Kondratiev A.V. «What is the measure of "acoustics»?» Защита информации. Инсайд, № 3, с. 50-59 (2016)

The article describes application security ricks in case of using so called «agile» development process. Author describes risks of traditional security approach – application development first, then vulnerability scanning and then tuning of application security system. This approach does not work properly in case of agile development process because in this case features changing period is less then period of vulnerabilities scanning. Author offers some ways of application security process adaptation – building-in of vulnerabilities scanning in development process, integration of vulnerabilities scanning with active application security systems like anti-DDoS and WAF and full-automation of application security system tuning