Security and Privacy Behavior Definition for Behavior Driven Development
Takao Okubo, Yoshio Kakizaki, Takanori Kobashi, Hironori Washizaki, Shinpei Ogata, Haruhiko Kaiya, and Nobukazu Yoshioka.
In Product-Focused Software Process Improvement (Profes 2014),
pp. 306 -309,
10-12 Dec. 2014,
There is an issue when security measures are implemented and tested
while using agile software development techniques such as Behavior
Driven Development (BDD). We need to define the necessary levels of
security and the privacy behaviors and acceptance criteria for the
BDD. A method for defining the acceptance criteria (BehaveSafe) by
creating a threat and countermeasure graph called the T & C graph is
proposed in this paper. We have estimated the efficiency of our method
with a web based system.