English
Related papers

Related papers: Making Secure Software Insecure without Changing I…

200 papers

Java platform and third-party libraries provide various security features to facilitate secure coding. However, misusing these features can cost tremendous time and effort of developers or cause security vulnerabilities in software. Prior…

Cryptography and Security · Computer Science 2017-09-29 Na Meng , Stefan Nagy , Daphne Yao , Wenjie Zhuang , Gustavo Arango Argoty

DevOps is a set of principles and practices to improve collaboration between development and IT Operations. Against the backdrop of the growing adoption of DevOps in a variety of software development domains, this paper describes empirical…

Software Engineering · Computer Science 2019-07-25 Mali Senapathi , Jim Buchan , Hady Osman

DevSecOps, as the extension of DevOps with security training and tools, has become a popular way of developing modern software, especially in the Internet of Things arena, due to its focus on rapid development, with short release cycles,…

Cryptography and Security · Computer Science 2024-10-03 Manish Shrestha , Christian Johansen , Johanna Johansen

A stack overflow occurs when a program or process tries to store more data in a buffer (or stack) than it was intended to hold. If the affected program is running with special privileges or accepts data from untrusted network hosts (e.g. a…

Cryptography and Security · Computer Science 2019-11-07 Md. Masudur Rahman , B M Mainul Hossain

DevOps has become a dominant paradigm in modern software engineering, while low-code development platforms (LCDPs) are increasingly adopted to streamline software development. The integration of these approaches promises efficiency gains…

Software Engineering · Computer Science 2026-05-19 Muhammad Azeem Akbar , Saima Rafi , Arif Ali Khan

Companies adopt agile methodologies and DevOps to facilitate efficient development and deployment of software-intensive products. This, in turn, introduces challenges in relation to security standard compliance traditionally following a…

Software Engineering · Computer Science 2025-12-17 Fabiola Moyón , Florian Angermeir , Daniel Mendez , Tony Gorschek , Markus Voggenreiter , Pierre-Louis Bonvin

Kubernetes (K8s) is widely used to orchestrate containerized applications, including critical services in domains such as finance, healthcare, and government. However, its extensive and feature-rich API interface exposes a broad attack…

Cryptography and Security · Computer Science 2025-09-12 Carmine Cesarano , Roberto Natella

DevOps pipeline is a set of automated tasks or processes or jobs that has tasks assigned to execute automatically that allow the Development team and Operations team to collaborate for building and deployment of the software or services.…

Software Engineering · Computer Science 2025-03-21 Adarsh Saxena , Sudhakar Singh , Shiv Prakash , Tiansheng Yang , Rajkumar Singh Rathore

Software architecture is critical in succeeding with DevOps. However, designing software architectures that enable and support DevOps (DevOps-driven software architectures) is a challenge for organizations. We assert that one of the…

Software Engineering · Computer Science 2021-11-16 Mojtaba Shahin , Ali Rezaei Nasab , Muhammad Ali Babar

In recent years, technology has advanced considerably with the introduction of many systems including advanced robotics, big data analytics, cloud computing, machine learning and many more. The opportunities to exploit the yet to come…

Cryptography and Security · Computer Science 2023-11-21 Sam Wen Ping , Jeffrey Cheok Jun Wah , Lee Wen Jie , Jeremy Bong Yong Han , Saira Muzafar

Awareness of cybersecurity topics facilitates software developers to produce secure code. This awareness is especially important in industrial environments for the products and services in critical infrastructures. In this work, we address…

Software Engineering · Computer Science 2021-02-11 Tiago Espinha Gasiba , Ulrike Lechner , Maria Pinto-Albuquerque

Quality in software is often understood as "execution according to design purpose" whereas security means that "software will not put data or computing systems at risk of unauthorized access." There seems to be a connection between these…

Robotics · Computer Science 2021-11-17 Víctor Mayoral-Vilches , Nuria García-Maestro , McKenna Towers , Endika Gil-Uriarte

Development and Operations (DevOps), a particular type of Continuous Software Engineering, has become a popular Software System Engineering paradigm. Software architecture is critical in succeeding with DevOps. However, there is little…

Software Engineering · Computer Science 2020-03-16 Mojtaba Shahin , M. Ali Babar

DevSecOps is a software development paradigm that places a high emphasis on the culture of collaboration between developers (Dev), security (Sec) and operations (Ops) teams to deliver secure software continuously and rapidly. Adopting this…

Software Engineering · Computer Science 2022-11-28 Roshan Namal Rajapakse , Mansooreh Zahedi , Muhammad Ali Babar

The widespread adoption of cloud computing has resulted in the proliferation of open source cloud computing frameworks that give more control to enterprises over their data and networks. Though the benefits of open source software are…

Software Engineering · Computer Science 2018-05-16 Irum Rauf , Elena Troubitsyna

The intersection between security and continuous software engineering has been of great interest since the early years of the agile development movement, and it remains relevant as software development processes are more frequently guided…

Software Engineering · Computer Science 2024-01-15 Fabiola Moyón , Florian Angermeir , Daniel Mendez

Traditionally, promoted by the internet companies, continuous delivery is more and more appealing to industries which develop systems with safety-critical functions. Since safety-critical systems must meet regulatory requirements and…

Software Engineering · Computer Science 2021-06-15 Marc Zeller

Security Hardening is the process of configuring IT systems to ensure the security of the systems' components and data they process or store. In many cases, so-called security-configuration guides are used as a basis for security hardening.…

Cryptography and Security · Computer Science 2022-09-20 Patrick Stöckle , Ionut Pruteanu , Bernd Grobauer , Alexander Pretschner

Containerization, driven by Docker, has transformed application development and deployment by enhancing efficiency and scalability. However, the rapid adoption of container technologies introduces significant security challenges that…

Cryptography and Security · Computer Science 2025-06-04 Gogulakrishnan Thiyagarajan , Prabhudarshi Nayak

Kubernetes, an open-source platform for automating the deployment, scaling, and management of containerized applications, is widely used for its efficiency and scalability. However, its complexity and extensive configuration options often…

Cryptography and Security · Computer Science 2024-08-08 Eoghan Russell , Kapal Dev