University of Twente Student Theses

Login

A framework for detecting and preventing security vulnerabilities in continuous integration/continuous delivery pipelines

Koopman, Michael (2019) A framework for detecting and preventing security vulnerabilities in continuous integration/continuous delivery pipelines.

This is the latest version of this item.

[img]
Preview
PDF
5MB
Abstract:In a modern, agile, software development team, the goal is to get software made in a timely manner. To achieve this, these teams usually rely on tools Continuous Integration and Continuous Delivery to automate a lot of work for them. New code is automatically tested and integrated with code from other systems to check whether no new bugs are introduced, and a deployment of a new build to production can happen with the click of a button or even automatically. Each of these steps has their own tools that work together to achieve the final goal of bringing new features to production. Having so many tools does come with security risks: how do these tools work together? What data is sent from each tool to another? What would happen if an attacker took over a tool? This paper aims at delivering a framework for detecting and preventing security vulnerabilities in Continuous Integration/Continuous Delivery pipelines in the context of a large consultancy company which provides Continuous Integration/Continuous Delivery environments as a service to customers and internal development teams. Some exploratory research is done on how CI/CD is used within the company, and together with experts from the company, the framework is built. The end result is a baseline which the company can use to detect and prevent security vulnerabilities in their platform.
Item Type:Essay (Master)
Faculty:EEMCS: Electrical Engineering, Mathematics and Computer Science
Subject:01 general works, 02 science and culture in general, 06 documentary information, 50 technical science in general, 54 computer science
Programme:Computer Science MSc (60300)
Link to this item:http://purl.utwente.nl/essays/78048
Export this item as:BibTeX
EndNote
HTML Citation
Reference Manager

 

Repository Staff Only: item control page