Misuse Stories [OOPLSA2006]
25 Oct 2006
Vidar Kongsli is talking about Towards Agile Security in Web Applications. They’ve done a nice job of integrating the two, which is interesting as the culture of security people tends to be more static.
During planning, they introduced “Misuse Stories”, like user stories but for potential expoits of the system. Once they have Misuse Stories, […]