Trends for the DevOps Security : A Systematic Literature Review
Leppänen, T., Honkaranta, A., & Costin, A. (2022). Trends for the DevOps Security : A Systematic Literature Review. In B. Shishkov (Ed.), Business Modeling and Software Design : 12th International Symposium, BMSD 2022, Fribourg, Switzerland, June 27–29, 2022, Proceedings (pp. 200-217). Springer International Publishing. Lecture Notes in Business Information Processing, 453. https://doi.org/10.1007/978-3-031-11510-3_12
Published in
Lecture Notes in Business Information ProcessingEditors
Date
2022Discipline
TekniikkaSecure Communications Engineering and Signal ProcessingEngineeringSecure Communications Engineering and Signal ProcessingCopyright
© 2022 Springer Nature Switzerland AG
Due to technical advances, old ways for securing DevOps software development have become obsolete. Thus, researchers and practitioners need new insights into the security challenges and practices of DevOps development. This paper reviews the data extraction and analysis phase and results of a Systematic Literature Review (SLR) study that was carried out in 2019. The outcome is an updated list of security challenges and practices for DevOps software development. Both reviews shows that the most essential challenges for the DevOps security deal with the complexity of the development pipelines and the overall complexity of the cloud and microservice environments. The security activities identified were classified by using the BSIMM maturity model for software security as a framework. Our review shows that DevOps security research focuses mostly on deployment phase and technical aspects of software security. We compared the security activities identified in our study with the ones identified by the BSIMM development company in their 2020 review of 128 practitioners’ security practices and found matching practices and similar trends.
...
Publisher
Springer International PublishingParent publication ISBN
978-3-031-11509-7Conference
International Symposium on Business Modeling and Software DesignIs part of publication
Business Modeling and Software Design : 12th International Symposium, BMSD 2022, Fribourg, Switzerland, June 27–29, 2022, ProceedingsISSN Search the Publication Forum
1865-1348Keywords
Publication in research information system
https://converis.jyu.fi/converis/portal/detail/Publication/150981346
Metadata
Show full item recordCollections
License
Related items
Showing items with similar title or keywords.
-
Reconfigurations in sustainability transitions : a systematic and critical review
Laakso, Senja; Aro, Riikka; Heiskanen, Eva; Kaljonen, Minna (Taylor & Francis, 2021)Two streams of literature have become especially prominent in understanding social change toward sustainability within the past decades: the research on socio-technical transitions and applications of social practice theory. ... -
A systematic literature review on employee relations with CSR : State of art and future research agenda
Onkila, Tiina; Sarna, Bhavesh (John Wiley & Sons, 2022)Within recent years, the literature on employee–CSR relations has grown significantly. However, the research is fragmented throughout various journals and disciplines, and we still lack a comprehensive literature review ... -
Etic and emic data production methods in the study of journalistic work practices : A systematic literature review
Haapanen, Lauri; Manninen, Ville JE (SAGE Publications, 2023)This methodological paper discusses the application of etic and emic perspectives in producing data sets for the study of journalistic praxis. The concepts refer to the researcher-analyst’s and the practitioner-informant’s ... -
How pedagogical agents communicate with students : A two-phase systematic review
Sikström, Pieta; Valentini, Chiara; Sivunen, Anu; Kärkkäinen, Tommi (Elsevier, 2022)Technological advancements have improved the capabilities of pedagogical agents to communicate with students. However, an increased use of pedagogical agents in learning environments calls for a deeper understanding of ... -
Artificial Intelligence for Cybersecurity : A Systematic Mapping of Literature
Wiafe, Isaac; Koranteng, Felix N.; Obeng, Emmanuel N.; Assyne, Nana; Wiafe, Abigail; Gulliver, Stephen R. (IEEE, 2020)Due to the ever-increasing complexities in cybercrimes, there is the need for cybersecurity methods to be more robust and intelligent. This will make defense mechanisms to be capable of making real-time decisions that can ...