University of Twente Student Theses
A framework for detecting and preventing security vulnerabilities in continuous integration/continuous delivery pipelines
Koopman, Michael (2019) A framework for detecting and preventing security vulnerabilities in continuous integration/continuous delivery pipelines.
This is the latest version of this item.
PDF
5MB |
Abstract: | In a modern, agile, software development team, the goal is to get software made in a timely manner. To achieve this, these teams usually rely on tools Continuous Integration and Continuous Delivery to automate a lot of work for them. New code is automatically tested and integrated with code from other systems to check whether no new bugs are introduced, and a deployment of a new build to production can happen with the click of a button or even automatically. Each of these steps has their own tools that work together to achieve the final goal of bringing new features to production. Having so many tools does come with security risks: how do these tools work together? What data is sent from each tool to another? What would happen if an attacker took over a tool? This paper aims at delivering a framework for detecting and preventing security vulnerabilities in Continuous Integration/Continuous Delivery pipelines in the context of a large consultancy company which provides Continuous Integration/Continuous Delivery environments as a service to customers and internal development teams. Some exploratory research is done on how CI/CD is used within the company, and together with experts from the company, the framework is built. The end result is a baseline which the company can use to detect and prevent security vulnerabilities in their platform. |
Item Type: | Essay (Master) |
Faculty: | EEMCS: Electrical Engineering, Mathematics and Computer Science |
Subject: | 01 general works, 02 science and culture in general, 06 documentary information, 50 technical science in general, 54 computer science |
Programme: | Computer Science MSc (60300) |
Link to this item: | https://purl.utwente.nl/essays/78048 |
Export this item as: | BibTeX EndNote HTML Citation Reference Manager |
Repository Staff Only: item control page