Addressing DevSecOps Challenges Using Model-Based Systems Engineering
Tim Chick, Natasha Shevchenko, Joe Yankel, and Dr. Carol Woody of the SEI discuss the DevSecOps state of practice, challenges, and solutions such as model-based systems engineering. They also introduce the DevSecOps Platform Independent Model (PIM).
The use of model-based systems engineering in the design, implementation, and sustainment of a DevSecOps socio-technical system will assist in building a system that is:
- Trustworthy – No exploitable vulnerabilities exist, either maliciously or unintentionally inserted.
- Predictable – When executed, software functions as intended and only as intended.
- Timely – Features are delivered as the speed of relevance.