Continuous Pipeline Security with Azure DevOps

Conor Horan; Ruth G. Lennon

doi:10.1109/Cyber-RCI59474.2023.10671407

Continuous Pipeline Security with Azure DevOps

Conor Horan
, Ruth G. Lennon

Atlantic Technological University

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

1 Citation (Scopus)

Abstract

In the ever-evolving software development landscape, integrating security into all stages of the development lifecycle has become of paramount concern. A weak link at any point in the process can provide a window of opportunity for a bad actor to compromise a system. This paper aims to present a comprehensive approach to implementing continuous security into the software delivery pipeline using Azure DevOps security. The proposed approach will focus on integrating protection at every stage of the development pipeline from coding, building, testing and deployment by using native Azure tooling and services to reduce the potential attack vector through correctly implemented role-based access control and best practices.

Original language	English
Title of host publication	2023 Cyber Research Conference - Ireland, Cyber-RCI 2023
Publisher	IEEE
ISBN (Electronic)	9798350309522
DOIs	https://doi.org/10.1109/Cyber-RCI59474.2023.10671407
Publication status	Published - 2023
Event	2023 Cyber Research Conference - Ireland, Cyber-RCI 2023 - Letterkenny, Ireland Duration: 24 Nov 2023 → …

Publication series

Name	2023 Cyber Research Conference - Ireland, Cyber-RCI 2023

Conference

Conference	2023 Cyber Research Conference - Ireland, Cyber-RCI 2023
Country/Territory	Ireland
City	Letterkenny
Period	24/11/23 → …

Access to Document

10.1109/Cyber-RCI59474.2023.10671407

Cite this

@inproceedings{7c12b38ac4f84259a9ed7ec6283bab68,

title = "Continuous Pipeline Security with Azure DevOps",

abstract = "In the ever-evolving software development landscape, integrating security into all stages of the development lifecycle has become of paramount concern. A weak link at any point in the process can provide a window of opportunity for a bad actor to compromise a system. This paper aims to present a comprehensive approach to implementing continuous security into the software delivery pipeline using Azure DevOps security. The proposed approach will focus on integrating protection at every stage of the development pipeline from coding, building, testing and deployment by using native Azure tooling and services to reduce the potential attack vector through correctly implemented role-based access control and best practices.",

author = "Conor Horan and Lennon, \{Ruth G.\}",

note = "Publisher Copyright: {\textcopyright} 2023 IEEE.; 2023 Cyber Research Conference - Ireland, Cyber-RCI 2023 ; Conference date: 24-11-2023",

year = "2023",

doi = "10.1109/Cyber-RCI59474.2023.10671407",

language = "English",

series = "2023 Cyber Research Conference - Ireland, Cyber-RCI 2023",

publisher = "IEEE",

booktitle = "2023 Cyber Research Conference - Ireland, Cyber-RCI 2023",

}

TY - GEN

T1 - Continuous Pipeline Security with Azure DevOps

AU - Horan, Conor

AU - Lennon, Ruth G.

PY - 2023

Y1 - 2023

N2 - In the ever-evolving software development landscape, integrating security into all stages of the development lifecycle has become of paramount concern. A weak link at any point in the process can provide a window of opportunity for a bad actor to compromise a system. This paper aims to present a comprehensive approach to implementing continuous security into the software delivery pipeline using Azure DevOps security. The proposed approach will focus on integrating protection at every stage of the development pipeline from coding, building, testing and deployment by using native Azure tooling and services to reduce the potential attack vector through correctly implemented role-based access control and best practices.

AB - In the ever-evolving software development landscape, integrating security into all stages of the development lifecycle has become of paramount concern. A weak link at any point in the process can provide a window of opportunity for a bad actor to compromise a system. This paper aims to present a comprehensive approach to implementing continuous security into the software delivery pipeline using Azure DevOps security. The proposed approach will focus on integrating protection at every stage of the development pipeline from coding, building, testing and deployment by using native Azure tooling and services to reduce the potential attack vector through correctly implemented role-based access control and best practices.

UR - https://www.scopus.com/pages/publications/85206100410

U2 - 10.1109/Cyber-RCI59474.2023.10671407

DO - 10.1109/Cyber-RCI59474.2023.10671407

M3 - Conference contribution

AN - SCOPUS:85206100410

T3 - 2023 Cyber Research Conference - Ireland, Cyber-RCI 2023

BT - 2023 Cyber Research Conference - Ireland, Cyber-RCI 2023

PB - IEEE

T2 - 2023 Cyber Research Conference - Ireland, Cyber-RCI 2023

Y2 - 24 November 2023

ER -

Continuous Pipeline Security with Azure DevOps

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

2023 Cyber Research Conference - Ireland, Cyber-RCI 2023

Cite this

Continuous Pipeline Security with Azure DevOps

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Activities

2023 Cyber Research Conference - Ireland, Cyber-RCI 2023

Cite this