A DEVSECOPS Approach for Developing and Deploying Containerized Cloud Based Software on Submarines
Abstract
There are unique challenges for using secure cloud services in disconnected resource-constrained environments and with controlled data. To address those challenges, this thesis introduces a tactical-edge platform-as-a-service (PaaS) solution with a declarative-delivery method for submarine Consolidated Afloat Network Enterprise Services (CANES) operating systems. The PaaS is adapted from the Department of Defenses Big Bang core elements for submarine-focused outcomes. Using the Team Submarine Project Blue initiative as a case study, this thesis consists of a feasibility study for running containerized applications on different submarine-compatible baselines and applying a prototype declarative software-delivery method called ZARF. We demonstrated the feasibility of using ZARF for packaging and automated deployment of the Project Blue PaaS and its software to the submarine CANES infrastructure. This research culminated in successful integration tests on a current and future submarine hardware and software baseline. The thesis documents the execution of the research, lessons learned, and recommendations for the Navys path forward for development of secure software and declarative deployment in air-gapped environments.
Document Details
- Document Type
- Technical Report
- Publication Date
- Dec 01, 2021
- Accession Number
- AD1165010
Entities
People
- Bridger A. Smith
Organizations
- Naval Postgraduate School