DevSecOps Pipeline and Demo

Yasar, Hasan; Hamed, Jeffrey; Shepard, David; Earl, Patrick; Antunes, Luiz

DevSecOps Pipeline and Demo

Active / Technical Report | Accesssion Number: AD1202693 |

Open PDF

Abstract:

DevOps is a set of principles and practices emphasizing collaboration and communication between software development teams and IT operations staff along with acquirers, suppliers, and other stakeholders in the lifecycle of a software system DevSecOps is a model on integrating the software development and operational process considering security activities: requirements, design, coding, testing, delivery, deployment and incident response. Mature DevOps practices are constantly testing, deploying and validating that software meets every requirement and allows for fast recovery in the event of a problem. As a result we can easily say, DevSecOps is DevOps done right.

Author(s):

Yasar, Hasan ; Hamed, Jeffrey ; Shepard, David ; Earl, Patrick ; Antunes, Luiz

Author Organization(s):

CARNEGIE-MELLON UNIV PITTSBURGH PA

Funding Organization(s):

AIR FORCE LIFE CYCLE MANAGEMENT CENTER HANSCOM AFB MA, HANSCOM AFB , MA

Document Type:

Technical Report/Briefing Charts

Publication Date:

2023 Jun 02

Pagination:

29

Security Markings

DOCUMENT & CONTEXTUAL SUMMARY

Distribution Code:

A - Approved For Public Release

Distribution Statement: Public Release

RECORD

Collection: TRECMS

Identifying Numbers

Contract Number(s):

FA8702-15-D-0002

Subject Terms

Communities of Interest:

No COI(s) Identified

Descriptor(s):

universities, department of defense, software development, pipelines, materials, contracts, engineering, guarantees

Keyword(s):

Collaboration, iac (Infrastructure as Code), ci (Continuous Integration), cd (Continuous Delivery), cd (Continuous Deployment), DevSecOps Pipeline, hwil (HARDWARE IN THE LOOP)

Subject Categories:

Mathematical and Computer Sciences

Creation Date:

2023 Jun 06

Update Date:

2023 Sep 01