majors in Computer Science. Agile processes, like eXtreme Programming (XP), have been criticized for not providing a good framework for building secure software. The course begins by covering what some people have called ldquothe warrdquo between the traditional waterfall process folks and the agile process folks. After students are given an introduction to various processes on both sides of ldquothe warrdquo (with an emphasis on PSP, CMMI and XP) and after students are introduced to basic concepts about how to make software systems more secure (drawing heavily on Viega and McGrawpsilas book Building Secure Software), the course turns its attention to how XP (in particular) can be made more secure. This topic generates a lot of enthusiasm among the students. The students seem to enjoy the challenge of creating new ideas to improve the manner in which XP addresses security issues. Students have come up with many creative and stimulating ideas about how eXtreme Programming can be made more secure without the necessity for what some have called ldquobig up front designrdquo. This paper presents some of the creative ideas students have come up with regarding this issue and discusses the team projects that give students the opportunity to explore security issues for agile processes in some depth.
查看原文
分享 分享
微信好友 朋友圈 QQ好友 复制链接
本刊更多论文
让学生思考如何使敏捷过程更安全
敏捷过程在作者的软件工程本科课程中占有重要地位。本课程是计算机专业本科生的必修课。敏捷过程,如极限编程(XP),因为没有提供构建安全软件的良好框架而受到批评。课程一开始就涵盖了一些人所说的传统瀑布过程和敏捷过程之间的差异。在学生们被介绍到各种过程的双方(重点是PSP, CMMI和XP)和学生被介绍到如何使软件系统更安全的基本概念后(在Viega和mcgrawsilas的书构建安全的软件),课程将注意力转向如何XP(特别是)可以使更安全。这个话题在学生中引起了很大的热情。学生们似乎很享受创造新想法的挑战,以改进XP处理安全问题的方式。关于如何使极限编程变得更安全,而不需要一些人所谓的预先设计,学生们提出了许多创造性的和令人兴奋的想法。本文介绍了学生们在这个问题上提出的一些创造性的想法,并讨论了团队项目,这些项目使学生有机会深入探索敏捷过程的安全问题。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文 去求助
来源期刊
自引率
0.00%
发文量
0
期刊最新文献
Getting Students to Think About How Agile Processes can be Made More Secure Fostering the Community of Software Engineering Educators Nancy R. Mead: Making Requirements Prioritization a Priority Nancy Mead and Software Engineering Education: Advancements through Action A Technique for Using Model Checkers to Teach Formal Specifications
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
0
微信
客服QQ
Book学术公众号 扫码关注我们
反馈
×
意见反馈
请填写您的意见或建议
请填写您的手机或邮箱
已复制链接
已复制链接
快去分享给好友吧!
我知道了
×
扫码分享
扫码分享
Book学术官方微信
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术
文献互助 智能选刊 最新文献 互助须知 联系我们:info@booksci.cn
Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。
Copyright © 2023 Book学术 All rights reserved.
ghs 京公网安备 11010802042870号 京ICP备2023020795号-1