Compliance at Velocity within a DevOps Environment

2018 Thirteenth International Conference on Digital Information Management (ICDIM) Pub Date : 2018-09-01 DOI:10.1109/ICDIM.2018.8847007

Muhammad Zaid Abrahams, J. Langerman

{"title":"Compliance at Velocity within a DevOps Environment","authors":"Muhammad Zaid Abrahams, J. Langerman","doi":"10.1109/ICDIM.2018.8847007","DOIUrl":null,"url":null,"abstract":"DevOps has become an emerging force within the Information Technology field in today’s development/operations climate. Information security within a DevOps environment has become a focal point for most organizations that have implemented the DevOps methodology and its principles. In most cases, the ability to secure a DevOps environment and the organization’s ability to adhere to, and comply with, industry specific standards, frameworks and best practice is an integral part of information security within a DevOps environment. This investigation aims to address those issues that may arise when an organization seeks to adhere to and comply with industry standards, frameworks and best practice in a manner that does not limit the velocity of the organization’s automated delivery/deployment pipeline. This study investigates this by collecting and analyzing industry and academic literature; and through a prototype demonstration, understanding technical compliance and its requirements within a DevOps environment, using existing industry tools and solutions.","PeriodicalId":120884,"journal":{"name":"2018 Thirteenth International Conference on Digital Information Management (ICDIM)","volume":"21 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 Thirteenth International Conference on Digital Information Management (ICDIM)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICDIM.2018.8847007","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 3

Abstract

DevOps has become an emerging force within the Information Technology field in today’s development/operations climate. Information security within a DevOps environment has become a focal point for most organizations that have implemented the DevOps methodology and its principles. In most cases, the ability to secure a DevOps environment and the organization’s ability to adhere to, and comply with, industry specific standards, frameworks and best practice is an integral part of information security within a DevOps environment. This investigation aims to address those issues that may arise when an organization seeks to adhere to and comply with industry standards, frameworks and best practice in a manner that does not limit the velocity of the organization’s automated delivery/deployment pipeline. This study investigates this by collecting and analyzing industry and academic literature; and through a prototype demonstration, understanding technical compliance and its requirements within a DevOps environment, using existing industry tools and solutions.

查看原文本刊更多论文

在DevOps环境中快速遵守法规

在当今的开发/运营环境中，DevOps已经成为信息技术领域的一支新兴力量。DevOps环境中的信息安全已经成为大多数实施DevOps方法及其原则的组织关注的焦点。在大多数情况下，确保DevOps环境安全的能力以及组织遵守和遵守行业特定标准、框架和最佳实践的能力是DevOps环境中信息安全的一个组成部分。本调查的目的是解决当组织寻求遵循行业标准、框架和最佳实践时可能出现的问题，这些问题不会限制组织的自动交付/部署管道的速度。本研究通过搜集和分析行业和学术文献来对此进行调查;并通过原型演示，了解DevOps环境中的技术遵从性及其需求，使用现有的行业工具和解决方案。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2018 Thirteenth International Conference on Digital Information Management (ICDIM)

自引率

0.00%

发文量