search menu icon-carat-right cmu-wordmark

Posts by Chris Taschner

Container Security in DevOps

Container Security in DevOps

• Blog
Chris Taschner

Container-based virtualization platforms provide a means to run multiple applications in separate instances. Container technologies can provide significant benefits to DevOps, including increased scalability, resource efficiency, and resiliency. Unless containers are decoupled from the host system, however, there will be the potential for security problems. Until that decoupling happens, this blog posting describes why administrators should keep a close eye on the privilege levels given to applications running within the containers and to users accessing...

Read More
DevOps Technologies: Gauntlt

DevOps Technologies: Gauntlt

• Blog
Chris Taschner

This post is the latest installment in a series aimed at helping organizations adopt DevOps. Tools used in DevOps environments such as continuous integration and continuous deployment speed up the process of pushing code to production. Often this means continuous deployment cycles that could result in multiple deployments per day. Traditional security testing, which often requires manually running multiple tests in different tools, does not keep pace with this rapid schedule. This blog post introduces...

Read More
Build DevOps Tough!

Build DevOps Tough!

• Blog
Chris Taschner

"Software security" often evokes negative feelings among software developers since this term is associated with additional programming effort and uncertainty. To secure software, developers must follow a lot of guidelines that, while intended to satisfy some regulation or other, can be very restricting and hard to understand. As a result a lot of fear, uncertainty, and doubt can surround software security. This blog posting describes how the Rugged Software movement attempts to combat the toxic...

Read More
Security in Continuous Integration

Security in Continuous Integration

• Blog
Chris Taschner

Software development teams often view software security as an afterthought, something that can be added on after the product is fully functional. Although this approach may have made some sense in the past, today it's largely seen as a mistake since it can lead to unanticipated vulnerabilities in released code. DevOps provides a mechanism for change and enforcement when it comes to security. DevOps practitioners should find it natural to integrate a security focus into...

Read More

Contact the Author

Chris Taschner

SEI Digital Library

SEI Publications

Visit the SEI Digital Library to see other publications by Chris Taschner

View publications