Software Security Activities that Support Incident Management in Secure DevOps

Sammendrag

Many software services are currently created using DevOps, where developers and operations personnel are more tightly integrated. The DevOps paradigm enables shorter development cycles, but increased speed has raised concerns over whether security issues may be overlooked. However, perfect security is never achievable, and in addition to the proactive software security efforts, we also need a reactive effort to handle flaws and bugs that are not discovered before they are used in an attack. In this paper we explore how focus on incident management and collaboration with developers can contribute to improved software security.

Les publikasjonen

Kategori

Vitenskapelig Kapittel/Artikkel/Konferanseartikkel

Oppdragsgiver

Research Council of Norway (RCN) / 247678

Språk

Engelsk

Forfatter(e)

Martin Gilje Jaatun

Institusjon(er)

SINTEF Digital / Software Engineering, Safety and Security

År

2018

Forlag

Association for Computing Machinery (ACM)

Bok

ARES 2018. Proceedings of the 13th International Conference on Availability, Reliability and Security, Hamburg, Germany — August 27 - 30, 2018

ISBN

978-1-4503-6448-5

Eksterne ressurser

https://www.sintef.no/sos-agile

DOI

https://doi.org/10.1145/3230833.3233275

Les fulltekst

https://hdl.handle.net/11250/2571489

Vis denne publikasjonen hos Cristin

Kontakt oss

Tjenester

Rapporter og publikasjoner

Forskningssenter og samarbeid

Karriere

Bærekraft

Institutter

Andre enheter

Ledelse og organisering

Om oss

Følg oss