Abuser Stories: Thinking Like the Bad Guy to Reduce Software Vulnerabilities

Waters E

Friday May 10, 2019 - 9:45 am to 10:45 am


Capturing security requirements in an agile environment. Bad guys are out there…Who’s thinking about securing our systems and data??? When do we/should we think about security in our software systems?? How can we pull security forward in our agile processes? Let’s talk about Abuser Stories…!!

How can we can use our familiar user story format to capture potential vulnerabilities in software systems?? While user stories are written from a user perspective, abuser stories are written from an enemy or attacker’s perspective and describe the enemy’s mal-intent and motivation.

PDU Claim Code: C002FFH0K8


Guests


Categories

Breakout Session

Tags

Agile, Scrum, Business Analysis