Please use this identifier to cite or link to this item:
http://hdl.handle.net/10071/32592| Author(s): | Prates, L. Pereira, R. |
| Date: | 2025 |
| Title: | DevSecOps practices and tools |
| Journal title: | International Journal of Information Security |
| Volume: | 24 |
| Number: | 1 |
| Reference: | Prates, L., & Pereira, R. (2025). DevSecOps practices and tools. International Journal of Information Security, 24(1), Article 11. https://doi.org/10.1007/s10207-024-00914-z |
| ISSN: | 1615-5262 |
| DOI (Digital Object Identifier): | 10.1007/s10207-024-00914-z |
| Keywords: | DevSecOps SecDevOps Practices Capabilities Secure software development Security tools |
| Abstract: | Nowadays, software development happens at a fast pace. At the same time, Information Technology organizations face higher demands and competition while struggling with external threats such as cyberattacks. Therefore, many organizations adopt DevOps as a working culture to improve their Software Development Lifecycle (SDL). However, the success of DevOps adoption remains inconsistent, and recently, IEEE introduced a DevOps standard that might help improve DevOps adoption. The standard mentions DevSecOps as the security aspect of DevOps, adding security practices to the SDL from inception, but what are these practices or capabilities? Which tools can be used to implement these practices? Therefore, a Multivocal Literature Review was performed to identify DevSecOps practices and their definitions, and which tools can be used to implement them. |
| Peerreviewed: | yes |
| Access type: | Open Access |
| Appears in Collections: | IT-RI - Artigos em revistas científicas internacionais com arbitragem científica |
Files in This Item:
| File | Size | Format | |
|---|---|---|---|
| article_106338.pdf | 1,68 MB | Adobe PDF | View/Open |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.