Embracing IaC Through the DevSecOps Philosophy: Concepts, Challenges, and a Reference Framework

Juncal Alonso; Radoslaw Piliszek; Matija Cankar

doi:10.1109/MS.2022.3212194

Embracing IaC Through the DevSecOps Philosophy: Concepts, Challenges, and a Reference Framework

Juncal Alonso, Radoslaw Piliszek, Matija Cankar

Research output: Contribution to journal › Article › peer-review

14 Citations (Scopus)

Abstract

We introduce the challenges of DevSecOps philosophy and its applicability to the development and operation of trustworthy infrastructure-as-code, and we combine the solutions into a single framework covering all crucial steps. Finally, we discuss how the proposed framework addresses the challenges and introduce an initial design for it.

Original language	English
Pages (from-to)	56-62
Number of pages	7
Journal	IEEE Software
Volume	40
Issue number	1
DOIs	https://doi.org/10.1109/MS.2022.3212194
Publication status	Published - 1 Jan 2023

Access to Document

10.1109/MS.2022.3212194

Cite this

@article{b1cd57975a1242f889c52dbeda8a51b6,

title = "Embracing IaC Through the DevSecOps Philosophy: Concepts, Challenges, and a Reference Framework",

abstract = "We introduce the challenges of DevSecOps philosophy and its applicability to the development and operation of trustworthy infrastructure-as-code, and we combine the solutions into a single framework covering all crucial steps. Finally, we discuss how the proposed framework addresses the challenges and introduce an initial design for it.",

author = "Juncal Alonso and Radoslaw Piliszek and Matija Cankar",

note = "Publisher Copyright: {\textcopyright} 1984-2012 IEEE.",

year = "2023",

month = jan,

day = "1",

doi = "10.1109/MS.2022.3212194",

language = "English",

volume = "40",

pages = "56--62",

journal = "IEEE Software",

issn = "0740-7459",

publisher = "IEEE Computer Society",

number = "1",

}

TY - JOUR

T1 - Embracing IaC Through the DevSecOps Philosophy

T2 - Concepts, Challenges, and a Reference Framework

AU - Alonso, Juncal

AU - Piliszek, Radoslaw

AU - Cankar, Matija

PY - 2023/1/1

Y1 - 2023/1/1

N2 - We introduce the challenges of DevSecOps philosophy and its applicability to the development and operation of trustworthy infrastructure-as-code, and we combine the solutions into a single framework covering all crucial steps. Finally, we discuss how the proposed framework addresses the challenges and introduce an initial design for it.

AB - We introduce the challenges of DevSecOps philosophy and its applicability to the development and operation of trustworthy infrastructure-as-code, and we combine the solutions into a single framework covering all crucial steps. Finally, we discuss how the proposed framework addresses the challenges and introduce an initial design for it.

UR - http://www.scopus.com/inward/record.url?scp=85139879564&partnerID=8YFLogxK

U2 - 10.1109/MS.2022.3212194

DO - 10.1109/MS.2022.3212194

M3 - Article

AN - SCOPUS:85139879564

SN - 0740-7459

VL - 40

SP - 56

EP - 62

JO - IEEE Software

JF - IEEE Software

IS - 1

ER -

Embracing IaC Through the DevSecOps Philosophy: Concepts, Challenges, and a Reference Framework

Abstract

Access to Document

Other files and links

Fingerprint

Cite this