DevSecOps Integration - Security in the Software Delivery Pipeline: Exploring the integration of security practices into the software delivery pipeline to ensure secure software development practices

Authors

  • Dr. Priya Sharma Lecturer, Software Quality Assurance Department, University of Toronto, Canada Author

Keywords:

DevSecOps, Security, Software Delivery Pipeline, Automation, Integration, Software Development Lifecycle, Secure Software

Abstract

DevSecOps, a combination of Development, Security, and Operations, is a methodology that emphasizes integrating security practices within the software development process. This paper explores the integration of security in the software delivery pipeline, focusing on how DevSecOps enhances the security posture of software products. The paper discusses the challenges and benefits of DevSecOps adoption and provides practical guidelines for implementing security practices in each stage of the software delivery pipeline. Additionally, the paper examines the role of automation and cultural shifts in achieving a successful DevSecOps implementation. Through case studies and examples, this paper demonstrates the importance of integrating security early in the software development lifecycle to build more secure and resilient software products.

Downloads

Download data is not yet available.

References

Alghayadh, Faisal Yousef, et al. "Ubiquitous learning models for 5G communication network utility maximization through utility-based service function chain deployment." Computers in Human Behavior (2024): 108227.

Pargaonkar, Shravan. "A Review of Software Quality Models: A Comprehensive Analysis." Journal of Science & Technology 1.1 (2020): 40-53.

MURAVEV, M., et al. "HYBRID SOFTWARE DEVELOPMENT METHODS: EVOLUTION AND THE CHALLENGE OF INFORMATION SYSTEMS AUDITING." Journal of the Balkan Tribological Association 29.4 (2023).

Pulimamidi, Rahul. "Emerging Technological Trends for Enhancing Healthcare Access in Remote Areas." Journal of Science & Technology 2.4 (2021): 53-62.

Raparthi, Mohan, Sarath Babu Dodda, and Srihari Maruthi. "AI-Enhanced Imaging Analytics for Precision Diagnostics in Cardiovascular Health." European Economic Letters (EEL) 11.1 (2021).

Kulkarni, Chaitanya, et al. "Hybrid disease prediction approach leveraging digital twin and metaverse technologies for health consumer." BMC Medical Informatics and Decision Making 24.1 (2024): 92.

Raparthi, Mohan, Sarath Babu Dodda, and SriHari Maruthi. "Examining the use of Artificial Intelligence to Enhance Security Measures in Computer Hardware, including the Detection of Hardware-based Vulnerabilities and Attacks." European Economic Letters (EEL) 10.1 (2020).

Dutta, Ashit Kumar, et al. "Deep learning-based multi-head self-attention model for human epilepsy identification from EEG signal for biomedical traits." Multimedia Tools and Applications (2024): 1-23.

Raparthy, Mohan, and Babu Dodda. "Predictive Maintenance in IoT Devices Using Time Series Analysis and Deep Learning." Dandao Xuebao/Journal of Ballistics 35: 01-10.

Kumar, Mungara Kiran, et al. "Approach Advancing Stock Market Forecasting with Joint RMSE Loss LSTM-CNN Model." Fluctuation and Noise Letters (2023).

Raparthi, Mohan. "Biomedical Text Mining for Drug Discovery Using Natural Language Processing and Deep Learning." Dandao Xuebao/Journal of Ballistics 35

Sati, Madan Mohan, et al. "Two-Area Power System with Automatic Generation Control Utilizing PID Control, FOPID, Particle Swarm Optimization, and Genetic Algorithms." 2024 Fourth International Conference on Advances in Electrical, Computing, Communication and Sustainable Technologies (ICAECT). IEEE, 2024.

Raparthy, Mohan, and Babu Dodda. "Predictive Maintenance in IoT Devices Using Time Series Analysis and Deep Learning." Dandao Xuebao/Journal of Ballistics 35: 01-10.

Pulimamidi, Rahul. "Leveraging IoT Devices for Improved Healthcare Accessibility in Remote Areas: An Exploration of Emerging Trends." Internet of Things and Edge Computing Journal 2.1 (2022): 20-30.

Reddy, Byrapu, and Surendranadha Reddy. "Evaluating The Data Analytics For Finance And Insurance Sectors For Industry 4.0." Tuijin Jishu/Journal of Propulsion Technology 44.4 (2023): 3871-3877.

Tatineni, Sumanth. "Applying DevOps Practices for Quality and Reliability Improvement in Cloud-Based Systems." Technix international journal for engineering research (TIJER)10.11 (2023): 374-380.

Downloads

Published

01-05-2024

How to Cite

[1]
D. P. Sharma, “DevSecOps Integration - Security in the Software Delivery Pipeline: Exploring the integration of security practices into the software delivery pipeline to ensure secure software development practices”, Australian Journal of Machine Learning Research & Applications, vol. 4, no. 1, pp. 46–54, May 2024, Accessed: Nov. 23, 2024. [Online]. Available: https://sydneyacademics.com/index.php/ajmlra/article/view/13

Similar Articles

11-20 of 119

You may also start an advanced similarity search for this article.