English
Related papers

Related papers: Making Secure Software Insecure without Changing I…

200 papers

In the last decade, companies adopted DevOps as a fast path to deliver software products according to customer expectations, with well aligned teams and in continuous cycles. As a basic practice, DevOps relies on pipelines that simulate…

Software Engineering · Computer Science 2021-05-28 Fabiola Moyón Constante , Rafael Soares , Maria Pinto-Albuquerque , Daniel Méndez , Kristian Beckers

Introduction of DevOps into the software development life cycle represents a cultural shift in the IT culture, amalgamating development and operations to improve delivery speed in a rapid and maintainable manner. At the same time, security…

Software Engineering · Computer Science 2022-07-12 Akanksha Gupta

Agile and DevOps are widely adopted by the industry. Hence, integrating security activities with industrial practices, such as continuous integration (CI) pipelines, is necessary to detect security flaws and adhere to regulators' demands…

Software Engineering · Computer Science 2024-01-17 Florian Angermeir , Markus Voggenreiter , Fabiola Moyón , Daniel Mendez

Context: DevOps has become one of the fastest-growing software development paradigms in the industry. However, this trend has presented the challenge of ensuring secure software delivery while maintaining the agility of DevOps. The efforts…

Software Engineering · Computer Science 2023-05-02 Roshan N. Rajapakse , Mansooreh Zahedi , M. Ali Babar , Haifeng Shen

Kubernetes has emerged as the de facto standard for container orchestration. Unfortunately, its increasing popularity has also made it an attractive target for malicious actors. Despite extensive research on securing Kubernetes, little…

Cryptography and Security · Computer Science 2025-09-05 Jacopo Bufalino , Jose Luis Martin-Navarro , Mario Di Francesco , Tuomas Aura

Background: Security tools play a vital role in enabling developers to build secure software. However, it can be quite challenging to introduce and fully leverage security tools without affecting the speed or frequency of deployments in the…

Cryptography and Security · Computer Science 2021-07-20 Roshan Namal Rajapakse , Mansooreh Zahedi , Muhammad Ali Babar

The constant changes in the software industry, practices, and methodologies impose challenges to teaching and learning current software engineering concepts and skills. DevOps is particularly challenging because it covers technical…

Software Engineering · Computer Science 2021-02-15 Isaque Alves , Carla Rocha

DevOps (development and operations), has significantly changed the way to overcome deficiencies for delivering high-quality software to production environments. Past years witnessed an increased interest in embedding DevOps with…

Software Engineering · Computer Science 2024-09-06 Ricardo M. Czekster

With the increasing adoption of Continuous Integration and Continuous Deployment pipelines, securing software supply chains has become a critical challenge for modern DevOps teams. This study addresses these challenges by applying a…

Software Engineering · Computer Science 2025-06-10 Sowmiya Dhandapani

Context: DevOps practices combine software development and IT operations. There is a growing number of DevOps related posts in popular online developer forum Stack Overflow (SO). While previous research analyzed SO posts related to…

Software Engineering · Computer Science 2024-03-26 Minaoar Hossain Tanzil , Masud Sarker , Gias Uddin , Anindya Iqbal

Software applications in the space and defense industries have their unique characteristics: They are complex in structure, mission-critical, and often targets of state-of-the-art cyber attacks sponsored by adversary nation states. These…

Cryptography and Security · Computer Science 2024-08-16 Tomas Paulik

In recent years, there has been a growing concern with software integrity, that is, the assurance that software has not been tampered with on the path between developers and users. This path is represented by a software development pipeline…

Cryptography and Security · Computer Science 2022-11-14 B. M. Reichert , R. R. Obelheiro

Software vulnerabilities remain a significant risk factor in achieving security objectives within software development organizations. This is especially true where either proprietary or open-source software (OSS) is included in the…

Software Engineering · Computer Science 2025-09-23 James J. Cusick

This study evaluates the adoption of DevSecOps among small and medium-sized enterprises (SMEs), identifying key challenges, best practices, and future trends. Through a mixed methods approach backed by the Technology Acceptance Model (TAM)…

Cryptography and Security · Computer Science 2025-06-05 Jayaprakashreddy Cheenepalli , John D. Hastings , Khandaker Mamun Ahmed , Chad Fenner

Continuous Deployment (CD) has emerged as a new practice in the software industry to continuously and automatically deploy software changes into production. Continuous Deployment Pipeline (CDP) supports CD practice by transferring the…

Software Engineering · Computer Science 2017-03-14 Faheem Ullah , Adam Johannes Raft , Mojtaba Shahin , Mansooreh Zahedi , Muhammad Ali Babar

Kubernetes is an open-source software for automating management of computerized services. Organizations, such as IBM, Capital One and Adidas use Kubernetes to deploy and manage their containers, and have reported benefits related to…

Cryptography and Security · Computer Science 2020-06-30 Md. Shazibul Islam Shamim , Farzana Ahamed Bhuiyan , Akond Rahman

Kubernetes Operators, automated tools designed to manage application lifecycles within Kubernetes clusters, extend the functionalities of Kubernetes, and reduce the operational burden on human engineers. While Operators significantly…

Cryptography and Security · Computer Science 2025-12-18 Andong Chen , Ziyi Guo , Zhaoxuan Jin , Zhenyuan Li , Yan Chen

Current Continuous Integration processes face significant intrinsic cybersecurity challenges. The idea is not only to solve and test formal or regulatory security requirements of source code but also to adhere to the same principles to the…

Cryptography and Security · Computer Science 2021-12-14 David Fernández González , Francisco Javier Rodríguez Lera , Gonzalo Esteban , Camino Fernández Llamas

The adoption of DevOps practices in embedded systems and firmware development is emerging as a response to the growing complexity of modern hardware--software co-designed products. Unlike cloud-native applications, embedded systems…

Software Engineering · Computer Science 2025-07-02 Parthiv Katapara , Anand Sharma

Automated, secure software development is an important task of digitalization, which is solved with the DevSecOps approach. An important part of the DevSecOps approach is continuous risk assessment, which is necessary to identify and…

Cryptography and Security · Computer Science 2024-12-24 Abed Saif Ahmed Alghawli , Tamara Radivilova
‹ Prev 1 2 3 10 Next ›