dc.contributor.author | Tøndel, Inger Anne | |
dc.contributor.author | Jaatun, Martin Gilje | |
dc.contributor.author | Cruzes, Daniela Soares | |
dc.contributor.author | Williams, Laurie | |
dc.date.accessioned | 2020-05-06T07:48:23Z | |
dc.date.available | 2020-05-06T07:48:23Z | |
dc.date.created | 2019-08-16T09:22:38Z | |
dc.date.issued | 2019 | |
dc.identifier.issn | 2056-4961 | |
dc.identifier.uri | https://hdl.handle.net/11250/2653419 | |
dc.description.abstract | Today, agile software development teams in general do not adopt security risk-assessment practices in an ongoing manner to prioritize security work. Protection Poker is a collaborative and lightweight software security risk-estimation technique that is particularly suited for agile teams. Motivated by a desire to understand why security risk assessments have not yet gained widespread adoption in agile development, this study aims to assess to what extent the Protection Poker game would be accepted by agile teams and how it can be successfully integrated into the agile practices. | en_US |
dc.language.iso | eng | en_US |
dc.publisher | Emerald | en_US |
dc.subject | Risk assessment | en_US |
dc.subject | Agile development | en_US |
dc.subject | Protection Poker | en_US |
dc.subject | Software security | en_US |
dc.title | Collaborative security risk estimation in agile software development | en_US |
dc.type | Journal article | en_US |
dc.type | Peer reviewed | en_US |
dc.description.version | acceptedVersion | en_US |
dc.rights.holder | ‘This article is (c) Emerald Group Publishing and permission has been granted for this version to appear here. Emerald does not grant permission for this article to be further copied/distributed or hosted elsewhere without the express permission from Emerald Group Publishing Limited.' | en_US |
dc.source.volume | 26 | en_US |
dc.source.journal | Information and Computer Security | en_US |
dc.source.issue | 4 | en_US |
dc.identifier.doi | 10.1108/ICS-12-2018-0138 | |
dc.identifier.cristin | 1716359 | |
dc.relation.project | Norges forskningsråd: 247678 | en_US |
cristin.unitcode | 7401,90,13,0 | |
cristin.unitname | Software Engineering, Safety and Security | |
cristin.ispublished | true | |
cristin.fulltext | postprint | |
cristin.qualitycode | 1 | |