Leshchenko, Bohdan and Snisar, Bohdan and Stupak, Anton and Osadchyi, Viacheslav (2024) Integrating DevSecOps into the software development lifecycle: A comprehensive model for securing containerized and cloud-native environments CPITS II 2024 - Cybersecurity Providing in Information and Telecommunication Systems (3826). pp. 153-161. ISSN 16130073
![]() |
Text
B_Leshchenko_B_Snisar_A_Stupak_V_Osadchyi_CPITS II 2024_ZPS_BGKMU.pdf Download (3MB) |
Abstract
The increased use of containerized and cloud-native environments necessitates integrating security measures throughout the entire Software Development Lifecycle (SDLC). This study proposes a comprehensive DevSecOps model designed to address modern infrastructures’ security challenges. Our model prioritizes the continuous inclusion of security measures from the initial planning stages to the secure decommissioning of applications. Key elements of the model are improved governance of security, frequent auditing, disaster recovery planning, and a focus on continuous innovation within SDLC. The proposed approach offers a robust basis for protecting development processes, ensuring resilience, and maintaining compliance in rapidly evolving technological environments by integrating these activities into the DevOps framework. The practical applicability of the model is validated by comparing it against the existing frameworks and its prospective capacity to significantly enhance security posture within organizations working with containerized and cloud-native environments.
Item Type: | Article |
---|---|
Uncontrolled Keywords: | DevSecOps; Software Development Lifecycle; SD |
Subjects: | Статті у базах даних > Scopus |
Divisions: | Факультет економіки та управління > Кафедра управління |
Depositing User: | доцент Оксана В'ячеславівна Марухленко |
Date Deposited: | 03 Jan 2025 09:46 |
Last Modified: | 03 Jan 2025 09:59 |
URI: | https://elibrary.kubg.edu.ua/id/eprint/50581 |
Actions (login required)
![]() |
View Item |