Industrial Challenges in Secure Continuous Development
- URL: http://arxiv.org/abs/2401.06529v1
- Date: Fri, 12 Jan 2024 12:02:16 GMT
- Title: Industrial Challenges in Secure Continuous Development
- Authors: Fabiola Moy\'on, Florian Angermeir, Daniel Mendez
- Abstract summary: The intersection between security and continuous software engineering has been of great interest since the early years of the agile development movement.
This paper summarizes a relevant part of our endeavors in which we validated challenges with several practitioners of different roles.
More than framing a set of challenges, we conclude by presenting four key research directions we identified for practitioners and researchers to delineate future work.
- Score: 0.7734726150561089
- License: http://creativecommons.org/licenses/by/4.0/
- Abstract: The intersection between security and continuous software engineering has
been of great interest since the early years of the agile development movement,
and it remains relevant as software development processes are more frequently
guided by agility and the adoption of DevOps. Several authors have contributed
studies about the framing of secure agile development and secure DevOps,
motivating academic contributions to methods and practices, but also
discussions around benefits and challenges. Especially the challenges captured
also our interest since, for the last few years, we are conducting research on
secure continuous software engineering from a more applied, practical
perspective with the overarching aim to introduce solutions that can be adopted
at scale. The short positioning at hands summarizes a relevant part of our
endeavors in which we validated challenges with several practitioners of
different roles. More than framing a set of challenges, we conclude by
presenting four key research directions we identified for practitioners and
researchers to delineate future work.
Related papers
- An Exploration of Agile Methods in the Automotive Industry: Benefits, Challenges and Opportunities [0.589889361990138]
This paper examines the benefits and challenges of implementing agile methods in the automotive industry.
Our findings highlight the potential advantages of agile approaches, such as improved collaboration and faster time-to-market.
By synthesizing existing research and practical insights, this paper aims to provide an understanding of the role of agile methods in shaping the future of automotive software development.
arXiv Detail & Related papers (2024-09-19T11:43:38Z) - Security Challenges of Complex Space Applications: An Empirical Study [0.0]
I investigate the security challenges of the development and management of complex space applications.
I discuss the four most critical security challenges identified by the interviewed experts: verification of software artifacts, verification of the deployed application, single point of security failure, and data tampering by trusted stakeholders.
I propose future research of new DevSecOps strategies, practices, and tools which would enable better methods of software integrity verification in the space and defense industries.
arXiv Detail & Related papers (2024-08-15T10:02:46Z) - Practices, Challenges, and Opportunities When Inferring Requirements From Regulations in the FinTech Sector - An Industrial Study [1.0936851319953484]
Understanding and interpreting regulatory norms and inferring software requirements from them is a critical step towards regulatory compliance.
This study investigates the complexities of requirement engineering in regulatory contexts, pinpointing various issues and discussing them in detail.
We have identified key practices for managing regulatory requirements in software development, and have pinpointed several challenges.
arXiv Detail & Related papers (2024-05-05T09:39:08Z) - Bridging Gaps, Building Futures: Advancing Software Developer Diversity and Inclusion Through Future-Oriented Research [50.545824691484796]
We present insights from SE researchers and practitioners on challenges and solutions regarding diversity and inclusion in SE.
We share potential utopian and dystopian visions of the future and provide future research directions and implications for academia and industry.
arXiv Detail & Related papers (2024-04-10T16:18:11Z) - A Survey of Neural Code Intelligence: Paradigms, Advances and Beyond [84.95530356322621]
This survey presents a systematic review of the advancements in code intelligence.
It covers over 50 representative models and their variants, more than 20 categories of tasks, and an extensive coverage of over 680 related works.
Building on our examination of the developmental trajectories, we further investigate the emerging synergies between code intelligence and broader machine intelligence.
arXiv Detail & Related papers (2024-03-21T08:54:56Z) - A Comprehensive Survey of Forgetting in Deep Learning Beyond Continual Learning [58.107474025048866]
Forgetting refers to the loss or deterioration of previously acquired knowledge.
Forgetting is a prevalent phenomenon observed in various other research domains within deep learning.
arXiv Detail & Related papers (2023-07-16T16:27:58Z) - AI for Agile development: a Meta-Analysis [0.0]
This study explores the benefits and challenges of integrating Artificial Intelligence with Agile software development methodologies.
The review helped identify critical challenges, such as the need for specialised socio-technical expertise.
Further research is needed to better understand its impact on processes and practitioners, and to address the indirect challenges associated with its implementation.
arXiv Detail & Related papers (2023-05-14T08:10:40Z) - Artificial Intelligence for IT Operations (AIOPS) Workshop White Paper [50.25428141435537]
Artificial Intelligence for IT Operations (AIOps) is an emerging interdisciplinary field arising in the intersection between machine learning, big data, streaming analytics, and the management of IT operations.
Main aim of the AIOPS workshop is to bring together researchers from both academia and industry to present their experiences, results, and work in progress in this field.
arXiv Detail & Related papers (2021-01-15T10:43:10Z) - Constraint Programming Algorithms for Route Planning Exploiting
Geometrical Information [91.3755431537592]
We present an overview of our current research activities concerning the development of new algorithms for route planning problems.
The research so far has focused in particular on the Euclidean Traveling Salesperson Problem (Euclidean TSP)
The aim is to exploit the results obtained also to other problems of the same category, such as the Euclidean Vehicle Problem (Euclidean VRP), in the future.
arXiv Detail & Related papers (2020-09-22T00:51:45Z) - Curriculum Learning for Reinforcement Learning Domains: A Framework and
Survey [53.73359052511171]
Reinforcement learning (RL) is a popular paradigm for addressing sequential decision tasks in which the agent has only limited environmental feedback.
We present a framework for curriculum learning (CL) in RL, and use it to survey and classify existing CL methods in terms of their assumptions, capabilities, and goals.
arXiv Detail & Related papers (2020-03-10T20:41:24Z)
This list is automatically generated from the titles and abstracts of the papers in this site.
This site does not guarantee the quality of this site (including all information) and is not responsible for any consequences.