Modeling DevSecOps to Reduce the Time-to-Deploy and Increase Resiliency

Abstract

In June of 2020 a generally successful DoD program completed an 8 week "Hardening the Software Factory" effort in order to address accumulated technical debt and to address insufficient security and operations practices due to the narrow focus on speed of delivery. These things occur, even in small relatively successful programs, when technical debt and insufficient security and operational practices are in place due to lack of knowledge, experience, and reference material to fully design and execute an integrated DSO strategy in which all stakeholder needs, including cybersecurity, are addressed. Without the ability to perform formal analysis of a systems numerous parameters, program offices are forced to play Whac-A-Mole and hope for the best.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Feb 01, 2021
Accession Number
AD1121063

Entities

People

  • Aaron Reffett
  • Joseph Yankel
  • Nataliya Shevchenko
  • Timothy A. Chick

Organizations

  • Carnegie Mellon University

Tags

Communities of Interest

  • C4I
  • Cyber
  • Engineered Resilient Systems

DTIC Thesaurus Topics

  • Acquisition
  • Best Practices
  • Border Security
  • Command And Control
  • Command And Control Systems
  • Commerce
  • Communication Systems
  • Complex Systems
  • Control Systems
  • Cybersecurity
  • Department Of Defense
  • Engineering
  • Flow
  • Information Systems
  • Model Based Systems Engineering
  • Security
  • Software Development
  • System Of Systems
  • Systems Engineering
  • Technical Debt
  • Weapon Systems

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Defense Acquisition Program Management
  • Economics

Technology Areas

  • Cyber