The Repository @ St. Cloud State

Open Access Knowledge and Scholarship

Date of Award

12-2022

Culminating Project Type

Starred Paper

Styleguide

ieee

Degree Name

Information Assurance: M.S.

Department

Information Assurance and Information Systems

College

Herberger School of Business

First Advisor

Akalanka B. Mailewa

Second Advisor

Mark Schmidt

Third Advisor

Erich P. Rice

Creative Commons License

Creative Commons License
This work is licensed under a Creative Commons Attribution-Noncommercial-No Derivative Works 4.0 License.

Keywords and Subject Headings

Azure, DevOps, DevSecOps, security, systematic literature review

Abstract

DevOps (Development & Operation) is a set of practices that combine software development (Dev) and IT Operations (Ops). It aims to shorten the Software Development Life Cycle (SDLC) process by providing Continuous Integration (CI) and Continuous Deployments (CD). The effort to increase Security in DevOps has resulted in the DevSecOps paradigm. Which is a set of practices, cultural approaches, and tools that bring together software development (Dev), IT Operations (Ops), and security (Sec) to increase an organization's ability to deliver applications and services at high velocity securely. We conducted a Systematic Literature Review of 54 peer-reviewed studies. The Thematic analysis method was applied to analyze the extracted data. We identified challenges related to adopting DevSecOps, Solutions, and Integration. We also identified key gaps by evaluating various solutions against the challenges. The results of the study were classified into DevOps tools and Security tools.

Comments/Acknowledgements

For Revision

Available for download on Saturday, October 07, 2023

Share

COinS