• Title/Summary/Keyword: Security Backlog

Search Result 3, Processing Time 0.015 seconds

Integrating Software Security into Agile-Scrum Method

  • Ghani, Imran;Azham, Zulkarnain;Jeong, Seung Ryul
    • KSII Transactions on Internet and Information Systems (TIIS)
    • /
    • v.8 no.2
    • /
    • pp.646-663
    • /
    • 2014

  • Scrum is one of the most popular and efficient agile development methods. However, like other agile methods such as Extreme Programming (XP), Feature Driven Development (FDD), and the Dynamic Systems Development Method (DSDM), Scrum has been criticized because of lack of support to develop secure software. Thus, in 2011, we published research proposing the idea of a security backlog (SB). This paper represents the continuation of our previous research, with a focus on the evaluation in industry-based case study. Our findings highlight an improved agility in Scrum after the integration of SB. Furthermore, secure software can be developed quickly, even in situations involving requirement changes of software. Based on our experimental findings, we noticed that, when integrating SB, it is quite feasible to develop secure software using an agile Scrum model.

  • https://doi.org/10.3837/tiis.2014.02.0019 인용 PDF KSCI KPUBS

A Protection Method using Destination Address Packet Sampling for SYN Flooding Attack in SDN Environments (SDN 환경에서의 목적지 주소별 패킷 샘플링을 이용한 SYN Flooding 공격 방어기법)

  • Bang, Gihyun;Choi, Deokjai;Bang, Sangwon
    • Journal of Korea Multimedia Society
    • /
    • v.18 no.1
    • /
    • pp.35-41
    • /
    • 2015

  • SDN(Software Defined Networking) has been considered as a new future computer network architecture and DDoS(Distributed Denial of Service) is the biggest threat in the network security. In SDN architecture, we present the technique to defend the DDoS SYN Flooding attack that is one of the DDoS attack method. First, we monitor the Backlog queue in order to reduce the unnecessary monitoring resources. If the Backlog queue of the certain server is occupied over 70%, the sFlow performs packet sampling with the server address as the destination address. To distinguish between the attacker and the normal user, we use the source address. We decide the SYN packet threshold using the remaining Backlog queue that possible to allow the number of connections. If certain sources address send the SYN packet over the threshold, we judge that this address is attacker. The controller will modify the flow table entry to block attack traffics. By using this method, we reduce the resource consumption about the unnecessary monitoring and the protection range is expanded to all switches. The result achieved from our experiment show that we can prevent the SYN Flooding attack before the Backlog queue is fully occupied.

  • https://doi.org/10.9717/kmms.2015.18.1.035 인용 PDF KSCI KPUBS HTML

Features of Innovation and Project Management

  • Liakhovych, Galyna;Guk, Olga;Mokhonko, Ganna;Vakun, Oksana;Lyakhovych, Ulyana
    • International Journal of Computer Science & Network Security
    • /
    • v.22 no.10
    • /
    • pp.364-368
    • /
    • 2022

  • The main purpose of the article is to study the features of innovation and project management. The rapid growth of scientific and technological progress in our time is leading to such profound changes that a passive, slow response to the development of science and technology leads to a growing backlog. That is why the main direction of efficient production should be a constant striving to improve product quality, timely replacement of the assortment, minimization of inventories, and ensuring the flexibility and mobility of technological processes. Based on the results of the study, the main features of innovation and project management were characterized.

  • https://doi.org/10.22937/IJCSNS.2022.22.10.48 인용 PDF KSCI