Projects per year
Abstract
VeriDevOps offers a methodology and a set of integrated mechanisms that significantly improve automation in DevOps to protect systems at operations time and prevent security issues at development time by (1) specifying security requirements, (2) generating trace monitors, (3) locating root causes of vulnerabilities, and (4) identifying security flaws in code and designs. This paper presents a methodology that enhances productivity and enables the continuous integration/delivery of trustworthy systems. We outline the methodology, its application to relevant scenarios, and offer recommendations for engineers and managers adopting the VeriDevOps approach. Practitioners applying the VeriDevOps methodology should include security modeling in the DevOps process, integrate security verification throughout all stages, utilize automated test generation tools for security requirements, and implement a comprehensive security monitoring system, with regular review and update procedures to maintain relevance and effectiveness.
Original language | English |
---|---|
Title of host publication | ARES 2023 - 18th International Conference on Availability, Reliability and Security, Proceedings |
Publisher | ACM |
Pages | 1-9 |
ISBN (Electronic) | 9798400707728 |
ISBN (Print) | 979-8-4007-0772-8 |
DOIs | |
Publication status | Published - 29 Aug 2023 |
MoE publication type | A4 Article in a conference publication |
Event | ARES 2023: The 18th International Conference on Availability, Reliability and Security - Duration: 29 Aug 2023 → 1 Sept 2023 |
Publication series
Name | ACM International Conference Proceeding Series |
---|
Conference
Conference | ARES 2023: The 18th International Conference on Availability, Reliability and Security |
---|---|
Period | 29/08/23 → 01/09/23 |
Keywords
- security
- verification
- DevOps
- monitoring
- testing
Fingerprint
Dive into the research topics of 'VeriDevOps Software Methodology: Security Verification and Validation for DevOps Practices'. Together they form a unique fingerprint.Projects
- 1 Finished
-
VeriDevOps: Automated Protection and Prevention to Meet Security Requirements in DevOps Environments
Truscan, D. (Principal Investigator), Porres Paltor, I. (Co-Principal Investigator), Ashraf, A. (Principal Investigator), Ahmad, T. (Co-Investigator), Chariyarupadannayil Sudheerbabu, G. (Co-Investigator) & Chapagain, S. (Principal Investigator)
01/10/20 → 31/01/24
Project: EU