EconPapers    
Economics at your fingertips  

EconPapers Home
About EconPapers

Working Papers
Journal Articles
Books and Chapters
Software Components

Authors

JEL codes
New Economics Papers

Advanced Search


EconPapers FAQ
Archive maintainers FAQ
Cookies at EconPapers

Format for printing

The RePEc blog
The RePEc plagiarism page

 

Cloud-Native DevSecOps: A Framework for Secure Continuous Delivery

Rajesh Nadipalli ()

International Journal of Computing and Engineering, 2023, vol. 3, issue 2, 1 - 9

Abstract: The shift to cloud-native architectures and continuous delivery pipelines has amplified the need for integrated, automated security practices. Traditional security models, which operate as isolated stages late in the development lifecycle, are insufficient to address the speed and complexity of modern software delivery. DevSecOps a cultural and technical shift aims to embed security into every phase of the DevOps pipeline. This paper presents a comprehensive framework for implementing DevSecOps in cloud-native environments, emphasizing secure automation, Infrastructure as Code (IaC), and continuous compliance. The proposed framework integrates static and dynamic code analysis, container and dependency scanning, identity and access management, and runtime monitoring across CI/CD workflows. I explore key tools and practices that enable policy enforcement and threat detection without hindering development velocity. A case study on Kubernetes with GitOps highlights practical implementation, while evaluations demonstrate improved security posture and reduced time-to-remediation. The framework offers a scalable, repeatable approach to secure software delivery, ensuring regulatory compliance and resilience against emerging threats. Our findings underscore the critical importance of treating security as a shared responsibility, automated and codified across the software lifecycle.

Keywords: DevSecOps; Cloud-Native Security; Continuous Integration; Security Automation; Kubernetes Security; GitOps; Container Security; Identity and Access Management (IAM) (search for similar items in EconPapers)
Date: 2023
References: Add references at CitEc
Citations:

Downloads: (external link)
https://carijournals.org/journals/index.php/IJCE/article/view/3104 (application/pdf)

Related works:
This item may be available elsewhere in EconPapers: Search for items with the same title.

Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text

Persistent link: https://EconPapers.repec.org/RePEc:bhx:ojijce:v:3:y:2023:i:2:p:1-9:id:3104

Access Statistics for this article

More articles in International Journal of Computing and Engineering from CARI Journals Limited
Bibliographic data for series maintained by Chief Editor ().

 
Share

RePEc
This site is part of RePEc and all the data displayed here is part of the RePEc data set.

Is your work missing from RePEc? Here is how to contribute.

Questions or problems? Check the EconPapers FAQ or send mail to .

Örebro UniversityEconPapers is hosted by the School of Business at Örebro University.

Page updated 2025-08-14
Handle: RePEc:bhx:ojijce:v:3:y:2023:i:2:p:1-9:id:3104