Examples of Technical Debt's Cybersecurity Impact

Abstract

Organizations have turned to methods such as DevSecOps to reduce cybersecurity risk, with varying results. DevSecOps seeks ways to reduce total cost, deliver on time, and improve productivity, all while improving quality and security. Although the term DevSecOps is often linked to tools and automation, experienced DevSecOps practitioners understand that tools and automation alone cannot ensure security, particularly where there is substantial technical debt, nor can tools and automation ensure that practitioners will recognize and eliminate technical debt in the first place.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jul 01, 2021
Accession Number
AD1144728

Entities

People

  • Carol C. Woody
  • Ipek Ozkaya
  • Robert Nord

Organizations

  • Carnegie Mellon University

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Authentication
  • Computer Programming
  • Computer Programs
  • Cybersecurity
  • Deployment
  • Engineering
  • Governments
  • Guarantees
  • Identification
  • Life Cycles
  • Maintainability
  • Maintenance
  • Materials
  • Misalignment
  • Reliability
  • Robotics
  • Software Development
  • Standards
  • Technical Debt
  • Test Methods

Fields of Study

  • Computer science

Readers

  • Economics
  • Software Engineering.

Technology Areas

  • Cyber