软件开发中的DevSecOps方法案例研究:上市公司物流代理

2021 International Conference on Informatics, Multimedia, Cyber and Information System (ICIMCIS Pub Date : 2021-10-28 DOI:10.1109/ICIMCIS53775.2021.9699316

Muhamad Efendi, T. Raharjo, Agus Suhanto

{"title":"软件开发中的DevSecOps方法案例研究:上市公司物流代理","authors":"Muhamad Efendi, T. Raharjo, Agus Suhanto","doi":"10.1109/ICIMCIS53775.2021.9699316","DOIUrl":null,"url":null,"abstract":"Application development has progressed along with the rapid digital transformation. The stakeholders will focus more on cutting operational costs with optimal application quality and security. The DevSecOps approach provides solutions for reducing costs in the software life cycle, increasing software product quality and security. Public Company Logistic Agency (PCLA) is like other companies that must be adaptive to new technology. PCLA has an IT Division in charge of providing technology to support business. Application development by the IT Division has several problems, including application projects that mostly exceed the time, significant changes and additions during UAT, and applications that have much vulnerability. A transformation to the DevSecOps approach is needed to address these problems. In this paper, a Systematic Literature Review (SLR) was used to select journals that matched the study topic to obtain the character and transformation phases of DevSecOps in various case studies. A mixed-method approach aims to collect and analyze data companies in the software development lifecycle. For academicians, this study provides a new understanding of application development in a state-owned enterprise based on a sequential approach and their suitable solutions from the DevSecOps approach. For practitioners, the findings provide potential lessons learned and guide a state-owned enterprise to transform to the DevSecOps approach.","PeriodicalId":250460,"journal":{"name":"2021 International Conference on Informatics, Multimedia, Cyber and Information System (ICIMCIS","volume":"29 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-10-28","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"DevSecOps Approach in Software Development Case Study: Public Company Logistic Agency\",\"authors\":\"Muhamad Efendi, T. Raharjo, Agus Suhanto\",\"doi\":\"10.1109/ICIMCIS53775.2021.9699316\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Application development has progressed along with the rapid digital transformation. The stakeholders will focus more on cutting operational costs with optimal application quality and security. The DevSecOps approach provides solutions for reducing costs in the software life cycle, increasing software product quality and security. Public Company Logistic Agency (PCLA) is like other companies that must be adaptive to new technology. PCLA has an IT Division in charge of providing technology to support business. Application development by the IT Division has several problems, including application projects that mostly exceed the time, significant changes and additions during UAT, and applications that have much vulnerability. A transformation to the DevSecOps approach is needed to address these problems. In this paper, a Systematic Literature Review (SLR) was used to select journals that matched the study topic to obtain the character and transformation phases of DevSecOps in various case studies. A mixed-method approach aims to collect and analyze data companies in the software development lifecycle. For academicians, this study provides a new understanding of application development in a state-owned enterprise based on a sequential approach and their suitable solutions from the DevSecOps approach. For practitioners, the findings provide potential lessons learned and guide a state-owned enterprise to transform to the DevSecOps approach.\",\"PeriodicalId\":250460,\"journal\":{\"name\":\"2021 International Conference on Informatics, Multimedia, Cyber and Information System (ICIMCIS\",\"volume\":\"29 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-10-28\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2021 International Conference on Informatics, Multimedia, Cyber and Information System (ICIMCIS\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICIMCIS53775.2021.9699316\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 International Conference on Informatics, Multimedia, Cyber and Information System (ICIMCIS","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICIMCIS53775.2021.9699316","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

随着数字化转型的快速发展，应用程序开发也在不断进步。涉众将更多地关注通过优化应用程序质量和安全性来削减运营成本。DevSecOps方法提供了降低软件生命周期成本、提高软件产品质量和安全性的解决方案。上市公司物流代理(PCLA)与其他公司一样，必须适应新技术。PCLA有一个IT部门负责提供技术支持业务。IT部门的应用程序开发存在几个问题，包括应用程序项目大多超过时间，在UAT期间进行重大更改和添加，以及应用程序存在许多漏洞。要解决这些问题，需要向DevSecOps方法进行转换。本文采用系统文献综述法(Systematic Literature Review, SLR)，选择与研究主题相匹配的期刊，获得DevSecOps在不同案例中的特征和转变阶段。混合方法的目的是收集和分析软件开发生命周期中的数据公司。对于学者来说，本研究提供了对基于顺序方法的国有企业应用程序开发的新理解，以及DevSecOps方法的合适解决方案。对于从业者来说，这些发现提供了潜在的经验教训，并指导国有企业向DevSecOps方法转变。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

DevSecOps Approach in Software Development Case Study: Public Company Logistic Agency

Application development has progressed along with the rapid digital transformation. The stakeholders will focus more on cutting operational costs with optimal application quality and security. The DevSecOps approach provides solutions for reducing costs in the software life cycle, increasing software product quality and security. Public Company Logistic Agency (PCLA) is like other companies that must be adaptive to new technology. PCLA has an IT Division in charge of providing technology to support business. Application development by the IT Division has several problems, including application projects that mostly exceed the time, significant changes and additions during UAT, and applications that have much vulnerability. A transformation to the DevSecOps approach is needed to address these problems. In this paper, a Systematic Literature Review (SLR) was used to select journals that matched the study topic to obtain the character and transformation phases of DevSecOps in various case studies. A mixed-method approach aims to collect and analyze data companies in the software development lifecycle. For academicians, this study provides a new understanding of application development in a state-owned enterprise based on a sequential approach and their suitable solutions from the DevSecOps approach. For practitioners, the findings provide potential lessons learned and guide a state-owned enterprise to transform to the DevSecOps approach.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2021 International Conference on Informatics, Multimedia, Cyber and Information System (ICIMCIS

自引率

0.00%

发文量