Where to Integrate Security Practices on DevOps Platform

“Software security” often evokes negative feelings amongst software developers because this term is associated with additional programming effort, uncertainty and road blocker activity on rapid development and release cycles. The Secure DevOps movement attempts to combat the toxic environment surrounding software security by shifting the paradigm from following rules and guidelines to creatively determining solutions for tough security problems (Taschner, 2015). Secure software should be focused on a proactive approach that limits the attack surface and produces reliable software. Secure DevOps developers want their software to bend but not break, which means the software absorbs attacks and continues to function. The burgeoning concepts of DevOps include a number of concepts that can be applied to increase the security of developed applications. Applying these and other DevOps principles can have a big impact on creating an environment that is resilient and secure. Specifically, this paper clearly explains how to address security concerns in the early stages of the development lifecycle and leverage that knowledge throughout the SDLC.

MoreLess

Year of publication:	2016
Authors:	Yasar, Hasan ; Kontostathis, Kiriakos
Published in:	International Journal of Secure Software Engineering (IJSSE). - IGI Global, ISSN 1947-3044, ZDB-ID 2703749-6. - Vol. 7.2016, 4 (01.10.), p. 39-50
Publisher:	IGI Global
Subject:	Secure DevOps \| Secure Software Development Life Cycle \| Software Development Life Cycle \| Software Security

More details

Type of publication:	Article
Language:	English
Other identifiers:	10.4018/IJSSE.2016100103 [DOI]
Source:	Other ZBW resources

Persistent link: https://www.econbiz.de/10012048079